404 Page Not Found Webshell
Clone or download the project:
git clone https://github.com/CosasDePuma/SecurityNotFound.git SecurityNotFound cd SecurityNotFound
src/404.php file should be located on the target server.
That server must have the ability to execute
Here is an example of some of the most common routes on which servers are located:
# 🏁 Windows (Xampp) C:\Xampp\htdocs\ # 🐧 Linux /var/www/html/
⚠️ Obviously, you and I know that you have legitimate access to that server.
🚪 Access Granted!
Now, you can access it through the browser:
💡 You can replace the server 404 error template to access from any invalid URL.
To access the control panel, press
TAB key or search the password field using your browser’s tools.
The default password is:
🥚 You can leave the
$passphrasevariable in the script as an empty string to directly access the control panel. If it is your intention, you have lost my respect.
🔒 To set a custom value, insert your password into the
$passphrasevariable after applying the
MD5algorithm three consecutive times.
☸️ Control Panel
|Function||Shown in the picture|
🔖 You can also log out using the
exitparameter in a
|EXPLOIT-DB||Searches for kernel-compatible exploits in |
|GEOLOCATE||It shows approximately in |
|SELF-REMOVE||The shell deletes itself from the server.|
📜 Log Footprints
|# of lines in ||Action|
|1||Access without logging in|
|1||Access with the session already started|
|2||Execute a command through the console|
Weevely – Weaponized Web Shell
You can read more about the developer and securitynotfound here – https://github.com/CosasDePuma/SecurityNotFound
Source : Haxf4rall