In this video I demonstrate how to perform a command injection attack, where the response of the injected command is returned to the user. Following this, a new PHP file was written to the web server which allowed us to execute commands directly, without having to wait four seconds each time.

This is the last video of my DVWA series, before I move onto other applications, types of hacks, and devices.

Topics covered:
– Command Injection
– Basic PHP Shells
– Burp Repeater
– File Permissions In Linux
– Simple Input/Output Redirection In Bash
– Escaping Variables in Bash

Stay tuned and subscribe for more upcoming videos showing actual hacks!