Penetration in those things to find a breakthrough in | WooYun knowledge results in the following format:
3) DNS
3. Using nmap to find available services
Inurl value can freely transform, commonly including admin, manage or use intitle: find management, log on keywords such, the results of some sites may be out most of the same site under false positives, such as blog class, ask the class may be used - to reduce false positives, such as google search for site: baidu.com inurl: login -zhidao zhidao relevant results can be removed in the results, steam cleaners Baidu can enter site: baidu.com inurl: login -site: zhidao .baidu.com
1) awvs comprehensive scanning (often surprised to discover that) 2) directory structure the breaking steam cleaners 3) the breaking password (admin does not work when the password is not necessarily wrong, a lot of times is the user name wrong, try to think of all the user names available methods, such as looking through js, css files, html source steam cleaners code annotation content, or .svn directory information leakage, etc., can do some distortion password for the system name and the domain name and other information is added to the dictionary) 4) Html source, js and other documents access to information steam cleaners (some developers will address steam cleaners a number of management as comments into the html source code, address management interface steam cleaners written steam cleaners in the js, good luck direct unauthorized access) 5) the breaking parameter values (some framework to write Manage Page may be the format xx.com/?c=login, steam cleaners daily can collect some common parameters, such as index, main, upload, edit, adduser, etc., good luck can override operation) 2. axis2
Http://xxx.org:8080/solr/admin/file/?file=data-import.xml get access database password and the default password admin / admin
Share to:
House robbed three layers of the reply to the message
iv4n | 2014/09/02 16:52 | #
Reply to this message under good worship
print_0x0000 | 2014/09/11 17:22 | #
Yeah I top you subscribe to updates steam cleaners
3) DNS
3. Using nmap to find available services
Inurl value can freely transform, commonly including admin, manage or use intitle: find management, log on keywords such, the results of some sites may be out most of the same site under false positives, such as blog class, ask the class may be used - to reduce false positives, such as google search for site: baidu.com inurl: login -zhidao zhidao relevant results can be removed in the results, steam cleaners Baidu can enter site: baidu.com inurl: login -site: zhidao .baidu.com
1) awvs comprehensive scanning (often surprised to discover that) 2) directory structure the breaking steam cleaners 3) the breaking password (admin does not work when the password is not necessarily wrong, a lot of times is the user name wrong, try to think of all the user names available methods, such as looking through js, css files, html source steam cleaners code annotation content, or .svn directory information leakage, etc., can do some distortion password for the system name and the domain name and other information is added to the dictionary) 4) Html source, js and other documents access to information steam cleaners (some developers will address steam cleaners a number of management as comments into the html source code, address management interface steam cleaners written steam cleaners in the js, good luck direct unauthorized access) 5) the breaking parameter values (some framework to write Manage Page may be the format xx.com/?c=login, steam cleaners daily can collect some common parameters, such as index, main, upload, edit, adduser, etc., good luck can override operation) 2. axis2
Http://xxx.org:8080/solr/admin/file/?file=data-import.xml get access database password and the default password admin / admin
Share to:
House robbed three layers of the reply to the message
iv4n | 2014/09/02 16:52 | #
Reply to this message under good worship
print_0x0000 | 2014/09/11 17:22 | #
Yeah I top you subscribe to updates steam cleaners
Very interesting information, worth recommending. However, I recommend this:
ReplyDeleteLink Building Service