Comments (12)
i mean, do i read this properly? isn't this running eval on the malicious code it just detected?
https://github.com/emposha/PHP-Shell-Detector/blob/master/shelldetect.php#L470
wtf?
from php-shell-detector.
And why is everything detected as Positive, its a 1405674947
(all files are clean on testserver)?
Even the language files are detected as shell.
from php-shell-detector.
- first of all remote db is used only when you set proper flag, otherwise you can use local version.
- the eval is running on replaced version of php code, and this try to encode decoded version. You probably miss the preg_replace part...
from php-shell-detector.
@DanielRuf about (Positive, its a 1405674947) probably some false positive, can you provide more info about thins
from php-shell-detector.
I just run PHP Shell Detector on a normal WordPress website with full rights and got this positive detection on all files.
from php-shell-detector.
But this does not describe why the db file is a huge base64 encoded string (which adds ~30% overhead).
from php-shell-detector.
I might be wrong but isn't the database file world-writable after an update? So possibly a privilege escalation to the user running shell-detector would be possible.
from php-shell-detector.
hi i got the error
Error: file_get_contents(): https:// wrapper is disabled in the server configuration by allow_url_fopen=0 line: 243
Error: file_get_contents(https://raw.github.com/emposha/PHP-Shell-Detector/master/version/app): failed to open stream: no suitable wrapper could be found line: 243
Cant connect to server! Application version check failed!
Error: file_get_contents(): https:// wrapper is disabled in the server configuration by allow_url_fopen=0 line: 251
Error: file_get_contents(https://raw.github.com/emposha/PHP-Shell-Detector/master/version/db): failed to open stream: no suitable wrapper could be found line: 251
Cant connect to server! Version check failed!
can someone tell me how do i solve this error ?
from php-shell-detector.
Please check your php.ini and ask your hosting provider @RameshMaharjan
from php-shell-detector.
I know have problem with Backdoor:PHP/CryptInject.YA but not detected by scanner
from php-shell-detector.
Hi @6a6ak,
I know have problem with Backdoor:PHP/CryptInject.YA but not detected by scanner
This project looks for files with specific file hashes. Backdoor:PHP/CryptInject.YA might not be part of the file hashes by default.
Did you manually create the file hashes for the scanner?
from php-shell-detector.
See https://github.com/emposha/PHP-Shell-Detector/blob/master/shelldetect.db for the database file.
A file hash based approach is not very reliable as the smallest change will result in a completely different file hash.
from php-shell-detector.
Related Issues (12)
- php error HOT 1
- typo in cfg file HOT 1
- Submit file for analize HOT 2
- Spanish Translation
- ask login when request http://website.com/shelldetect.php HOT 3
- not user to too many file HOT 2
- Keep asking username and password HOT 2
- Fatal error: Using $this HOT 1
- can i run it only in command line? HOT 1
- manage to bypass the regex & signature using backtick to execute shell operation HOT 4
- Error: Undefined offset: 1 line: 268 HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from php-shell-detector.