banner
lca

lca

真正的不自由,是在自己的心中设下牢笼。

考证

cover
cover
cover

cisp-pts考试记录

pts 的考试从报名到考试不到半个月,刷题有基础的很好过,因为很多题如果培训了的话基本上都是原题,但是有些题培训机构也不知道,就比如这次考试,最后一道大题,最里面的服务是 nacos,而 nacos 没 exp,尝试了常用的弱口令,没进去就没做了,最有的题只有 2 个 key…
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

pte-实战 一道综合题

准备好环境,用 vmware 打开,密码为 admin123. 端口扫描 默认开了防火墙,禁 ping 扫描 需要留意的端口,数据库端口 1433 和 web 端口 27689. web 应用 访问 27689 端口,界面如下: 尝试弱口令无果。 目录扫描 使用御剑进行目录扫…
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

pte-实战 机智卡片系统

这也是一道实战题,打开网站页面是一个认证页面,告诉我们用户名为 admin,那么需要爆破密码。 抓包发现是 Authorization 认证 将数据包发送至 intruder,设置遍历节点 上述遍历点为 base64 编码,解码后为 admin:123,所以我们设置…
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

pte-实战 dedecms

dedecms 后台界面如下 目录扫描和 robots.txt 的内容和下面差不多,没什么可利用的 后台尝试弱口令无法登录,注册个前台帐号用户名密码为 0001/111111,安全问题不要填写。 注册成功后,访问http://10.1.10.62/member/index…
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

cisp-pte xss考题

Xss 内容主要的考点是在获取管理员的 cookie,然后伪造管理员的 cookie 进行登录。 界面如下 点击上图中的 Test 可进行留言 准备获取 cookie 的 xss payload Copy <script> document.write('<img src…
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

cisp-pte的一个文件上传题目

来一题 cisp-pte 中的文件上传题目,需要爆破猜解上传文件的路径 打开题目,如下界面 给出了文件上传部分的代码 Copy $filename = $files["name"]; $randnum = rand(1, 99999); $fullpath = '/' . md5…
Ownership of this blog data is guaranteed by blockchain and smart contracts to the creator alone.