Skip to content

rizaldyaristyo/phpshellscanner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
phpWebshellLibrary
phpWebshellLibrary
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
main.py
main.py
 
 
thumb.png
thumb.png
 
 

Repository files navigation

phpshellscanner

an ARSTCreations
[Disclaimer]
This program is an experimental tool for educational purpose and is not guaranteed to be accurate and/or complete. Any use of this program is at your own risk.

A Python Cosine Similarity and Keyword Based PHP Shell Scanner

It scans for shells based on cosine similarity with a given set of php webshells collection.

How Does it Works?

  • It calculates the cosine similarity between a file and the webshells collection.
  • If the cosine similarity is greater than 0.3, it suspects the file, prints the webshell name and the cosine similarity.
  • if the webshells collection depleted, it continues to scan for common keywords in the file.
  • if the file contains common keywords, it suspects the file, prints the webshell name and the keyword.
  • if the file contains common keywords and the webshells collection depleted, it will finally decide that the file is not a webshell.

To-dos

  • Cosine Similarity
  • Keywords Matching
  • MD5 Hash Matching

Contributions by pulling requests are welcome :)

phpshellscanner © 2022 by Rizaldy Aristyo is licensed under CC BY-SA 4.0

About

[CONCEPT] - May or may not detects php webshells, idk where did i do wrong ¯\_(ツ)_/¯

Topics

python php shell-scanner

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Contributors

Languages