2016-12-31 23:32:05
HOW TOSlip a Backdoor into PHP Websites with Weevely
Backdoors are convenient to leave behind once you've already found a way into a server, and they can come in handy for a variety of reasons. They're good for developers who want a quick way into machines they're working on, or for systems administrators who want similar access. Of course, backdoors are also a hacker's best friend, and can be added in a variety of ways. One good tool for doing this is Weevely, which uses a snippet of PHP code.
Weevely will create a terminal on the target server and allow for remote code actions via a small footprint PHP agent. It includes more than 30 modules for administration and maintenance needs, as well as privilege escalation and even network lateral movement. Think of those hosting accounts you use that lock down your access—this can come in handy there, as well as on other servers you've successfully infiltrated.
In this guide, we'll be taking it for a spin on our localhost. You can follow along, or you can get it running on another server where you can do a lot more with it.
Step 1Download Weevely
Weevely can be found built into some Linux distributions, such as Kali. If it's not installed in your Linux system, you can find version 3 on Epinna's GitHub page. To get it installed on a standard Linux distro, there are a variety of ways you can acquire it, including Git, HTTP, and wget.
Download the Git file:
https://github.com/epinna/weevely3.git
Download via HTTP right now in your browser:
https://github.com/epinna/weevely3/archive/master.zip
Download via wget (in your terminal):
wgethttps://github.com/epinna/weevely3/archive/master.zip
If you're running Kali, you can skip this step, obviously.
Step 2Create the PHP Snippet
No matter how you've grabbed the Weevely download above, make sure you have a terminal or shell window open in the directory containing thatmaster.zip file. Assuming you've downloaded it to your Downloads folder, let's go there, unzip the file, change into that unzipped folder location, and do a quick listing to check out the files.
cd Downloadsunzip master.zipcd weevely3-master/ls
You should run the weevely.py set-up file alone to get an idea what's going on here, because the script requires specific syntax, and you can learn about it here.
./weevely.py
3.8K viewsedited 20:32
C
