Description: In this video we can learn how to use Weevely.
Weevely is a stealth PHP web shell. Weevely is very powerful and effective tool for penetration testing.
Main features :-
*Execute commands and browse remote filesystem, even with PHP security restriction
*Audit common server misconfigurations
*Run SQL console pivoting on target machine
*Simple file transfer from and to target
*Spawn reverse and direct TCP shells
*Bruteforce passwords of target system users
* Backdoor communications are hidden in HTTP Cookies
* Communications are obfuscated to bypass NIDS signature detection
* Backdoor polymorphic PHP code is obfuscated to avoid HIDS AV detection
Text Tutorial :- https://github.com/epinna/Weevely/wiki/Tutorial
Modules List :- https://github.com/epinna/Weevely/wiki/Modules-list
Tool :- https://github.com/epinna/Weevely
Tags: weevely , bruteforce , sql ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Awesome PHP web shell. specially when you use this script for backdoor communication for HTTP cookies. this script is fully undetectable. !
the backdoor created, simulate telnet-like connection.