Contact us

Solutions

Featured solutions AI Campus and branch Data center WAN Security Service provider Cloud operator Industries

Services

Services

Take me to HPE.com

HTTP: PHPSploit Post Exploitation Backdoor Access

This signature detects attempt to fingerprint a PHP based backdoor tool PhpSploit which is used for post-exploitation and being considered as a stealthy backdoor tool. A successful exploitation through the backdoor may result in arbitrary code execution and could lead to further attacks.

References

URL: http://wikisecure.net/a-walk-through-of-phpsploit-backdoor/ https://github.com/nil0x42/phpsploit

Short Name

HTTP:PHP:PHPSPLOIT-POSTEXP

Severity

Critical

Recommended

True

Recommended Action

Drop

Category

HTTP

Keywords

Access Backdoor Exploitation PHPSploit Post

Release Date

01/12/2016

Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version

3375

False Positive

Unknown