【ctf系列】metasploit
1234567891011show exploitsinfobacksearch ms17search type:auxiliary name:ms17search type:exploit name:ms17search type:payloadset rhosts x.x.x.x 445端口smb协议 1whois 密码生成器:genpAss phpmyadmin 4.8.1后台get
【ctf系列】XSS
Burpsuite:Encoder 将一个url变成url的编码方式Render 渲染 window.location 重定向 nc -vnlp 80 监听80端口 writeup 2XSS Test Platform
【ctf系列】Sql-labs 第02关:GET -Error based -Integer based
命令方法1:手工注入1234567891011121314151617http://x.x.x.x:x/Less-2/?id=1http://x.x.x.x:x/Less-2/?id=2http://x.x.x.x:x/Less-2/?id=1 and 1=1http://x.x.x.x:x/Less-2/?id=1 and 1=2http://x.x.x.x:x/Less-2/?id=1 ord
【kali】kali中安装w3af
将默认的python指向python2 123curl https://bootstrap.pypa.io/pip/2.7/get-pip.py -o get-pip.pypython get-pip.py 参考安装pip:https://stackoverflow.com/questions/64187581/e-package-python-pip-has-no-installation-
【kali】kali中安装w3af
将默认的python指向python2 123curl https://bootstrap.pypa.io/pip/2.7/get-pip.py -o get-pip.pypython get-pip.py 参考安装pip:https://stackoverflow.com/questions/64187581/e-package-python-pip-has-no-installation-
【ctf系列】Sql-labs 第01关:GET -Error based -Single quotes -String
命令方法1:手工注入12345678910111213141516171819202122232425http://x.x.x.x:x/Less-1/?id=1http://x.x.x.x:x/Less-1/?id=2http://x.x.x.x:x/Less-1/?id=3http://x.x.x.x:x/Less-1/?id=1 and 1=1http://x.x.x.x:x/Less-1/?
【ctf系列】Sql-labs 第01关:GET -Error based -Single quotes -String
第01关:GET -Error based -Single quotes -String命令方法1:手工注入12345678910111213141516171819202122232425http://x.x.x.x:x/Less-1/?id=1http://x.x.x.x:x/Less-1/?id=2http://x.x.x.x:x/Less-1/?id=3http://x.x.x.x:x/L