MySQL UDF Shells « DiabloHorn

MySQL UDF Shells

Nostalgic feelings all over the place. Just found this baby ugly code but when I needed it it sure did it’s job. I even seem to have implemented some kind of rudimentary “social engineering’. When the wrong password is supplied to the bind shell it will respond with “FTP ACCESS DENIED”. Intention was to have people think it was some kind of FTP daemon, so if they attempted a brute force it would be wrong from the beginning.

The command execution shell

http://pastebin.com/f22735864

The bind shell

http://pastebin.com/f611f0ba2

The reverse shell

http://pastebin.com/f5e167b65

This entry was posted on November 10, 2009 at 00:33 and is filed under kd-team archive, tools with tags bind, command execution, mysql, reverse, shell, udf. You can follow any responses to this entry through the RSS 2.0 feed You can leave a response, or trackback from your own site.

DiabloHorn

MySQL UDF Shells

Leave a Reply