"When the times demanded, they stood up bravely. When the tide faded, they waited for a new mission. They waited for being abandoned or missed, and the world told them good and evil and right and wrong."
Record the process of resurrecting the dark clouds.
The first step: virtual machine download
Most of the Internet use github to download, but I got an error after downloading and decompressing
In the end, although the virtual machine can be turned on, but after the configuration is complete, it cannot search normally:
I'm not sure if it was caused by an error in decompression, so it took me a while to find another download link (posted at the end of the article)
Step 2: Unzip the first file
The decompression time is relatively long, just wait for a while, and there is no error in the end
Step 3: Open the .vmx file with VM
This is a suspended virtual machine, just run it directly
Username / password: hancool / qwe123
Step 4: Communicate with the host
This method is dhcp, you can restart the network card, or restart the virtual machine can regain the ip, and then communicate with the host
Step 5: Enter the designated directory
You can see that there are two directories
Step 6: Enter the two directories to execute commands
1. cd wooyun
scrapy crawl wooyun -a page_max=0 -a local_store=true -a update=true
2. cd ..
cd wooyun_drops
scrapy crawl wooyun-a page_max=0-a local_store=true-aupdate=true
Step 7: Enter the flask directory
Run py file
./app.py
Step 8: Access via ip + 5000
Special note : Now suppose to search for SQL injection, we can see that this can be found, but if you click on the link, you will visit the original dark cloud url, so you can not see:
Here we can access the local url by clicking the following link
You can see that the numbers behind are the same
See here that csdn also wrote its own script and put it on the oil monkey to modify the URL, you can refer to
I look forward to the rain and the weather, and reopening wooyun!
Finally, paste the link of Baidu Cloud:
Link: https://pan.baidu.com/s/1aEV0DkYwJtEzHwsGw0bGWQ
Extraction code: 9kcs