Reputation: 81
Windows Shell Commands
I am going to be giving a presentation in class on web site security and I created a demo website (on a VM) with sql injection, xss and PHP injection vulnerabilities. I am going to load a PHP file that executes shell commands and my question is what is the worst shell command I can do on a Window's PC? Will "rd /S /Q C:\" delete the C drive successfully? I am looking to do something that will break the OS. Thanks!
Upvotes: 1
Views: 551
Answers (2)
Reputation: 10337
How to mess up a pc has some nice ideas, though not all of them use Windows shell commands…
Upvotes: 1
Reputation: 28124
mbrfix /drive 0 clean
That oughta do it :)
Works on most Windows versions (98 and upwards), as far as I know.
Edit: Though you can still boot into a recovery mode (using the cd) and do an mbrfix /fix. But just leave that away from your audience, shall we?
Of course like any other OS, there are all sorts of nasties you could use to bring it to its knees.
In older Windows versions, you could even do hardware damage. Nowadays you could have a little hardware detection tool combined with overwriting CMOS/flash memory (even GFX cards, as an example).
Edit 2: Nearly forgot, you have to restart your PC for changes to take effect. :D
Upvotes: 0
Related Questions
- Run windows command in php
- PHP - command line arguments in Windows
- Executing cmd commands in Windows from PHP Issue
- Sending commands to windows command line (cmd) from PHP
- Execute windows command in command prompt using php
- calling Windows program from PHP file (through command-prompt)
- Using PHP to pump commands into an already running CMD Prompt
- Command line script in windows
- Pass cmd commands via php script
- How to run these Unix type commands on Windows with PHP