|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 168
Members: 0
Total: 168
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Small Question about Shell |
|
Posted: Sat Oct 17, 2009 7:37 am |
|
|
Ro_Johnson |
Beginner |
|
|
Joined: Oct 16, 2009 |
Posts: 3 |
|
|
|
|
|
|
|
I'm kinda new to this but am confused. Sorry for the noob question.
While uploading c99 or any shell on our server for rfi do we upload as php and use as txt on the victim? Like we upload c99.php to our server and use it as victim.com?page=c99.txt?
or just upload as txt and use as victim.com?page=c99.txt |
|
|
|
|
Posted: Sat Oct 17, 2009 7:28 pm |
|
|
pexli |
Valuable expert |
|
|
Joined: May 24, 2007 |
Posts: 665 |
Location: Bulgaria |
|
|
|
|
|
|
Wowww. |
|
|
|
|
Posted: Sat Oct 17, 2009 8:11 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
1. Upload as text file to the server under your control (S1)
2. server with RFI vulnerability (S2) will request that text file from S1
3. server S2 will parse that text file and treat it as php code |
|
|
|
|
Posted: Sun Oct 18, 2009 5:36 am |
|
|
Ro_Johnson |
Beginner |
|
|
Joined: Oct 16, 2009 |
Posts: 3 |
|
|
|
|
|
|
|
waraxe wrote: | 1. Upload as text file to the server under your control (S1)
2. server with RFI vulnerability (S2) will request that text file from S1
3. server S2 will parse that text file and treat it as php code |
ah ok. Thanks a ton ^^ |
|
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|