Skip to content

New Release

Latest
Compare
Choose a tag to compare
@dotcppfile dotcppfile released this 06 Dec 01:44
· 11 commits to master since this release
  1. The shell now checks if it can CHMOD a directory(by comparing the values of the directory and the current process's owners) instead of just skipping one that doens't meat the requirements when looking for "DAws's directory".
  2. DAws now "copies" itself to "DAws's Directory" then drops the .htaccess and php.ini files, which are suppose to make life easier if suphp is installed, if that directory is within the web directory. It'll redirect the current user to that new copy of DAws. Because of all this DAws is much faster now since it is in its own directory, the right table doens't have to be full of crap that we don't care about and bypassing security systems if suphp is installed is now guaranteed.
  3. Fixed some "serious" permission bugs in the File Manager which were causing "Rename" and "Del" to appear/disappear when they shouldn't be.
  4. You can finally CHMOD a file/directory using the file manager. I am not sure why it took me so long to add this but who cares? It's here now, enjoy.
  5. Added File Owner and User's Group to the File Manager. Having this information is needed and should've been here since the beginning because the permissions makes no sense without it and I kept pushing this update because it's not "that" important since DAws checks everything for you but again, who cares? It's here now, enjoy lol.
  6. You can now "Wipe" a file instead of just Deleting it which makes it mostly impossible to get it recovered. DAws will simply replace the old file bytes with null ones, this isn't a very good "wiper" but it gets the job done pretty well.
  7. DAws now supports PDO for the Sql Connector. This is useful and needed in case "mysqli_connect" was blocked.
  8. You can now specify the "Host" when using the MySql Connector since the Host isn't always local and since a remote MySql server connection can be blocked unless it's coming from a specific client, so having this is obviously a good thing.
  9. You can now save the output of any Sql Query which is pretty useful if your MySql User had no file privileges.
  10. You can now execute Python, Perl and Ruby code on Windows.
  11. You can now chose the type of a Bind/Reverse shell instead of it being done automatically for you because why not? In some specific cases a coding language may fail because of some process restriction, for example, and DAws can't know that so this small change should solve that.
  12. You can now chose whether you want a reverse/bind shell or some eval code to run in the background or not(threw nohup for linux or start for windows) instead of it being chosen automatically for you.
  13. A dynamic fake 404 page has been finally added. (The code of the static one has been commented and is still at the top)
  14. DAws now checks if the current server is vulnerable to Shellshock threw "normal" command execution, I know that this isn't beneficial for DAws but it's good and useful information and you can now see it on the left table. (Keep in mind that DAws already uses Shellshock threw 2 methods to bypass security systems but this is completely something else).
  15. Removed a lot of extra lines that were holding nothing but a "{" for the sake of scrolling when reading the code...
  16. Fixed a lot of small bugs that were causing stuff like: showing the wrong location of the dropped cgi shell, wrong data in the .htaccess file for suphp on windows, getting redirected to the main shell's directory when using something other than the file manager, etc...