Border breakthrough (internal share notes) penetration process - Code World

Border breakthrough (internal share notes) penetration process

Others 2020-02-25 17:30:39 views: null

General penetration process:

Information gathering
1. Asset information collection
  1. Next to the station
  2. Subdomain
  3. Public network ip, etc.
2. Personal information collected
  personal mailbox
Extranet breakthrough
1. Acquisition target public authority
  Webshell
  server system privileges
2. Environmental rights within the target PC,
  individual employee PC,
Intranet breakthrough
1. Determining the network topology
2. Detecting other hosting services
3. Looking for other network assets
4. Determining the target location
Lateral movement

Cracking

Injection
SQL injection
Failure of the authentication, sensitive data leakage
weak passwords, password cracking
source code leak
Cookie forgery, Cookie bypass the
database file disclosure
logic bypass the login
backup file
password recovery

Guess you like

Origin www.cnblogs.com/ly584521/p/12362284.html

Border breakthrough (internal share notes) penetration process

Share real penetration test notes

Looking for a breakthrough in the penetration of those things

Upload Breakthrough Study Notes

Examples of penetration (a): Suffix breakthrough upload files

Share the internal top-secret RocketMQ core principles and best practice notes compiled by Ali experts!

Network penetration process in detail

Analyzing the Internal Mechanism and Breakthrough Path of "Web3 Paradox"

The use of internal and external penetration tool natapp

Study notes for intranet penetration

Web penetration study notes

Invasion of penetration testing process specifications

Penetration testing process and network attacks

Standard penetration test process description

Brief description of the process of penetration testing

A complete penetration testing process - translation

Information Gathering - Penetration Testing Process

Configure the cpolar internal network penetration on Linux to start automatically at boot—"cpolar internal network penetration"

Testflight internal testing process introduction

Block chain to share notes

NVMe agreement to share notes

linux technology share notes

Dream light ctf mini-game breakthrough process

The quality construction of the whole process of software engineering with testing as a breakthrough

ART Learning Series: Get Method Process Analysis and Access Restriction Breakthrough

WPS attack penetration - study notes

Wireshark penetration study notes (1)

[Study Notes] Penetration Testing Basics

[CyberSecurityLearning 51] Penetration Testing Methodology + Penetration Testing Process

Study Notes _ CSS properties border pictures

Recommended

Rushing to the GitHub hot list——How can open source programming languages and frameworks be so cute?

Beijing Humanoid Robot Innovation Center launches Tiangong, the world's first full-size humanoid robot with purely electric drive for anthropomorphic running

Ranking

8个无需编写代码即可使用 Python 内置库的方法

Java collections interview knowledge Lite

Machine learning algorithms foundation - Introduction a (watermelon materials for the book)

(Easy) Ransom Note - LeetCode

[Five days] Qt from entry to actual combat: the second day

Remember once extremely pit father can not download Maven Jar package of issues: IDEA question

The minimum cost Shortest

OSPF study map (the most complete version)

Network Takeaways

GnuPG

Daily

More

2024-04-27(29)

2024-04-26(22)

2024-04-25(32)

2024-04-24(30)

2024-04-23(30)

2024-04-22(5)

2024-04-21(0)

2024-04-20(6)

2024-04-19(5)

2024-04-18(0)