!C99Shell v. 2.5 [PHP 8 Update] [24.05.2025]!

Software: Apache/2.4.41 (Ubuntu). PHP/8.0.30 

uname -a: Linux apirnd 5.4.0-204-generic #224-Ubuntu SMP Thu Dec 5 13:38:28 UTC 2024 x86_64 

uid=33(www-data) gid=33(www-data) groups=33(www-data) 

Safe-mode: OFF (not secure)

/var/www/html/pmb/master/weevely3-master/tests/   drwxr-xr-x
Free 13.02 GB of 57.97 GB (22.46%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Self remove    Logout    


Viewing file:     test_net_proxy.py (4.28 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
from tests.base_test import BaseTest
from tests import config
from weevely.core.sessions import SessionURL
from weevely.core import modules
from weevely.core import messages
import subprocess
import logging
import tempfile
import os
import re
import time
import json
import socket


class Proxy(BaseTest):

    def setUp(self):
        session = SessionURL(self.url, self.password, volatile = True)
        modules.load_modules(session)

        self.url = 'http://httpbin-inst'

        modules.loaded['net_proxy'].run_argv([ '-lhost', '0.0.0.0', '-lport', '8080' ])


    def run_argv(self, arguments, unquoted_args = ''):
        arguments += [ '--proxy', '127.0.0.1:8080' ]
        result = subprocess.check_output(
            'curl -sS %s "%s"' % (unquoted_args, '" "'.join(arguments)),
            shell=True).strip()

        return result

    def _json_result(self, args, unquoted_args = ''):

        result = self.run_argv(args, unquoted_args).decode('utf-8')

        return result if not result else json.loads(result)

    def _headers_result(self, args):
        return self.run_argv(args, unquoted_args = '-sSL -D - -o /dev/null').splitlines()

    def test_all(self):

        #  HTTPS GET with no SSL check
        self.assertIn(
            b'Google',
            self.run_argv([ 'https://www.google.com', '-k' ])
        )

        #  HTTPS GET with cacert
        self.assertIn(
            b'Google',
            self.run_argv([ 'https://www.google.com' ], unquoted_args='--cacert ~/.weevely/certs/ca.crt')
        )

        # HTTPS without cacert
        try:
            self.run_argv([ 'https://www.google.com' ])
        except subprocess.CalledProcessError:
            pass
        else:
            self.fail("No error")

        # Simple GET
        url = self.url + '/get'
        self.assertEqual(
            url,
            self._json_result([ url ])['url']
        )

        # PUT request
        url = self.url + '/put'
        self.assertEqual(
            url,
            self._json_result([ url, '-X', 'PUT' ])['url']
        )

        # OPTIONS request - there is nothing to test OPTIONS in
        # httpbin, but still it's an accepted VERB which returns 200 OK
        url = self.url + '/anything'
        self.assertEqual(
            b'200 OK',
            self._headers_result([ url, '-X', 'PUT' ])[0][-6:]
        )

        # Add header
        url = self.url + '/headers'
        self.assertEqual(
            'value',
            self._json_result([ url, '-H', 'X-Arbitrary-Header: value' ])['headers']['X-Arbitrary-Header']
        )

        # Add cookie
        url = self.url + '/cookies'
        self.assertEqual(
            {'C1': 'bogus', 'C2' : 'bogus2'},
            self._json_result([ url, '-b', 'C1=bogus;C2=bogus2' ])['cookies']
        )


        # POST request with data
        url = self.url + '/post'
        result = self._json_result([ url, '--data', 'f1=data1&f2=data2' ])
        self.assertEqual(
            { 'f1': 'data1', 'f2': 'data2' },
            result['form']
        )
        self.assertEqual(
            "application/x-www-form-urlencoded",
            result['headers']['Content-Type']
        )

        # POST request with binary string
        url = self.url + '/post'
        result = self._json_result([ url ], unquoted_args="--data FIELD=$(env echo -ne 'D\\x41\\x54A\\x00B')")
        self.assertEqual(
            { 'FIELD': 'DATAB' },
            result['form']
        )

        # Simple GET with parameters
        url = self.url + '/get?f1=data1&f2=data2'
        self.assertEqual(
            { 'f1': 'data1', 'f2': 'data2' },
            self._json_result([ url ])['args']
        )

        #  HTTPS GET to test SSL checks are disabled
        google_ip = socket.gethostbyname('www.google.com')
        self.assertIn(
            b'google',
            self.run_argv([ 'https://' + google_ip, "-k" ])
        )

        # UNREACHABLE
        # This is not true depending on the used ISP, commenting it out
        #self.assertIn('Message: Bad Gateway.', self.run_argv([ 'http://co.uk:0' ]))

        # FILTERED
        self.assertIn(b'Message: Bad Gateway.', self.run_argv([ 'http://www.google.com:9999', '--connect-timeout', '1' ]))

        # CLOSED
        self.assertIn(b'Message: Bad Gateway.', self.run_argv([ 'http://localhost:9999', '--connect-timeout', '1' ]))

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 2.5 [PHP 8 Update] [24.05.2025] | Generation time: 0.0054 ]--