From the course: Kali Linux for Advanced Pen Testing and Ethical Hacking
Join today to access over 25,300 courses taught by industry experts.
Weeving a shell - Linux Tutorial
From the course: Kali Linux for Advanced Pen Testing and Ethical Hacking
Weeving a shell
- Weevely is a command-line tool deployed in Kali, which can be used to generate a PHP shell implant. And then after it's been deployed onto a target, connect to it. The command and control components of the system in its basic form connects using a URL call to its PHP implants. And through that serves up a command line shell. Let's take a look at it. Weevely can be used in three ways. First to connect to a deployed implant. Second, to connect to a session, and then last to generate an implant. Let's start by generating an implant. The implant we generate will be a small polymorphic PHP agent, which is difficult for antivirus to detect. And the communications channel is deliberately obfuscated to confuse monitoring systems. I'll generate a Weevely module called wish.php with a password of bedbug. Weevely generate bedbug wish.php. By uploading wish.php to a target we can then use Weevely to connect to it, and this…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.