Simple Wordpress Web Shell Tutorial

Channel:
United States Guided Hacking
Subscribers:
178,000
Published on ● Video Link: https://www.youtube.com/watch?v=XHShse4z6ds


Category:
Tutorial
Duration: 4:08
12,945 views
0

Support us on Patreon: http://bit.ly/38mnveC
This video will teach you how to create a simple webshell which will allow you to run commands on the web server via a simple HTTP query.

This requires that you already have admin access, which you could have acquired through another exploit.

To make this webshell we simply edit the websites main template to include a new function, the new function will take any text we send it and run it via shell exec. This will work on any Wordpress version.

Discussion: https://bit.ly/2B4leZF

This video is made by Ismael Vasquez Jr.

Website - https://ismaelvazquezjr.com
Twitter - https://twitter.com/IsmaelVazquezJr
Facebook - https://facebook.com/vazquezjrismael
Github - https://github.com/ismaelvazquezjr
LinkedIn - https://linkedin.com/in/ismael-vazquez-jr-a6abb119b

GH:
Donate on our Forum : http://bit.ly/2HkOco9
Support us on Patreon : http://bit.ly/38mnveC

Follow us on Facebook : http://bit.ly/2vvHfhk
Follow us on Twitter : http://bit.ly/3bC7J1i
Follow us on Twitch : http://bit.ly/39ywOZ2
Follow us on Reddit : http://bit.ly/3bvOB57
Follow us on GitHub : http://bit.ly/2HoNXIS
Follow us on Instagram : http://bit.ly/2SoDOlu

A web shell is a web security threat, which is a web-based implementation of the shell concept. A web shell is able to be uploaded to a web server to allow remote access to the web server, such as the web server's file system. A web shell is unique in that it enables users to access a web server by way of a web browser that acts like a command-line interface.

A user can access a the shell using a web browser on any type of system, whether it's a desktop computer or a mobile phone with a web browser, and perform tasks on the remote system. No command-line environment is required on either the host or the client. A web shell is often considered a remote access trojan.

A web shell could be programmed in any language that the target server supports. Web shells are most commonly written in PHP due to the widespread use of PHP, however, Active Server Pages, ASP.NET, Python, Perl, Ruby and Unix shell scripts are also used, although not as common because it is not very common for web servers to support these languages.

An attacker can use a web shell to issue commands, perform privilege escalation on the web server, and the ability to upload, delete, download and run files on the web server.

An attacker can find vulnerabilities which are exploited resulting in a web shell installation. These vulnerabilities may be present in content management system applications or the web server's software.



Other Videos By Guided Hacking


2020-07-26HackTheBox Irked Walkthrough - UnrealIRCd Exploit
2020-07-22How to Unpack Malware, How to use Imprec, How to find OEP
2020-07-18How to Hack Gwent - Witcher 3 Cheat Engine Tutorial
2020-07-15Practical Reverse Engineering 2 - Pg 35 Exercise 1 Sample J
2020-07-12How to Hack MineSweeper x32dbg Reversing Tutorial
2020-07-08Practical Malware Analysis Walkthrough - Chapter 1 Labs
2020-07-01Kernel Cheat Tutorial - IOCTL Communication Tutorial - Kernel2
2020-06-27HackTheBox Giddy Walkthrough Tutorial - Unifi Video Exploit
2020-06-20Practical Reverse Engineering Exercise 1 Solution Page 11
2020-06-17HackTheBox Blue Walkthrough Eternal Blue Exploit MS17-010
2020-06-13Simple Wordpress Web Shell Tutorial
2020-06-11Interrupt Descriptor Table Register Tutorial
2020-06-06How to make a C# Trainer With Memory.dll Tutorial
2020-06-05Rake rips the Evo
2020-05-30How to make a Kernel Driver - Setup & Hello World - Kernel1
2020-05-12CS420 7 - Virtual Memory & Multilevel Pointers Tutorial
2020-05-05How to make a Tibia Bot - MMO Botting Tutorial by Petko123 3/3
2020-04-28C# DLL Injector Tutorial C# How To Inject a DLL
2020-04-23How to Install TinyProxy Tutorial + Xenforo Proxy Setup
2020-04-19ClassInformer Tutorial - Run Time Type Information RTTI
2020-04-15Reclass Tutorial - ReClass.NET - How To Reverse Structures


Tags:
guidedhacking
iamismael
wordpress webshell
wordpress tutorial
web shell exploit
web shell tutorial
wordpress web shell
web shell privilege escalation
webshell malware
webshell backdoor
php shell
php shell_exec
php shell script tutorial
web shell