An Introduction to Web-Shells, Part 1
A web-shell is a malicious script used by an attacker with the intent to escalate and maintain persistent access on an already compromised web application. A web-shell itself cannot attack or exploit a remote vulnerability, so it is always the second step of an attack (this stage is also referred to as post-exploitation).
An attacker can take advantage of common vulnerabilities such as SQL injection, remote file inclusion (RFI), FTP, or even use cross-site scripting (XSS) as part of a social engineering attack in order to upload the malicious script. The common functionality includes, but is not limited to, shell command execution, code execution, database enumeration, and file management.
via DZone.com Feed https://dzone.com
May 29, 2017 at 02:39PM