今天翻硬盘上一翻到一款小工具,在win32入侵中很有用帮助
名字叫HCT
Usage: Hct.exe [Parameter]
-sl * List all services.
-sv <ServiceName> * View service configuration details. //查看服务
-sd <ServiceName> * Delete a service. //删除服务
-ss <ServiceName> * Stops a service. //停止服务
-sS <ServiceName> * Start a service. //启动服务
-sp <ServiceName> * Pause a service. //终止服务
-si <ServiceName> <DisplayName> <Path> * Install a new service. //安装服务
-sm <ServiceName> * modify service configuration. //修改服务
-pl [PID|process] * List [All] Running proccesses. //列所有进程
-plv [PID|process] * List verbose information about [All] Running processes. //列所有进程信息
-pk <PID|process> * Kill a process. //结束进程
-pw * Shows Process owner (whoami). //查看进程
-r <IP> <PORT> * Spawns a shell in the remote Host(nc listening in the other side) // 绑定shell
-i * System Information //系统信息
功能很全面,抵消了大家在入侵中常用的几款工具.推荐使用。