flozz / p0wny-shell Goto Github PK

will vi be supported?

can you make it use for remote server. so i can place it in external server and i can remote with this to internal server

Hi, i have error what can be wrong?

It would be a cool little feature that allows the shell user to define a password/username for the shell to prevent unauthorized access to it.

I would implement it as follows:

1. add 3 new variables to SHELL_CONFIG: authentication_needed (bool), login_username (string), login_password (sha256 or md5 of the password).
2. if authentication_needed = true, then add a "WWW-Authenticate" header and exit().
3. check if the user's credentials are correct and let him in.

Is this something that can be implemented?

File and directory names on Windows might not be UTF-8 encoded and json_encode() fails. This is what I have come up with (around line 100):

    $encoded = json_encode($response);
    if(!$encoded) {
        //replace "unknown" charaters with ?
        $i = 0;
        foreach($response['stdout'] as $v) {
            $response['stdout'][$i] = preg_replace('/[\x00-\x1F\x80-\xFF]/', '?', $v);
            $i++;
        }
      $encoded = json_encode($response);
    }

    header("Content-Type: application/json");
    echo $encoded;
    die();

@flozz - what do you think about implementing this:

That screenshot shows how it looks using https://github.com/Arrexel/phpbash

If you're interested, I could put together a PR.

Would be nice to have ">" instead of "#" on windows.

Add this around line 100:

var cmdPrompt = <?php echo defined('PHP_WINDOWS_VERSION_BUILD') ? "'>';\n" : "'#';\n";?>

then replace line 334 with this:

return "<span title=\"" + cwd + "\">" + shortCwd + "</span>" + cmdPrompt;

GitHub should remove this type of useless "educational purpose" stuff.

Error while parsing response: SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data popup firefox

I tried to input tasklist to view running process but it shows error

Found non-ASCII characters in the UI during file upload. Would replace to ASCII equivalence.

Current:

After:

everyone thinks im a hacker now lol. i guess i really am

Is it possible to increase the size of the terminal window?

I just read the README.md file which says that every PR should have a issue before it is created. Since I have already created the PR, I will still explain why this is a good improvement.

Some servers disable functions for security reasons, but leave some open because they don`t know them or use only certain functions.
For these cases, the exec function could be blocked, but shell_exec could be allowed. So the idea would be to go through a list of possible aqiuvalente so that we can still execute commands.

My PR
#31

Again i am sorry, that i did the order wrong :)