| 摘 要: 为了帮助系统管理员理解后门程序的基本概念及工作原理,并为其提供相应防护依据。本研究通过对 系统后门程序工作原理的分析,利用Python语言的优点,并将其作为攻击语言,分别编写了后门服务端和后门客户端 程序代码,在虚拟机中实施攻击,为了保证攻击适用于不同系统,文章通过编写代码,创建setup.py文件,巧妙的将 Python程序转换为Windows可执行文件并在Windows系统实施攻击,最终通过后门服务器端下达相关命令来获取更多 个人信息。 |
| 关键词: 后门;后门服务器;后门客户端;Popen类 |
|
中图分类号: TP309.5
文献标识码: A
|
|
| Analysis and Implementation based on System Backdoor Attack |
|
HE Junzhong
|
( Longnan Teachers College, Longnan 742500, China)
lnszhjztg@163.com
|
| Abstract: In order to help system administrators understand the basic concepts and working principles of backdoor programs, and to provide the corresponding protection basis, this study rst analyzes the working principles of the system backdoor program, using the advantages of Python language as an attack language. Then, the backdoor server and backdoor client program code are written separately to implement the attack in virtual machine. For different systems, the article writes code, creates a setup.py file, ingeniously converts the Python program into an executable Windows file and implements an attack on the Windows system, and finally issues related commands through the backdoor server to obtain private information. |
| Keywords: backdoor; backdoor server; backdoor client; popen class |
