Skip to content
/ BratShell Public

PHP shell that hijacks the the incoming socket connection to provide an interactive shell session on port 80

License

GPL-3.0 license
5 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

BrianHeeseIs/BratShell

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits
BratShell.php
BratShell.php
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
hide.php
hide.php
 
 

Repository files navigation

BratShell v0.1 Alpha

PHP shell that hijacks the incoming socket connection to provide an interactive shell session on port 80

Capabilities: Spawn stateful (pty) shell on port 80, read/modify/whipe apache access log, terminal colors support.

Author: Brian Heese

Contributors: Jeroen van Rijn, Richard Clifford, Marlon Etheredge

Date: 05-08-2013

Dependencies: PHP >= 5.3.6 - 5.3.14, PHP >= 5.4.0 - 5.4.4

Inspired by: PentestMonkey's earlier work on the subject http://pentestmonkey.net/tools/web-shells/php-findsock-shell

USAGE: 
1: upload to apache server running php >= 5.3.6
2: nc -v [target hostname] 80
    GET /fd.php HTTP/1.0
    
    [shell magically spawns]
    $SINIT (<-- optional in case you want a pretty PTY shell, requires python to be installed though)

How it works

TODO: Fill this in

Please see PentestMonkey's post and the BratShell source for now whilst I document the inner workings of BratShell.

Screenshot

ScreenShot

About

PHP shell that hijacks the the incoming socket connection to provide an interactive shell session on port 80

Resources

Readme

License

GPL-3.0 license
Activity

Stars

5 stars

Watchers

8 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages