.png)
JATAYU a Stealthy Stand Alone PHP Web Shell . FEATURES Http Header Based Authentication. 100% Undetectable. Exec Function Changer. Nothing Fancy USAGE GET /test/jatayu.php?fn=1&&cmd=whoamiHost : http://test.comAuthtoken : bb3b1a1f-0447-42a6-955a-88681fb88499 FUNCTIONS PARAMETER FUNCTION fn=1 Calls function shell_exec() fn=2 Calls function system() cmd=id Executes command GENERATE AUTHTOKEN php$r = unpack(‘v*’, fread(fopen(‘/dev/random’, ‘r’),16));$apiKey = sprintf(‘%04x%04x-%04x-%04x-%04x-%04x%04x%04x’,$r[1], $r[2], $r[3], $r[4] & 0x0fff …
Continue reading “Jatayu : Stealthy Stand Alone PHP Web Shell”