This project is a sandbox environment that demonstrates the concepts of Command Injection and Remote Code Execution in PHP. It includes several PHP files that showcase different ways in which these vulnerabilities can be exploited.
This application is intended for educational purposes only and should not be used for malicious purposes. It is designed to help developers and security professionals learn about common vulnerabilities and how to protect against them. Users should be aware that executing arbitrary code or commands on a server can be dangerous and can result in security vulnerabilities.
To use this project, you will need to have Docker installed on your computer.
Open a terminal window and run the following command to pull the Docker image from Docker Hub:
docker pull thewation/cicephpbox:latest
Run the Docker container using the following command:
docker run -p 8000:80 thewation/cicephpbox:latest
This command will start the Docker container and map port 80 of the container to port 8000 of your local machine. You can access the PHP files in the container by opening your web browser and navigating to http://127.0.0.1:8000/.
This file accepts a name parameter from the query string and uses the assert function somewhere in the code on this input. The file then prints "Hi" to the provided name.
This file accepts a name parameter from the query string and uses the eval function somewhere in the code on this input. The file then prints "Hi" to the provided name.
This file accepts a file parameter from the query string and uses the system function to call the cat command to retrieve the contents of the file. The contents of the file are then printed to the screen.
This file accepts an ip parameter from the query string and uses the system function to call the ping command to ping the target IP. The output of the command is then printed to the screen.
This file accepts an ip parameter from the query string, verifies the IP structure using a regular expression, and if the IP is valid, uses the system function to call the ping command to ping the target IP. If the IP is invalid, the user is redirected to a /403 page.
This file accepts an ip parameter from the query string, verifies the IP structure using a regular expression in a more secure way, and if the IP is valid, uses the system function to call the ping command to ping the target IP. If the IP is invalid, the user is redirected to a /403 page.
This file accepts an ip parameter from the query string, verifies the IP structure using a regular expression in a more secure way, and if the IP is valid, uses the system function to call the ping command to ping the target IP. If the IP is invalid, the user is returned an "Invalid IP Address" message.
This file accepts a file parameter from the query string and uses the system function to call the test binary to check if the file exists or not. If the file exists, the message "The file exists!" is returned, otherwise the message "The file does not exist." is returned.
To use this sandbox environment, simply download the files and host them on a PHP-enabled server. You can then access the different files through their respective URLs.
Note that these files are intentionally vulnerable and should not be used on a production server or in any situation where security is a concern. They are designed for educational purposes only to demonstrate how command injection and remote code execution vulnerabilities can be exploited.