PHP 8.1.0-dev BACKDOOR Hack (Easy RCE)

Ps, HUGE THANKS to Snyk for sponsoring this video ! Snyk is putting together their next Capture the Flag 101 workshop! If you are new to CTF challenges and want some extra guidance on how to cut through binary exploitation or web security tasks, jump into their free online session on September 14th at 11am EDT! j-h.io/snyk-ctf101
click the link plz
click it
CLICK THE LINK
j-h.io/snyk-ctf101
click click click

I could watch John explaining Python code for the rest of my life!

Thanks John, your way of teaching, explaining while you're working on the fly is awesome! Really teaches us how to think and react while troubleshooting.

Thank you -John- Kevin!

I just got my A+, Net+, Sec+ and man there’s SOOO much more to learn haha maybe I’ll under more with time but 80% of the video I know. Just now I have to figure out how to implement everything I learned. Hands on is WAY better for me! Thank you for what you do hopefully one day I will be kind of close to on your level of knowledge.

Its fun how i know nothing about hacking but when he explains things it makes perfect sense

Your channel is best source to learn Cybr security 👍

Could you do a video on how you make these challenges? like the thought process and steps behind it? I think thatd be awesome

I just remembered when I first CTF like experience with Kirshbaum. They have a challenge for job applicants and successfully doing the challenge grants them a chance for an interview. I failed the interview tho but it was a fun experience nonetheless.

this is the only ad sponsor i would watch

It would really be awesome if you could make a video on how to create a CTF challenge based on the vulnerabilities on Exploit DB. The way to navigate through exploit DB, the thinking process, etc...

Zerodium ~ Zero Diem ~ Zero Day

Look, I'm not into security but I could not pass this video. Very interesting and made easy to understand some Linux command lines and strategies to find problems. Thanks!

Glad to hear about the snyk ctf webinar John.... can’t wait XD

May I suggest backing off from the mic, or getting a pop filter? Your P’s are pretty brutal on headphones.
Great video, anyways. 😍

I learn alot from you man 💚

I thought all the comments here were from bots at first, since the sponsorship happened right out of the gate and they were all so positive. Entertaining and engaging video, though. I might try some CTF myself, since I’ve never done anything related to cybersecurity.

You never disappoint, thanks John!

Great content John! Thanks for all your shared knowledge as usual!

The Greatest man in this feild ❤❤❤

I loved the office reference :D

Thanks John for teaching me 👾

Its crazy how simple it is to understand python ven though I barely learned python
Not really as simple but getting use to how it works makes it simple enough to understand...

Awesome vid John!!!

Awesome! :) Great video as always.

Love your videos! Thank you for all that you do.

Obrigado, sempre ótimos conteúdos!

you know what john i love you

Love your content Mr. Hammond

Very interesting.

The hair in front of his face the entire time man lmao

One thing I don't understand is why root user in container has root privileges in host filesystem? These shouldn't be treated as different users? To me, users in containers shouldn't 'communicate' with users in host. Why is it the case? Thanks :)

Thank you for the video suggestions .I will go through one by one

thanks, John!

Real cool man! Although I completed the box within 3 minutes X3

This is why I never upgrade to a version of PHP when it first comes out. I always stay one or two behind if I can to make sure if any severe vulnerabilities like this come out they are fixed before they can affect me.

Hey John, I've been using rustscan lately and i really like it, is. Slot faster and can be complemented with nmap for full scans but is much faster. I wonder why you don't use it?

Thank you John

What I'm really struck by is that it was _planted_, by a security firm that sells exploits no less... wow

Thank you sir you would have been intresting to me to become a good business man

You are best ;) Thank You !!!!!!!!!!!!!!!!

what up KEVIN!!

👽😍😍😍

Thanks for the video.

I've always wanted to get into whitehat hacking and this is the best video I've seen so far about it. You're amazing

I learned alot thanks

Whats with the thumbnail lol
John Hammond Breaking bad XD

Last year, this exploit was featured in HackTheBox when it was quite new.
You had to understand a chinese Blog post to get the shell back then

Can you make a video on Creating vulnerable machines for hacking platforms in depth, and that can be in series?

Good stuff

Thank you John. Do you think the snyk ctf webinar is good for an absolute beginner? No ctf experience (aside from your channel), and just starting to learn python, cybersec, etc...thanks.

Thanks!

The webpage looks like an appseed template

to all php devs, jump ship while you still can

Thanks.

Think I remember when this backdoor went up, wasn't it a big thing?

Gj :)

nice one

nice

Why I got rickrolled ?¿? I only wanted to do the workshop

so who caught the 'Kevin/ Office' refence at the beginning?

Whoa that seems really bad. Gonna have to go do some more research on that user agentt situation

Pls was the workshop session recorded cos I missed it

Hey, I just wanted to check briesofty if there is a way for to import a new soft into the program, for example softs or sotNice tutorialng that

I don't get it, why would you intentionally add a backdoor to php.

Show thanks obrigado

❤️❤️❤️👏👏👍

Astra Linux users can take the hack me challenge.

what is proc in Linux directories? and why does its size be 140 TB ,, which system uses that huge amount of memory in the tera bytes?

how do you know what to search? what if i cannot tell if PHP 8.1.0-dev is the keyword?

Sorry, not on this subject. Any advice of how to get rid of Instant Memo? It is messing my tablet up. Tried numerous ways to uninstall, can't. Force stop, clear cache doesn't even slow it down.
I can't find any info on it.

Watching on sep 27 lol

What's with the marvin villain thumbnail ?

What is verbosity in this context?

Can you do a video on setting up a VM for doing these challenges, I have wanted to do these challenges for a while but want to ensure I am being as safe as possible as I have heard you are all connecting to the same VPN network I want to ensure my vm is as isolated as possible, I was thinking putting my vm behind a virtualized pfSense and blocking access to my network from that pfSense firewall. Am I overthinking this or should I really dedicate one vm and virtual network setup to just CTF challenges?

Every happened to the Ubuntu install?

Apache tomcat 8.5.58 vuln ??

anyone tried to get rev shell on the machine or could ?

Agent-T

did u already create an exploite sir ?

LOL'd at this ahaha
if you dont provide the "zerodium" at the start of the string it just says "REMOVETHIS: Sold to zerodium in 2017"

php had a backdoor built in. WTF!?

Look for mobile malware please

as a php programmer , feeling so sad

hmm..

mp4 mp3 files backdoor

Please laugh a bit so I can see if you sound like Seth Rogen.

*I feel pity for Php Evangelists*

Php is still important??

John your having a laugh arent you with this? I like watching your videos because you are informative. You said at the beginning this was an easy challenge, yet you copy and pasted someone else's code.

I dropped PHP 19 years ago, because I was awful then and it's still awful now. Stop using PHP.

I told you PHP is very vulnerable language
Also php 5.3 has RCE exploit
Another php vulnerability
PHP CGI argument injection

still using nmap rather then zmap. 2000 called they want their shell script kiddies back.

this is good, enjoyment.exe 😊

Ah man tryhackme is so fun. Thanks you for developing some fun challenges for us.