This package implement a WebShell for CGI and WSGI server.
Project description
PyWCGIshell
Description
This package implement a WebShell for CGI and WSGI server.
With this WebShell you can:
- explore directories and download files
- send a command line (with a history command)
- get basic informations about environment server
- get the environments variables
Requirements
This package require :
- python3
- python3 Standard Library
Installation
pip install PyWCGIshell
Usages
Command line:
(Command line is useful to try the webshell only)
python3 -m PyWCGIshell wsgi # Try it in wsgi mode
Python script
from PyWCGIshell import WebShell
def my_default_cgi_page():
print("")
print("Hello World !")
webshell = WebShell()
webshell.type = "cgi" or "wsgi"
webshell.passphrase = "$HELL"
webshell.pass_type = "url" or "body" or "arguments" or "header_value" or "method"
webshell.standard_page = my_default_cgi_page
webshell.run()
To use this WebShell:
- Configure and copy the WebShell code (server type, passphrase and passphrase location)
- Paste it in the default page of the victim server
- Send a request with the passphrase and exploit the weak server
Links
Licence
Licensed under the GPL, version 3.
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
PyWCGIshell-0.0.1.tar.gz
(19.4 kB
view hashes)