Ready to Start Your Career?

By: Chilico
September 2, 2016
Tutorial: Local File Inclusion to Command Execution
By: Chilico
September 2, 2016

By: Chilico
September 2, 2016



Now I want to know if Apache logs are readable -

I will use burpsuite as a proxy to intercept the request and try the injection...a nice injection point is the User-Agent.

Also for learning purposes lets ssh the 'victims' box and tail the logs to see what happened in real time.

Lets now navigate again to apache logs and see what happend

That means our injection work but it has nothing to execute at this point.What we have to do at this point is to add the '&cmd=' at the end of the link and execute the command we wish.

As we already know linux systems comes with netcat pre-installed so lets use that for our advantage and create a reverse shell to our system.

Build your Cybersecurity or IT Career
Accelerate in your role, earn new certifications, and develop cutting-edge skills using the fastest growing catalog in the industry