Add Index Page with Start Button Redirecting to Vulnerable CMS Setup

steps to redirect:

apt install php -y

step 1: firstly install apache2 and php in your vulnerable machine.

step 2: unzip the file from redirect_page.zip.

step 3: add this following script in index.html

<?php  
    $ipAddress = exec("/sbin/ifconfig enp0s3 | grep 'inet ' | awk '{print $2}'");  
?>

href button link code

"http://<?php echo $ipAddress; ?>:8088" with port   
"http://<?php echo $ipAddress; ?>" without port

add this link and save as index.php.

step 4: make a conf file for apache2

<VirtualHost *:80>  
    ServerAdmin webmaster@your_website.com  
    ServerName your_website.com  
    DocumentRoot /var/www/your_website/public_html
    ErrorLog ${APACHE_LOG_DIR}/error.log  
    CustomLog ${APACHE_LOG_DIR}/access.log combined
    <Directory /var/www/your_website/public_html>  
        Options Indexes FollowSymLinks  
        AllowOverride All  
        Require all granted  
</Directory>  
</VirtualHost>

Method 2: -

echo '<?php $ipAddress = exec("/sbin/ifconfig enp0s3 | grep 'inet ' | awk '{print $2}'"); ?>' | cat - index.php > temp && mv temp index.php

Method 3: -

<?php
$ipAddress = exec("/sbin/ifconfig enp0s3 | grep 'inet ' | awk '{print $2}'");
$link = "http://" . $ipAddress . ":8088";
echo "Link: " . $link;
?>

Method 4: -

And remove top php single line code.

<button ...... onclick="redirectTo()">Start Lab</button>

<script>
function redirectTo() {
  const protocol = location.protocol;
  const host = location.hostname;
  const portPath = ":8090/home"
  location.href = `${protocol}//${host}${portPath}`;
}
</script>

Use HTTPS + correct port:

And remove top php single line code.

<button onclick="redirectTo()">Start Lab</button>

<script>
function redirectTo() {
  const host = location.hostname;
  location.href = `https://${host}:10000/home`;
}
</script>

PreviousPython3 HTTP Server Running on Port 9000 (Handling GET Requests)NextGenerate random root flags

Last updated 1 month ago