Download and install web apps

You can find here how to download and install a Wordpress CMS in a strongly limited environment that does not allow to execute shell commands.

The called system commands that would not be possible to execute in this environment are instead replaced transparently by the Weevely modules offering a complete system shell experience.

Configuration

Example PHP configuration: disable_functions = system, proc_open, popen, passthru, shell_exec, exec, python_eval, perl_system
Used modules: file_ls (ls), file_webdownload (wget), file_zip (zip), file_rm (rm)

Session

$ ./weevely.py https://target/agent.php mypassword

[+] weevely 3.0

[+] Target:	target
[+] Session:	_weevely/sessions/localhost/agent_0.session

[+] Browse the filesystem or execute commands starts the connection
[+] to the target. Type :help for more information.

www-data@target:/var/www PHP> wget https://wordpress.org/latest.zip wp.zip
www-data@target:/var/www PHP> ls
.
..
wp.zip
www-data@target:/var/www PHP> zip --decompress wp.zip .
True
www-data@target:/var/www PHP> ls
.
..
wordpress
wp.zip
www-data@target:/var/www PHP> rm wp.zip
True
www-data@target:/var/www PHP>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Download and install web apps

Configuration

Session

Result

Clone this wiki locally