A feature-rich, modernized PHP web shell designed for Capture The Flag (CTF) challenges with a clean, intuitive interface and advanced file management capabilities.
-
🖥️ System Information Display
- PHP version information
- Server details
- User identification
- IP address monitoring
-
🎯 Command Execution
- Real-time command execution
- Working directory preservation
- Command output display
- Interactive terminal-like interface
-
📁 Advanced File Management
- Directory navigation
- File permissions display (UNIX-style)
- File ownership information
- Download functionality
- File upload capability
-
🎨 Modern UI/UX
- Responsive design
- Dark theme
- Font Awesome icons
- JetBrains Mono font
- Clean CSS styling
- Directory traversal protection
- Input sanitization
- Path validation
- Secure file handling
- Upload the PHP file to your web server
- Ensure proper permissions are set
- Access through web browser
- Navigate directories using the file browser
- Execute system commands via the command interface
- Upload files using the upload form
- Download files directly through the interface
- View detailed system information
- Built with pure PHP
- Minimal dependencies
- FontAwesome integration
- Custom permission handling
- Extensive error handling
This tool is designed for educational purposes and CTF challenges only. Do not use on unauthorized systems or production environments.
php-webshell ctf-tool penetration-testing web-security file-manager command-execution system-information file-upload file-download web-interface security-tool ctf-challenge ethical-hacking web-exploitation security-assessment php-security web-shell shell-interface terminal-emulator educational-tool