Release Notes: PostgreSQL support (SQL shell, databases/tables dump) was added. LDAP support (LDAP shell, LDIF support, DNs dump) was added. MySQL support (SQL shell, databases/tables dump) was added. Problems with "direct download feature" were fixed. Display enhancements were made. The code was cleaned up. The documentation was updated.
Release Notes: Now PRS can be downloaded directly by passing the "prsds=" URL parameter when calling it. Note that this feature will not work if you previously defined authentication to true, or if you have encrypted it. Many problems with PRS remote inclusion have been fixed. Now it can easily be included remotely by exploiting require*/include* calls. A script has been added to strip PRS from comments and useless spaces. This script is automatically used before PRS encryption. Some new displayed information: client IP, vhost IP, and remote routing table.
Release Notes: A problem with some particular servers and tmpdir detection was fixed. Some servers allow directory creation, but not directory deletion. Zombie management should now work on these servers too. A logic error which could prevent PRS from detecting the correct storage mode was fixed. A problem with rights detection was fixed. A problem with executable method detection was fixed.
Release Notes: Some issues with zombies with IE were fixed. A hidden iframe is used to spy on user navigation. This feature does not work yet with IE, so it can be enabled or disabled using the ZOMBIE_USE_HIDDEN_IFRAME constant. Display options were added to the file browser to filter hidden files, directories, symlinks, or files. Colors and sorting were enhanced in the file browser.
Release Notes: A "Control center" has been added. It is now possible to ping hosts with the zombie. For the moment, hosts must have port 80 open to appear alive. A "Delete" menu has been added. "Reset" and "Add separator" menus have been added to the keylogger viewer. There are initial steps for "Zombies" management (based on BeEF ideas). Now the use of the "launcher.html" file is required to open a remote shell. All GET access will result in a "404 Not Found" HTTP error. Just open this file with your Web browser and click the "Launch" button.
Release Notes: PRS is now able to encrypt/decrypt itself on request. PRS can now host itself in another PHP script on the server to be able to self-restore itself at script execution time. Crontab management (when available) has been added. This release takes into account the "open_basedir" PHP configuration variable. It has PHP Exec* functions wrapper debug and optimization. It takes into account the safe mode's variable "safe_mode_exec_dir". Some information has been added to the page top. There are some fixes for runtime magic quotes.
Release Notes: A typo that broke download functionality was fixed. Read/write file functions were made safer. PRS is now able of self-modify itself to save dynamic data in its own file. If it fails, it uses the traditional cookie method. "proc_open()" is now used when "popen()" is not available. It is now possible to force file saving and deletion, even if PRS thinks that a file cannot be saved or deleted. Code cleaning and minor enhancements were done.
Release Notes: Many changes and fixes.
Release Notes: All short PHP tags were converted to allow phpRemoteShell to work with "short_open_tag=Off". The file browser should now work with PHP's safe mode. Better menu management and better safe mode handling were provided. HTML output is handled for both Shell commands and the PHP code section. A temporary fix was provided for the UTF-8 decoding function, which will hopefully prevent the Web server from segfaulting.