web shell
0001-01-01
A web shell is a type of malware that is able to execute arbitrary commands under the context of the web server.
Web shells can be placed manually in web server directories by attackers for persistence, or by leveraging a file upload bug that allows an attacker to upload scripts to a directory the web server is able to serve.
Linux Persistence: Modular Software
2025-04-17 DFIR CTF persistence linux persistence apache asterisk
Linux Persistence: Web Shells
2025-04-16 DFIR persistence webshell linux persistence webshell apache nginx PHP
Linux Persistence: Rootkits
2025-04-15 DFIR persistence rootkit LKM linux persistence LKM rootkit LD_PRELOAD kprobe ftrace ld.so hooking
Defanging Linux LKM Rootkits With cleanup_module()
2025-04-05 Linux LKM rootkits EDR hooks incident response Linux LKM rootkit