EvilZone

Hacking and Security => Hacking and Security => : relax October 04, 2012, 12:42:47 PM

: Shells
: relax October 04, 2012, 12:42:47 PM

I couldent find a post about this witch i thought was a bit wierd so here i go
PHP/ASP Shells
witch do you use?
whats special about it?
I had a shell witch i loved but after totaly wiping my hard drive and not being able to backup everything iam now in the hunt of a new one.

i found this
http://www.seclist.us/2012/05/cyb3r-sh3ll-v-10-advanced-php-shell.html (http://www.seclist.us/2012/05/cyb3r-sh3ll-v-10-advanced-php-shell.html)
seems promising

:

[0x04A] Shell
[0x04B] Platform Independent
[0x04C] Encoder (md5,crypt, sha1, crc32, url(encode/decode), base_64(encodr/decoder), dec2hex )
[0x04D] Cracker (Hash, SMTP, POP3, IMAP, FTP, SNMP, MySQL, HTTP Form, HTTP Basic, Cpanel)
[0x04E] Dictionary Maker
[0x04F] Port Scanner
[0x04G] NS Lookup
[0x04H] Security Scanner
[0x04I] List of Processes
[0x04J] Full Server Info (CPU Info, Username, OS, Disk Drive Info, etc..)
[0x04K] Automatic Exploit Searching
[0x04L] Proxy
[0x04M] WhoIs
[0x04N] SQL Administration
[0x04O] PHP Code Evaluater
[0x04P] Mass Code Injector (Appender and Overwriter)
[0x04Q] PHP Obfuscator
[0x04R] Web-Server Fuzzer
[0x04S] Mass Mailer
[0x04T] Mail Bomber (With Less Spam detection feature)
[0x04U] Anonymous Mailer with Attachment
[0x04V] PHP Safe Mode By-Passer
[0x04W] PHP DOSer
[0x04X] Design
[0x04Y] Secure Login
[0x04Z] Sites on Local Sever
[0x05A] Deletion of Files 
[0x05B] Bind Shell
[0x05C] Back Connect
[0x05D] Rename Files
[0x05E] Encoded Title
[0x05F] Traceback (Email Alerts)
[0x05G] Better Command Execution (even supports older version of PHP)
[0x05H] Lock Mode Customisation
[0x05I] PHP Decoder
[0x05J] Anti-Crawler Feature
[0x05K] Python & C Bind-Shell
[0x05L] Self Remover(http://evilzone.org/data:image/gif,GIF89a%12%00%12%00%B3%00%00%FF%FF%FF%F7%F7%EF%CC%CC%CC%BD%BE%BD%99%99%99ZYZRUR%00%00%00%FE%01%02%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00!%F9%04%04%14%00%FF%00%2C%00%00%00%00%12%00%12%00%00%04X0%C8I%2B%1D8%EB%3D%E4%00%60(%8A%85%17%0AG*%8C%40%19%7C%00J%08%C4%B1%92%26z%C76%FE%02%07%C2%89v%F0%7Dz%C3b%C8u%14%82V5%23o%A7%13%19L%BCY-%25%7D%A6l%DF%D0%F5%C7%02%85%5B%D82%90%CBT%87%D8i7%88Y%A8%DB%EFx%8B%DE%12%01%00%3B)

: Re: Shells
: ca0s October 04, 2012, 01:06:57 PM

I used to use shells derived from c99, like storm7. I also coded my own one, which I used for simplicity but has a lot of bugs.
I didn't really care about webshell's interface unless I couldn't launch a reverse/direct shell with netcat and I had to work my way with it.

: Re: Shells
: Silentz October 04, 2012, 02:33:27 PM

I used to use the w4ck1ng shell, one which was derived from c99, with the "backdoor" removed. Can't find it anywhere now.