phpinfo-to-rce

Community

Chain exposed phpinfo to full RCE access

Authoruphiago
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill eliminates the need for blind exploit testing when an exposed phpinfo page is discovered during reconnaissance, quickly determining if the target is vulnerable to remote code execution via available exec functions or bypass techniques.

Core Features & Use Cases

  • PHPInfo Analysis: Parses exposed phpinfo output to identify critical directives like disable_functions, allow_url_fopen, and PHP version to assess RCE viability.
  • Bypass Detection: Checks for common disable_functions bypass vectors including LD_PRELOAD (via putenv) and FFI for PHP 7.4+ environments.
  • Upload Vector Discovery: Scans for common file upload paths including WordPress XMLRPC wp.uploadFile, open registration forms, contact forms, and plugin-specific upload endpoints.
  • Use Case: A penetration tester who discovers an exposed info.php on a WordPress e-commerce target can use this Skill to quickly confirm RCE possibility and identify the optimal upload vector to deliver a webshell.

Quick Start

Use the phpinfo-to-rce skill to analyze the exposed phpinfo page at https://your-target.com/info.php, confirm if exec functions are available or viable bypasses exist, and locate a file upload vector to deliver a webshell for code execution.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: phpinfo-to-rce
Download link: https://github.com/uphiago/recon-skills/archive/main.zip#phpinfo-to-rce

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 537,000+ vetted skills library on demand.