CobaltStrike是一款基于Java编写的全平台多方协同后渗透攻击框架,几乎覆盖了APT攻击链中所需要用到的各个技术环节。
2022-01-10
https://crt.sh
https://chaziyu.com
https://www.dnsscan.cn
https://dnsdumpster.com
https://phpinfo.me/domain
https://rapiddns.io/subdomain
https://searchdns.netcraft.com
https://dns.bufferover.run/dns?q=
cat target.txt | subfinder -nW -all -silent -o domain.txt
https://www.aicesu.cn/port
https://portscanner.standingtech.com
https://www.ipfingerprints.com/portscan.php
cat target.txt | naabu -p 22,23,80,135,443,389,445,873,1090,1099,1433,1521,2375,3306,3389,5432,5900,5985,6379,7001,7002,8000-9000,9200 -ping -stats -silent -retries 1 -o port.txt
https://whatcms.org
https://www.yunsee.cn
https://www.godeye.vip
https://fp.shuziguanxing.com
cat target.txt | httpx -sc -td -fr -nc -title -silent -o url.txt
wafw00f http://example.com
gobuster dir -u https://example.com -w dict.txt -k --random-agent
site:example.com intitle:管理|后台|登录|系统|测试
site:example.com filetype:doc|xls|sql|log|conf|json
site:example.com intext:*mail|Powered|Password|默认密码
site:example.com inurl:admin|login|system|upload|editor