This is a pseudo command prompt for accessing a machine remotely using only a web browser. It cannot run interactive programs. It can only run programs that run, spit out text (or not), and then quit. There is a handy dropdown box of previously run commands. The page never reloads thanks to AJAX.
It kind of works on IE6. Designed for Firefox 1.5. Works well on Firefox 1.0, albeit without mouse scrollwheel working on dropdown box.
Some things can be customized, see the top of dropdown.js and CSS in index.php
The ‘clear’ command is intercepted and locally clears the buffer. Use it if commands are taking inordinately long.
The ‘cd’ command is intercepted and mostly emulates a real shell.
I WOULD HIGHLY SUGGEST USING A .htaccess FILE TO PROTECT THIS SCRIPT, AND PLACE IT BEHIND SSL. USE AT YOUR OWN RISK.
Also, yes there are other scripts out there like this, such as PHP Shell and PHPSh. I discovered both of these while trying to name PSHAW (I called it phpShell at first and then discovered that was taken). I haven’t tried any of these other ones out, nor looked at their code. Try them all out and decide what works best for you. Personally I like PSHAW’s use of AJAX…but I’m of course biased 🙂
This is an extremely dangerous piece of code. It is a huge security hole if used improperly. If somebody h4x0rz your web server and places PSHAW on it, IT IS NOT MY FAULT. It is your responsibility to secure your own web server.
THERE IS NO WARRANTY ON THIS CODE. IF USED IMPROPERLY IT CAN AND WILL BREAK THINGS, INCLUDING DESTROYING DATA PERMANENTLY. I AM NOT RESPONSIBLE FOR ANYBODY’S ACTIONS WHILE USING THIS PROGRAM.