B374k.php Verified Jun 2026

b374k is an open-source, single-file PHP web shell. It was originally authored by a developer known as "b374k" (a leetspeak rendering of "Bask"), who designed it as a remote file manager for legitimate system administration. However, like a scalpel in a surgeon's hand versus an assailant's, the intent defines the morality. In the wild, b374k.php is almost exclusively a weapon.

b374k.php is for most web hosting environments. It is almost always used for: b374k.php

A hacker finds a vulnerability (like a file upload bypass or an RFI). Dropping the Shell: They upload Persistence: b374k is an open-source, single-file PHP web shell

Never trust user input. If your application accepts file uploads: b374k is an open-source