Windows 外壳命令
我将在课堂上进行有关网站安全的演示,并创建了一个演示网站(在虚拟机上),其中包含 sql 注入、xss 和 PHP 注入漏洞。我要加载一个执行 shell 命令的 PHP 文件,我的问题是我可以在 Windows PC 上执行的最糟糕的 shell 命令是什么? “rd /S /QC:\”能否成功删除C盘?我想做一些可以破坏操作系统的事情。谢谢!
I am going to be giving a presentation in class on web site security and I created a demo website (on a VM) with sql injection, xss and PHP injection vulnerabilities. I am going to load a PHP file that executes shell commands and my question is what is the worst shell command I can do on a Window's PC? Will "rd /S /Q C:\" delete the C drive successfully? I am looking to do something that will break the OS. Thanks!
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
如何弄乱电脑有一些好主意,尽管并非全部都使用 Windows shell 命令……
How to mess up a pc has some nice ideas, though not all of them use Windows shell commands…
应该可以做到:)
据我所知,
适用于大多数 Windows 版本(98 及更高版本)。 编辑:尽管您仍然可以启动进入恢复模式(使用 CD)并执行
mbrfix /fix。但请把它远离你的观众,好吗?当然,与任何其他操作系统一样,您可以使用各种令人讨厌的东西来使其屈服。
在较旧的 Windows 版本中,您甚至可能会造成硬件损坏。如今,您可以拥有一个小型硬件检测工具,并结合覆盖 CMOS/闪存(例如,甚至是 GFX 卡)。
编辑 2:差点忘了,您必须重新启动电脑才能使更改生效。 :D
That oughta do it :)
Works on most Windows versions (98 and upwards), as far as I know.
Edit: Though you can still boot into a recovery mode (using the cd) and do an
mbrfix /fix. But just leave that away from your audience, shall we?Of course like any other OS, there are all sorts of nasties you could use to bring it to its knees.
In older Windows versions, you could even do hardware damage. Nowadays you could have a little hardware detection tool combined with overwriting CMOS/flash memory (even GFX cards, as an example).
Edit 2: Nearly forgot, you have to restart your PC for changes to take effect. :D