Bypass file(mostly shell) upload tutorial-By spirit

تحميل الفيديو بأكثر من جوده واكثر من امتداد

  شارك   ابلاغ!   وصف الفيديو

Hello guys
My name is Spirit and today i am gonna show you how you can bypass file uploading (mostly while shelling) its just a basic tutorial so, i hope all new pentesters and hackers will like this Tutorial :D

You can also use these extension for::
Here is a list of bypasses:

1)shell.jpg.php (satisfies as check for jpg only)

2)shell.jpg.PhP (obfuscation)

3)shell.php;.jpg (sometimes can ignore whats after ";")

4)shell.php%0delete0.jpg (the infamous NULL byte which comments out trailing text, remove the word delete so the zeros join together, blogspot strips this string!)

5)shell.php.test (defaults to first recognised extension ignoring "test")

6)shell.php.xxxjpg (still ends in .jpg, but not recognised extension so will default to php!)

7).phtml (a commonly used php parsed extension often forgotten about!)

8).php3/.php4/.php5 (valid PHP extensions possibly left out of extension blacklists)
Thanks for watching guys ^_^
This tutorial is for knowledge purpose only. I will be not responsible for any harm

Other best shell uploading related tutorial on by spirit::

1)Upload shell after doing sqli- By Spirit:: https://www.youtube.com/wat...

2)Uploading shell with sqli command-By Spirit::
Facebook page:: http://facebook.com/Pentest...
Twitter :: www.twitter.com/spirit3113