|
Wsh, "Web Shell" - remote UNIX/WIN shell, that works via HTTP/HTTPS.
The package contains two perl scripts for server and client hosts,
one C source code and one Java servlet code for the server host : the client
script is for console usage and the server scripts run as CGI/Servlet
scripts on the target host.
The client part provides shell-like prompt, encapsulating user commands
into HTTP POST requests and sending them to the server part script on the target
web server directly or via HTTP proxy server. The server part extracts and
executes commands from HTTP post requests and returns STDOUT and STDERR output as
HTTP response messages. By default both scripts encode HTTP data with Xor.
The key Web Shell features: SSL support (*), Command line history support (*),
File upload/download, Protect server part script usage with secret key inside
HTTP message, Data flow Xor encoding, Can work trough HTTP proxy server.
(*) - Additional packages are required on the client host.
Alex Dyatlov, Simon Castro
Current Wsh version: 2.2.2;
README ,
CHANGELOG
Download | md5sum: 4b7f51d186b65bd16e304b507b96613c
http://gray-world.net/projects/wsh/wsh-2.2.2.tar.gz
Index of projects
| 
|
|
Paper : Covert Channel and Tunneling over the HTTP protocol Detection:
GW implementation theoretical design.
[read]
|
|
