分類: 資安

資安

[資安]Cookies without HttpOnly flag set

Cookies without HttpOnly flag set 請參考:HttpOnly – […]

Be the First to comment. Read More
cyber kill chain手法

SSH Tunneling (Port Forwarding)

SSH Port Forwarding 有下列三種模式: Local Port Forwarding Remo […]

Be the First to comment. Read More
cyber kill chain手法

datapipe流量轉發

需要先下載datapipe 然後執行gcc datapipe.c -o datapipe 當然前提是你有裝好g […]

Be the First to comment. Read More
cyber kill chain手法

[4.漏洞利用]透過User-Agent來攻擊注入

Burp inject php code in User-Agent 以前覺得User-Agent應該沒啥好攻 […]

Be the First to comment. Read More
cyber kill chain手法

[5.安裝]Reverse Shell反向Shell

當我們有辦法透過可能網頁漏洞,還是系統漏洞可以讓受害者的電腦執行指令時,我們就可以開始下指令遠端操控對方,這時 […]

Be the First to comment. Read More