MSSQL渗透测试过程(下)

MSSQL渗透测试过程(下)

3 years ago

source link: https://www.ascotbe.com/2019/02/03/MSSQLPenetrationTest_0x02/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.

MSSQL渗透测试过程(下) | ascotbe

在这个网址中发现一个上传点才有了本篇博客

发现是用ASHX作为后台

但是上传ASP文件访问后直接404

接着尝试了ashx

看到这个就表示文件调用的asp.net来访问这个文件

后面尝试多次发现无法调用自己上传的ASHX生成ASP一句话

接着尝试了ASPX发现文件可以用但是不管怎么在中间插入一句话都没用，因为上传点把文件直接转码为BASE64

尝试多次还是没办法

下面是大佬教的方法在作者中加入一句话

然后在这里修改后缀

接着菜刀连接

Getshell收工

文章作者: ascotbe

文章链接: https://www.ascotbe.com/2019/02/03/MSSQLPenetrationTest_0x02/

利用Unicode实现钓鱼文件制作

MSSQL渗透测试过程(上)

Recommend

Recommend

刘烈宏：我国已经建成了全球规模最大的光纤网络和4G网络

Using Const Generics To Model An Electronics Graph

University of California victim of nationwide hack attack

Linus Torvalds weighs in on Rust language in the Linux kernel

Explore Program：记一个奇怪的bug

AWS Rust Lambdas and Bioinformatics

Github GitHub - manateelazycat/awesome-pair: Auto parenthesis pairing with synta...

US lawmakers press online ad auctioneers over user data

Introduction to Apache Arrow with Rust

Biden aims to juice EV sales, but would his plan work?

About Joyk