Summary of application of several iis vbs scripts in penetration

1. query all websites in IIS

C: WINDOWSsystem32> cscript.exe iisweb. vbs/query
Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.

Connecting to server... Completed.
Site Name (Metabase Path) Status IP Port Host

========================================================== ==============================================
Default website (W3SVC/1) started all 80
N/

 

2. query the virtual directory of the specified website

C: WINDOWSsystem32> cscript.exe iisvdir. vbs/query w3svc/1/root
Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.

Connecting to server... Completed.
Alias Physical Root
========================================================== ==============================================
/Help D: webhelp
/Rzzx D: zzx

3. view the path of the specified website

C: InetpubAdminScripts> cscript adsutil. vbs get/W3SVC/1/root/path
Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.

Path: (STRING) "D: web"

4. Create a virtual directory and WEBDAV

That is, the problem encountered today, because the target WEB directories are all in Chinese, I used this ORACLE injection tool to not support Chinese very well, and I have never been able to upload a sentence, after asking a friend, I thought of a new idea: creating a virtual directory, setting the script execution, read, write, and column directory permissions, then upload a sentence to the created virtual directory.