https://github.com/caledoniaproject/discuz-getshell-auto-method2
Discuz 全自动GetShell 方法#2
https://github.com/caledoniaproject/discuz-getshell-auto-method2
Last synced: over 1 year ago
JSON representation
Discuz 全自动GetShell 方法#2
- Host: GitHub
- URL: https://github.com/caledoniaproject/discuz-getshell-auto-method2
- Owner: CaledoniaProject
- Created: 2015-09-05T00:31:50.000Z (almost 11 years ago)
- Default Branch: master
- Last Pushed: 2015-09-05T00:42:02.000Z (almost 11 years ago)
- Last Synced: 2025-01-20T14:48:55.749Z (over 1 year ago)
- Language: PHP
- Size: 123 KB
- Stars: 6
- Watchers: 3
- Forks: 5
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
#### Discuz 全自动 GetShell
本方法比写 config_ucenter.php 更加稳定,而且不易出错
#### 用法
打开 `dzhack.php`, 找到
```
$webshell = '';
list ($status, $data) = $dz->hack (
'http://ubuntu64/dz/',
'K856C548X2xaTcDdc248I1pc57gdq4vdL2SdH3ifGd4a0ec6UdcfX0B7m9Ubrcs4',
...
);
```
先把第一行 `$webshell` 的内容改了,不需要考虑编码问题,
然后修改 `hack` 函数的参数,第一个为 discuz 的起始路径,第二行为你找到的 UC_KEY
然后执行 `php dzhack.php`,
会在 `data/client.php` 下面生成一个 webshell,
![Screenshot] (https://raw.githubusercontent.com/CaledoniaProject/discuz-getshell-auto-method2/master/contrib/screenshot.png "Desktop screenshot")
觉得方便的话,可以顺便把参数改成 argv[1] 和 argv[2]
#### 常见失败原因
1. 新版 Dz 防御了 XSS,所以没法 POST XML
2. 提示 Authentication Expired (DZ 拼错了),多试几次就好了,因为服务器时钟不一致导致的
#### Legal Disclaimer
Using this tool is legit but hacking may not be. The author does not take any responsibility for such activities.
这个工具是合法的,然而攻击他人服务器并不是合法的,作者对此不承担任何责任