A collection of PHP backdoors. For educational or testing purposes only.
A collection of PHP backdoors. For educational and/or testing purposes only.
This includes links to tools for the following:
Access the links to these tools directly from here.
Read my blog post on ‘C99Shell not dead’ for more information about PHP backdoors (and in particular c99Shell, which you can also find in this repository). You can also follow me on Twitter.
If you’re trying to detect webshells like the ones mentioned in this repository, you may want to use Yara and scan your web server with the following Yara rules specifically for webshells:
Yara-Rules/webshells
Alternatively, have a look at the disinfection tips provided in my blog post.
To the extent possible under law, bartblaze has waived all copyright and related or neighboring rights to this work. He makes no warranties about the work, and disclaims liability for all uses of the work.