https://github.com/doyler/rwsh

Ray's Web SHell
https://github.com/doyler/rwsh

Last synced: 25 days ago
JSON representation

Ray's Web SHell

• Host: GitHub
• URL: https://github.com/doyler/rwsh
• Owner: doyler
• License: apache-2.0
• Created: 2017-04-25T15:24:45.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2017-05-02T14:07:19.000Z (over 7 years ago)
• Last Synced: 2024-08-03T18:12:50.923Z (4 months ago)
• Language: Python
• Size: 25.4 KB
• Stars: 1
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-webshell - **1**星

README

        
# RWSH - Ray's Web SHell

A PHP web shell and its Python based client

# Features

* Encoded communication

* Pseudo-interactive shell

![Execution](https://www.doyler.net/wp-content/uploads/rwsh/rwsh-1-execution.png)

* Cleaner output formatting than PHP passthru

* Hostname and username (whoami) detection

* (Mostly) Clean exiting

* Ability to still interact with via a browser

* Support for GET and POST methods

![Browser](https://www.doyler.net/wp-content/uploads/rwsh/rwsh-2-browser.png)

# TODO

* Add ability to easily obfuscate shell.php

* Add client specific functionality similar to meterpreter (upload, download, etc.)

* Include randomly generated filenames for server.php (similar to Metasploit payloads)

* Look into better methods of encryption or encoding for the traffic

* Handle all exit cases better

* Perform OS detection and better prompt displays

* Look into the ability to change directories (change the prompt, prepend the current directory to any requests?)

* Pseudo random key for forward-secrecy

* Better encoded version to avoid detection (grep, AI-Bolit)

* Clean up and add more methods

* Add support for more HTTP verbs as well as headers (cookies, arbitrary, etc.)