Publish: 2018-09-23 | Modify: 2018-10-20
Description: Many of us like to find website program source code or themes from unknown sources online. If we are unlucky, these backdoors can be easily used to gain operational permissions on the server, such as executing system commands, stealing user data, deleting web pages, and modifying homepages. The harm is quite significant, so we need to personally check before using them to see if they contain backdoors. Here, I will share two detection tools: D盾_Web Check and WebShellkiller.
WebShellkiller is a web backdoor specialized killing tool that not only supports webshell scanning but also supports dark chain scanning. It is a kill tool that integrates multiple detection engines. Based on traditional regular expression matching, it adopts simulation execution, parameter dynamic analysis monitoring technology, webshell semantic analysis technology, and dark chain hidden feature analysis technology. It also builds an intelligent detection model based on machine learning according to the behavior pattern of webshell. Combining traditional technology with artificial intelligence technology, static scanning and dynamic analysis are combined to more accurately detect known and unknown backdoor files of WEB websites.
Download link: Official Download, Local Download
The software uses a self-developed code analysis engine that does not distinguish file extensions and can analyze more hidden WebShell backdoor behaviors. The engine is particularly targeted at one-line backdoors, variable function backdoors, ${}
execution, preg_replace
execution, call_user_func
, file_put_contents
, fputs
, and other special functions. It can identify them specifically and kill more hidden backdoors, and present suspicious parameter information to you, allowing you to quickly understand the situation of the backdoor. It also has isolation functionality and can be restored.
Download link: Official Download, Local Download
Original article from: 分享2款网站程序源码/主题等后门检测工具, the final interpretation rights belong to the original author. If there is any infringement, please contact QQ: 337003006 for deletion.
I come from China and I am a freelancer. I specialize in Linux operations, PHP, Golang, and front-end development. I have developed open-source projects such as Zdir, ImgURL, CCAA, and OneNav.