PHPShell is a PHP script which allows shell commands to be executed on a web server. Typically the PHPShell script is protected by a password so only the server administrator can access it. We deployed honeypots that advertise an unrestricted PHPShell application, which attackers often tried to exploit.

1) Install

Put the zipfile into your webserver.

unzip them.

2) Set PassWord

vi config.php

[users]

user=”passwd” //in clear text in the file config.php

or you can use pwhash.php to generate a hashed password.

just like this

[users]

alice = “md5:7ea3b59e:eb271c4459253eaa163fcac2a119f225”

http://192.168.1.111/phpshell/phpshell.php

Working in Safe Mode

=========

Safe Mode is the nemisis of PHP Shell. If PHP is running in Safe Mode then

PHP Shell will normally not work — sorry. Please read the detailed

explaination in the SECURITY file.

本文固定链接: https://www.2hei.net/2007/05/28/php-shell/ | 2hei.net