Former Penetration Testing: Information Collection - Code World

Former Penetration Testing: Information Collection

Others 2019-07-25 03:01:34 views: null

0x00

whois information collection http://whois.chinaz.com/ ip query https://site.ip138.com/ ip locate https://www.opengps.cn

subdomain blasting https://phpinfo.me/domain/ port scanning namp, masscan the like

as well as directory scan sweep sword like tool not to mention

0x01

Middleware identification: apache, nginx, iis, weblogic

The error page identifier 404, different

apache：

iis：

nginx：

weblogic：

Web development language recognition: php, java, asp, etc.

Index.php index.asp manual input or the like directly after url, is determined based on the return result
According http header content judgment: X-Powered-By field, Server field, Cookies in SESSIONID
Using the browser plug: W3techs

0x02

cms recognition:! Wordpress, Drupal, Thinkphp, Discuz, Dedecms etc.

Check the footer or web page source code, copyrights and other information on whether there
Website Recognition

Online website http://whatweb.bugscaner.com/look/ http://www.yunsee.cn/finger.html

Local tool https://github.com/Ms0x0/Dayu

In fact, there are many real aspects of information gathering, it just said something ordinary common

There is a set of information-gathering tool: https://github.com/hannoch/scaner

Guess you like

Origin www.cnblogs.com/GH-D/p/11240328.html

Former Penetration Testing: Information Collection

Penetration Testing: Information Collection

Penetration testing information collection||

Summarize the information collection of penetration testing

【Penetration testing】Information collection and summary

Penetration testing - information collection ideas

Penetration testing information collection sub-domain information collection

Penetration Testing - information collection - Java - Spring - finishing vulnerability

Information collection of web penetration testing series-1

Information collection of web penetration testing series-4

Information collection of web penetration testing series-three

Information collection of web penetration testing series-2

"Penetration Testing" - Preliminary Information Collection and Tool Introduction 02 (ARL, Cwebscanner)

A Collection of Penetration Testing Resources

Learning penetration testing information collected

web penetration testing of information collected

Information Gathering - Penetration Testing Tools

Information Gathering - Penetration Testing Process

Collection of Penetration Testing Interview Questions

2022 Penetration Testing - Browser Search Skills - The Use of Google Hacking for Information Collection

Domain name collection for penetration test information collection

Intranet Penetration-Working Group Information Collection

Information collection - Intranet penetration (Windows system)

Domain Penetration 01-Basic Information Collection

Intranet Penetration_Information Collection (Linux)

mysql own database information as well as their initial introduction in the use of penetration testing

OWASP Nettacker ---- automatic penetration testing and information gathering tools

Kali Linux Penetration Testing 143 Mestasploit Information Gathering

Information within the network penetration collection of articles -Linux system

Information within the network penetration collection of articles -windows system

Recommended

The United States plans to restrict the export of large AI models to China and Russia

Apple to reach agreement with OpenAI to bring ChatGPT to iPhone

Ranking

whisper-webui installation tutorial is silky and easy to use

[Base] Laravel concepts laravel basis, the custom service provider: Contracts, ServiceContainer, ServiceProvider, Facades relations

Import torchvision error problem solving DLL: module not found

observer & watch & notify = pub & sub

A small turntable program [HTML + CSS + JS]

CorelDRAW 2018 shortcuts Daquan

Supervise el botón de menú para lograr un gatillo de presión prolongada

JS将时间秒转换成天小时分钟秒的字符串

RIP basic configuration

[Deleted] solution to a problem a few questions (Noip1994)

Daily

More

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)