WebShells ...

Feb 27, 2016 10:41 AM

So i have recently started looking into pentesting on the webapps side on things, never really had an interest in web hosting and pentesting, but now due to my work i need to get more of a hold on this area.

I detected on my SIEM a weird hit on a .gif file. Reading further into this i suspect it was a php shell hidden in a gif.

So i have got a php shell , from github, but not sure how to add it into a gif, ive looked at steganography but i dont think this is what im after here... looked at EXIF editors but again not too sure.

I use kali linux so ideally if there is a tool in there i can use to add a.php file to a image file i can then upload it to my own hosting provider and teach myself about it and the signs to look for.

Can anyone point me in the right direction on what to look for?

Much appreciated for any help.

Just updated your iPhone? You'll find new Apple Intelligence capabilities, sudoku puzzles, Camera Control enhancements, volume control limits, layered Voice Memo recordings, and other useful features. Find out what's new and changed on your iPhone with the iOS 18.2 update.

Related Articles

637263493835297420.jpg

How to Use Zero-Width Characters to Hide Secret Messages in Text (& Even Reveal Leaks)

636455706472146367.jpg

How to Hide DDE-Based Attacks in MS Word

Comments

No Comments Exist

Be the first, drop a comment!