What is shell ?
After getting the admin access in the website attacker will upload his own control penal that’s called shell. It helps attacker to maintain access for the long time. There are many types of shells like DDOSE shell, symlink shell etc.
Using shell attacker can destroy whole database and he can leak the database of the website and using the shell he can root the server. (Only Linux server can be rooted windows server cant be rooted because there is no ROOT :P) After rooting he can destroy whole server. Suppose One server contains 500 websites and attacker got the admin access in the single site and he have rooted that server then 500 sites can be destroyed !
No comments:
Post a Comment