Cmd Shell(命令行交互)是黑客永恒的话题,它历史悠久并且长盛不衰。本文旨在介绍和总结一些在命令行下控制Windows系统的方法。这些方法都是尽可能地利用系统自带的工具实现的。 文件传输 对于溢出漏洞获得的cmd shell,最大的问题就是如何上传文件。由于蠕虫病毒流行,连接ipc$所需要的139或445端口被路由封锁。再加上WinXP系统加强了对ipc$的保护,通过ipc$及默认共享上传文件的手段基本无效了。ftp和tftp是两种可行的方法,介于其已被大家熟知,本文就不介绍了。还有三种大家熟悉的办法,作为总结我再提一下-Cmd Shell (interactive command line) is the eternal topic of hackers, and it has a long history for all eternity. This paper introduces and summarizes some of the command line control of the Windows system. These methods are used to the extent possible system onboard tools to achieve. File transfer for overflow vulnerability was the shell cmd, the biggest problem is how to upload the file. As the worm epidemic, linking WAFA need $ 139 or 445 port blockade was routing. WinXP system coupled with the strengthening of the IPS $ protection, and by default IPS $ Upload file sharing of the basic means to no avail. Ftp and tftp are two possible methods, ranging from its already well-known, this is not introduced. There are three ways you know, again, I conclude what 下载
|