GHDB « Hackers For Charity

GHDB

GHDB

Google Search: intitle:”PHP Shell *” “Enable stderr” filetype:php

juventini rates this entry 8 out of 10.
Submitted: 2004-07-12 11:25:44
Added by: juventini
Hits: 10928
Score: 8

PHP Shell is a shell wrapped in a PHP script. It’s a tool you can use to execute arbiritary shell-commands or browse the filesystem on your remote Web server. This replaces, to a degree, a normal telnet-connection. You can use it for administration and maintenance of your Web site using commands like ps, free, du, df, and more.If these shells aren’t protected by some form of authentication, an attacker will basicly *own* the server. This search finds such unprotected phpshells by looking for the keyword “enable stderr”.

Comments:

2004-07-18 07:45:33 (murfie): Most phpshells have been found by administrators..
Alternative search syntax might be:

<"Enable stderr" filetype:php inurl:"work_dir">

This works in case if the default Title has been changed.


5 Responses to “GHDB”

  1. Jack says:
    October 26, 2011 at 9:12 pm

    Does GHDB still updates for now?

  2. Johnny says:
    October 27, 2011 at 3:31 am

    The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.

  3. The Artist says:
    April 20, 2013 at 7:10 am

    Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???

  4. Johnny says:
    April 27, 2013 at 5:10 am

    The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!

  5. Velmurugan says:
    May 7, 2013 at 7:38 am

    Is any offline view-able resources is available of this product ?

Leave a Reply