🧪 Laudanum – "One Web Shell to Rule Them All"

Laudanum is a collection of pre-built injectable web shell files.
Supports various web technologies: ASP, ASPX, PHP, JSP, etc.
Built-in to Kali Linux and Parrot OS.
Can be used for:
- Uploading reverse shells
- Executing OS commands from the browser
- Gaining remote code execution (RCE)

On Kali/Parrot OS:

/usr/share/laudanum

Most shells work as-is, but some require:
- Modifying the attacker’s IP address (for reverse shells).
- Removing ASCII art/comments to evade detection.
Always read the comments in the file before use.

🧪 Laudanum Demonstration Steps

1️⃣ Add Entry to /etc/hosts:

Edit /etc/hosts on your attacking VM or Pwnbox to associate the target hostname:

sudo nano /etc/hosts

Add:

<target-ip> status.inlanefreight.local

2️⃣ Copy & Modify the Shell

Choose and copy a web shell to your working directory for editing:

cp /usr/share/laudanum/aspx/shell.aspx /home/tester/demo.aspx

Edit line 59 and set your attacking IP:

string[] allowedIps = { "10.10.14.12" };

🛡️ Optional: Remove comments and ASCII art to reduce AV detection.

3️⃣ Upload the Shell

Go to the web app's Upload Section (at the bottom of the status page) and upload demo.aspx.

✅ A successful upload should display the upload path (e.g., \\files\demo.aspx).

4️⃣ Access the Web Shell

Navigate to the uploaded file using a browser:

status.inlanefreight.local//files/demo.aspx

🧠 Note: Use \\ (which auto-converts to / in the browser). The web server may:

5️⃣ Use the Shell

Laudanum provides a form interface where you can enter system commands.

Example usage:

systeminfo

Click Submit Query to run.

Use the web shell to:

Let me know if you'd like a cheatsheet of common commands to run from the Laudanum shell or help upgrading it to a reverse shell session.

Last updated 10 months ago