随笔分类 - 学问
摘要:Create a Group Policy on AD DC Server. The GPO policy will come into effect on the next login, or use the following command to force the GPO to update
阅读全文
摘要:Create and save the following scripts on the DC folder \\Winsever2019\sysvol\pandabusiness.local\scripts. net use P: \\WINSEVER2019\Public net use S:
阅读全文
摘要:Method1: Create a user by executing the following PowerShell Script. New-ADUser -name 'Michael Jordan' -SamAccountName jordan.michael -UserPrincipalNa
阅读全文
摘要:Scrapy Architecture Creating a Spider. Spiders are classes that you define that Scrapy uses to scrape(extract) information from a website(s). Running
阅读全文
摘要:Use BeautifulSoup and Python to scrap a website Lib: urllib Parsing HTML Data Web scraping script Run this script successfully Following is the whole
阅读全文
摘要:Install the following software before web scraping. Visual Studio Code Python and Pip Activating a Virtual Environment BeautifulSoup Documents: https:
阅读全文
摘要:What is Web Scraping This is also referred to as web harvesting and web data extraction. This is the process of automatically downloading a web page's
阅读全文
摘要:Automatically Discovering Vulnerabilities Using the Vulnerability Scanner 1. Modify the run_scanner method in the scanner class. 2. Test this new auto
阅读全文
摘要:Implementing Code To Discover XSS in Parameters 1. Watch the URL of the XSS reflected page carefully. 2. Add the test_xss_in_link method in the Scanne
阅读全文
摘要:VULNERABILITY_SCANNER How to discover a vulnerability in a web application? 1. Go into every possible page. 2. Look for ways to send data to the web a
阅读全文
摘要:EXPLOITATION - XSS VULNS EXPLOITING XSS Run any javascript code. Beef framework can be used to hook targets. Inject Beef hook in vulnerable pages. Exe
阅读全文
摘要:EXPLOITATION - XSS VULNS XSS - CROSS SITE SCRIPTING VULNS Allow an attacker to inject javascript code into the page. The code is executed when the pag
阅读全文
摘要:Extracting & Submitting Forms Automatically Target website:http://10.0.0.45/dvwa/vulnerabilities/xss_r/ Class Scanner. Vulnerability scanner. The prog
阅读全文
摘要:Polish the Python code using sending requests in a session Class Scanner. Vuln_scanner. The program runs fine.
阅读全文
摘要:VULNERABILITY_SCANNER How to discover a vulnerability in a web application? 1. Go into every possible page. 2. Look for ways to send data to web appli
阅读全文
摘要:HTTP REQUESTS BASIC INFORMATION FLOW The user clicks on a link. HTML website generates a request(client-side) The request is sent to the server. The s
阅读全文
摘要:Guessing Login Information on Login Pages Our target website: http://10.0.0.45/dvwa/login.php Execute the Python Script.
阅读全文
摘要:CRAWING SPIDER Goal -> Recursively list all links starting from a base URL. 1. Read page HTML. 2. Extract all links. 3. Repeat for each new link that
阅读全文
摘要:CRAWLING SUMMARY Our crawler so far can guess: Subdomains. Directories. Files. Advantages: ->Discover "hidden" paths/paths admin does not want us to k
阅读全文
摘要:CRAWING DIRECTORIES Directories/folders inside the web root. Can contain files or other directories. Ex: target.com/directory plus.google.com/discover
阅读全文
浙公网安备 33010602011771号