PwnX.py icon indicating copy to clipboard operation
PwnX.py copied to clipboard

Published 20 hours ago verified publisher icon ecriminal

Metadata

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

🏴‍☠️ PwnX.py

Pwn misconfigured sites running ShareX custom image uploader API through RFI -> RCE.

alt XAMPP running as SYSTEM kek

🗂️ Requirements

  • Python 3
  • Git (optional)

⚙️ Installation

  1. Clone the repository: $ git clone https://github.com/ecriminal/PwnX.py.git or manually download it here
  2. Go to the cloned repository: $ cd PwnX.py
  3. Install the required Python packages: $ python3 -m pip install -r requirements.txt
  4. Run PwnX.py: $ python3 PwnX.py

📝 TODO

  • [ ] Encode PHP web shell payload to bypass WAFs and AVs
  • [ ] Custom PHP web shell payload command-line option
  • [ ] File upload feature in built-in PHP web shell
  • [ ] File download feature in built-in PHP web shell
  • [ ] Change direction feature in built-in PHP web shell
  • [ ] Auto remove PHP web shell
  • [x] Save web shells to file

Metadata

29
Stars
5
Forks
Watchers

Owner

verified publisher icon ecriminal

Metadata

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Back