Backdoor windows server with ASPX page

Tuesday, February 12, 2008

InsomniaShell is a tool for use during penetration tests, when you have ability to upload or create an arbitrary .aspx page. This .aspx page is an example of using native calls through pinvoke to provide either a reverse shell or a bind shell.

It has the added advantage of searching through all accessible processes looking for a SYSTEM or Administrator token to use for impersonation. You can find it here

-- Anish


  © Blogger templates Newspaper by 2008

Back to TOP