雨天の笔记


雨天の笔记-个人博客-笔记

ctfshow-YBB

0 条评论 CTF wp admin
ctfshow-YBBTags: MD5web签到<?php //Author:H3h3QAQ include "flag.php"; highlight_file(__FILE__); error_reporting(0); if (isset($_GET["YBB"])) { if (hash("md5", $_G...

HTB-Hackthebox - TheNotebook

0 条评论 HTB docker逃逸 jwt admin
信息搜集靶机IP端口扫描nmap 10.10.10.230Nmap scan report for 10.10.10.230 Host is up (0.14s latency). Not shown: 996 closed ports PORT STATE SERVICE 22/tcp open ssh 80/tcp open http 4321...

HTB-Hackthebox - Knife

0 条评论 HTB php/8.1.0-dev knife admin
信息搜集靶机IP端口扫描nmap -sV -sC 10.10.10.242Not shown: 998 closed ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 8.2p1 Ubuntu 4ubuntu0.2 (Ubuntu Linux; protocol 2.0) 80/tcp open http ...

Windows - 缓冲区溢出 BOF- float ftpserver

0 条评论 缓冲区溢出 入门 BOF admin
1、介绍此次实验为windows下的缓冲区溢出漏洞。Freefloat FTP Sever漏洞利用,在此处下载得到漏洞文件。2、实验环境WIN7Kali使用桥接连接网络,使两台机子互通安装 Immunity Debuggermona.py漏洞程序Freefloat FTP Server3、开发利用载入程序打开 Immunity Debugger,选择 File - Open - ftpser...

HTB-Postman

0 条评论 HTB redis webmin ssh2john admin
靶机描述清单信息搜集nmapredis 未授权ssh2john提权webmin信息搜集靶机IP端口扫描nmap -sS -sV -p- -T4 10.10.10.160Not shown: 65531 closed ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.6p1 Ubuntu 4ubunt...

Codefest CTF 2020 (部分wp)

0 条评论 CTF 入门 pwn admin
C is hard➜ ctf21 checksec source_fixed [*] '/home/yutian/ctf21/source_fixed' Arch: amd64-64-little RELRO: Partial RELRO Stack: No canary found NX: NX enabled P...