Git Product home page Git Product logo

network-security-study-notes's Introduction

1. 初衷

在自己学习并做笔记的同时,希望自己的笔记也能够帮助刚入门的新人!!!!!同时还有好多文章是用word写的,暂时还未转换成md,后续会持续更新。

2. 免责声明

本项目所涉及的技术、思路和工具仅供学习,任何人不得将其用于非法用途和盈利,不得将其用于非授权渗透测试,否则后果自行承担,与本项目无关。

3. 项目导航

由于这个文章的顺序我实在是懒得调整了,如果文章的顺序不对的还请自行查找。

3.1. APP渗透

  • APP渗透—APP与小程序信息收集.md

  • APP渗透—MobSF安全评估、frida、r0capture抓包.md

  • APP渗透—反代理、反证书检测.md

  • APP渗透—微信小程序、解包反编译、数据抓包.md

  • APP渗透—查脱壳、反编译、重打包签名.md

3.2. WEB安全基础

  • CSRF及SSRF详解.md

  • RCE代码及命令执行.md

  • SQL注入.md

  • XSS攻击.md

  • XXE&XML.md

  • 信息收集.md

  • 文件上传漏洞.md

  • 文件包含.md

  • 逻辑越权漏洞.md

3.3. Windows&Linux权限提升

  • Linux权限提升—内核、SUID、脏牛等提权.md

  • Linux权限提升—定时任务、环境变量、权限配置、数据库等提权.md

  • Windows权限提升 —SQL Server与MSSQL数据库提权.md

  • Windows权限提升—BypassUAC、DLL劫持、引号路径、服务权限等提权.md

  • Windows权限提升—MySQL数据库提权.md

  • Windows权限提升—令牌窃取、UAC提权、进程注入等提权.md

  • Windows权限提升—溢出提权.md

3.4. 内网渗透&横向移动

  • VM虚拟机端口映射接收CS弹反木马.md
  • 内网横向移动—Exchange 服务&有账户 CVE 漏洞&无账户口令爆破.md
  • 内网横向移动—IPC&AT&schtasks.md
  • 内网横向移动—Kerberos攻击&SPN扫描&WinRM&WinRS&RDP.md
  • 内网横向移动—PTH哈希&PTT票据&PTK密匙&Kerberos.md
  • 内网横线移动—Wmi&Smb&CrackMapExec&ProxyChains&Impacket.md
  • 内网渗透—Linux上线.md
  • 内网渗透—代理Socks协议、路由不出网、SMB绕过、CS-MSF控制上线.md
  • 内网渗透—代理Socks协议、路由不出网、后渗透通讯、CS-MSF控制上线.md
  • 内网渗透—域环境之信息收集.md
  • 内网渗透—域防火墙策略同步、不出网隧道上线.md
  • 内网渗透—隧道技术.md
  • 内网渗透—隧道搭建&Ngrok与Frp内网穿透.md
  • 内网渗透—隧道搭建&SPP与NPS内网穿透.md

4. 更新日志

  • 最近更新时间:暂无

  • 最近更新内容:暂无

  • 上次更新内容:暂无

network-security-study-notes's People

Contributors

djytmdj avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.