Luma Mini Shell Bypass is a lightweight (only ~22KB) PHP webshell designed with advanced command execution bypass techniques for hackers. It utilizes lesser-monitored functions like mail(), putenv(), and mb_send_mail() to bypass disabled PHP functions. Compact and stealthy, Luma Mini Shell is engineered to evade detection by most Web Application Firewalls (WAFs) such as LiteSpeed, ModSecurity, Imunify360, BitNinja, Sucuri, WordFance, etc., making it a powerful tool for research into PHP function abuse and WAF bypass methods.
- 403
- 404/Auto Delete
- 500
- Blank/0byte/0kb
- Auto Downloaded
- WAFs Bypass
in order for the command bypass function to work you need to ensure that the mail(), putenv() & mb_send_mail() functions are enabled.
feel free to contribute with us!
This repository is for educational purposes & security research purposes only. Any malicious usage of this repository or by using Alfa Cortex Webshell are not the author responsibility.