Description

This plugin searches for web shells in the directories that are sent as input. For example, if the input is:

  • http://host.tld/w3af/f00b4r.php

The plugin will perform these requests:

  • http://host.tld/w3af/c99.php
  • http://host.tld/w3af/cmd.php
  • http://host.tld/w3af/webshell.php

Plugin type

Crawl

Options

This plugin doesn’t have any user configured options.

Source

For more information about this plugin and the associated tests, there’s always the source code to understand exactly what’s under the hood:
github-logoPlugin source code
Unittest source code

Dependencies

This plugin has no dependencies.