Skip to content

DarkenCode/php7-opcache-override

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
demo
demo
 
 
LICENSE
LICENSE
 
 
OPCACHE_x86.bt
OPCACHE_x86.bt
 
 
README.md
README.md
 
 
system_id_scraper.py
system_id_scraper.py
 
 

Repository files navigation

PHP OPcache Override

This project contains the demo website and the tools presented in the following blog post : http://blog.gosecure.ca/2016/04/27/binary-webshell-through-opcache-in-php-7

010 Editor Template

This template parses OPcache files generated by a 32bit platform.

  • Download 010 editor
  • Templates -> Open Template... Select OPCACHE_x86.bt
  • Open your OPcache file
  • Press F5

Python System ID Scraper

This tool lets you extract the system_id of a phpinfo() page. Simply pass a filename or a URL.

$ ./system_id_scraper.py info.html
PHP version : 7.0.4-7ubuntu2
Zend Extension ID : API320151012,NTS
Zend Bin ID : BIN_SIZEOF_CHAR48888
Assuming x86_64 architecture
------------
System ID : 81d80d78c6ef96b89afaadc7ffc5d7ea

Demo

To setup the demo, run the following two commands :

sudo ./setup.sh
php -S 127.0.0.1:8080 -c php.ini

About

Security-related PHP7 OPcache abuse tools and demo

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 53.0%
  • PHP 37.6%
  • Shell 9.4%