Pentest Tools mando

Published on January 10th, 2018 | Post Views: 1,127  Hits Post Views

mando.me: Web Command Injection Tool

PHP Command Injection exploitation tool

  1. Exploit web page and upload simple-shell.php (or simply find an existing exploitable command injection).
  2. Execute the controller to exploit the command injection vulnerability. The controller is simply a command injection exploitation tool, and can therefore with a few adjustments be rewritten to exploit already existing vulnerabilities without the need for uploading the ‘simple-shell.php’.
  • Automated exploit-injection via POST or GET (eg. ./mando.me.py –cookie “security=low;PHPSESSID=DEADBEEFDEADBEEFDEADBEEFDEADBEEF” –url “http://metasploitable:2280/dvwa/vulnerabilities/exec/” –post “{‘submit’:”,’ip’:_INJECT_}”)
  • Encrypted agent communication
  • Meterpreter/Reverse Shell Injection
  • A more user friendly UI
  • Built in post exlpoitation tools (enumeration, privilege escalation etc.)
  • And much more…

Download

git clone https://github.com/z0noxz/mando.me.git

Use

(python) mando.me.py [options]
Options:
–help Show this help message and exit
–url Shell interface URL without paramters (e.g. “http://www.site.com/simple-shell.php”)

–post Declare POST data (eg. “{‘submit’:”,’ip’:_INJECT_}”)
–get Declare GET data (eg. “{‘ip’:_INJECT_}”)
–cookies Declare COOKIE data (eg. “PHPSESSID=deadbeefdeadbeefdeadbeefdeadbeef”)
Shell commands:
Commands that are executable while in shell interface

▼Advertisements

meterpreter Injects a PHP Meterpreter, PHP Reverse TCP Stager (requires a listener for php/meterpreter/reverse_tcp)
upload Upload a file
download Download a file
kill_self Cleans up traces and aborts the shell
exit Exits the shell

Source: https://github.com/z0noxz/mando.me












Leave a Reply

Back to Top ↑

Read previous post:
coinhive-script-blackberry-mobile
BlackBerry Mobile Website hacked, crooks installed a Coinhive’s code to mine Monero

According to Coinhive, the BlackBerry Mobile website was hacked by exploiting a critical security vulnerability in the Magento e-commerce software....

Close