Skip to content

Gadotti/WebShells

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.gitattributes
.gitattributes
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
shell.aspx
shell.aspx
 
 

Repository files navigation

WebShells

Web pages to control and get informations from the server If you have access to the server to upload this file or you find a file inclusion vulnerability, a file like this will give free access to the server getting sensitive info, upload/change/delete/read files or establish a database connection.

A 'Web Shell' per definition, used to give shell access only, but why stop there? I built a page example with more shortcuts to demonstrate and study what is possible if someone can upload unrestricted files to the system.

PRs are welcome!

Warning

Using any of these scripts on servers you don't own or have permission is ILLEGAL ! Use for Educational and Research Purposes only.

Credits

I was strongly inspired by https://github.com/grCod/webshells to build this one.

Available functions

  • Server info
  • File methods (read/write/remove/rename/download)
  • File upload
  • Cmd (Shell)
  • SQL (Only MSSQL for now)

TODO

  • Show a black start page to enter only with a special cookie with a password.
  • Build more database providers to connect with other database types.
  • Save used information in cookies to persist the data parameters.
  • Build more versions to support other languages - php, java, etc..

About

Web pages to control and get informations from the server

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages