Carbylamine is a PHP Encoder project, which can bypass all leading anti-virus detection against PHP Shells (C99, R57 etc) easily. It can be a very efficient tool for pen-testers when carrying out a black box test which involves inserting malicious code via PHP.
Usage
1 |
carbylamine.php [file to encode] [output file] |
You can download Carbylamine here:
Or read more here.
Sjon says
Really? All this script does is:
$code = base64_encode(gzdeflate($code)); eval(gzinflate(base64_decode($code));
I don’t understand this gets posted here.
JonS says
Other things are also there, mate ! Look carefully !
Darknet says
Submit something awesome that you’ve written, it’ll probably get posted too :)
Amr Ali says
How about this (https://github.com/amrali/Sagittarius) ?
Darknet says
That’s neat thanks – haven’t seen it. Will probably post it up at some point.
Sro says
For PT, i use basic file