Web penetration study notes

Others 2020-10-15 16:40:49 views: null

One, sqlmap

-p specifies the injection point

--Technique specifies the injection type

B: Boolean-based blind (Boolean injection)
E: Error-based (error-based injection)
U: Union query-based (joint query injection possible)
S: Stacked queries (multiple statement query injection possible)
T: Time-based blind (Based on time delay injection)
Q: Inline queries (nested query injection)

--proxy=http://127.0.0.1:8080

--batch

Oracle's default port bai slogan is 1521

e.g. py -2 sqlmap.py -r C:\Users\HP\Desktop\1.txt --proxy=http://127.0.0.1:8080 -p zkzh --batch

-u "It is better to add double quotes"

Two, blasting 3389

hrdra 192.168.0.44 rdp -L user.txt -P pass.txt

hrdra 192.168.0.44 -l root -P pass.txt mysql -t 3 -v -f

-f blast out the first successful password to stop

Three, universal password

Operator execution precedence of T-sql language

‘||1||’

Four, determine whether it is a virtual machine

windows:systeminfo

Physical machine:

系统制造商:       To be filled by O.E.M.
系统型号:         To be filled by O.E.M.

virtual machine:

系统制造商:       VMware, Inc.
系统型号:         VMware Virtual Platform

Linux: dmidecode -s system-product-name ===>Note: root permission is required

Physical machine: RH2288H V3

Virtual machine: VMware Virtual Platform

Five, determine whether there is a CDN

Guess you like

Origin blog.csdn.net/qq_32393893/article/details/108403415

Web penetration study notes

Study notes for intranet penetration

WPS attack penetration - study notes

Wireshark penetration study notes (1)

[Study Notes] Penetration Testing Basics

[Within the network penetration] Kerberos protocol study notes

Yunji penetration testing service project study notes

Intranet attack domain penetration study (notes)

[Study Notes] Penetration Testing Basics (2)

tomcat web study notes

WEB penetration commonly used tool - learning Notes

"The web is how to connect the" study notes a

Web Study Notes-React

Web Study Notes-CSS

Web Study Notes-HTML

[Web] Floating CSS study notes*

[Java web] JWT study notes

2019-11-4: penetration testing, bypass study, notes

Wirehark penetration study notes (file capture output and miscellaneous settings)

Kali linux penetration test study notes-kali linux installation

Redis cache penetration, cache breakdown, cache avalanche study notes

"Metasploit Penetration Testing Devil Training Camp" Study Notes Chapter 5 - Network Service Penetration Attack

CTF-Web Penetration (Getting Started|Notes|Tools)

"The web is how to connect the" study notes two

springboot 2 study notes: build a web project

JavaWeb study notes (a) Web basic concept

Web backend study notes summary articles

Web test automation Selenium study notes (a)

Web security test study notes - CSRF attacks

Web security test study notes - XPath injection

Recommended

Ranking

[Algorithm] greedy _ program scheduling issues

Spring 控制反转（IOC）

Data structure-6.6 figure

Indicates that the class or member method has abstract properties

Huawei v5 server installed Linux operating system

Postgresql source code analysis - creating ordinary tables

Chapter 10 Evaluation Classification Results

Cloud service Ubuntu 20.04 version uses Nginx to deploy static web pages

Java Exercise 17.1

Solve the problem that git cannot automatically push submission in IDEA Push failed: Failed with error: Could not read from remote repository.

Daily

More

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)

2024-05-01(4)

2024-04-30(36)