-
-
[原创]【信息收集】CMS指纹识别
-
发表于: 2021-6-16 08:33
-
CMS指纹识别
查找环境 : fabK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0f1&6i4K6u0W2y4U0y4Q4x3X3f1J5x3o6m8Q4x3X3f1%4z5g2)9K6b7e0R3^5x3o6y4Q4x3V1j5`.
快速二次开发的web应用框架
- 1、唯一性
- 2、方便性
- 3、终身不变性
在线和离线的方式收集指纹信息
1、云悉在线: 4abK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4W2#2L8Y4y4W2k6g2)9J5k6h3y4F1
2、Whatweb:2acK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4N6Z5j5i4c8%4k6h3u0Q4x3X3g2F1k6i4b7`.
3、插件-wappalyer:bf8K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6%4N6%4N6Q4x3X3g2%4j5i4m8H3j5h3I4&6P5X3g2J5i4K6u0W2j5$3!0E0i4K6u0r3
谷歌插件搬运工:c9bK9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6U0K9s2u0G2L8h3g2Q4x3X3g2*7P5Y4A6E0K9q4)9J5k6h3y4F1i4K6u0r3K9h3&6X3L8#2)9K6c8Y4c8G2K9$3g2F1i4K6y4p5k6%4m8H3L8$3&6Y4L8h3S2B7K9%4m8X3L8X3u0Z5j5h3N6H3L8h3A6X3K9$3q4F1L8X3k6T1L8r3I4S2L8h3M7`.
4、脚本CMSeek:d70K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3N6A6N6r3S2#2j5W2)9J5k6h3y4G2L8g2)9J5c8W2c8#2K9r3W2F1M7$3S2#2j5X3S2J5j5g2)9J5c8V1y4y4f1$3g2W2K9H3`.`.
- git clone 236K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6Y4K9i4c8Z5N6h3u0Q4x3X3g2U0L8$3#2Q4x3V1k6f1N6h3S2A6L8Y4y4Z5N6h3u0Z5M7X3q4Q4x3V1k6o6e0g2y4W2k6f1D9`.
- cd CMSeek
- pip3 install -r requirements.txt
- python3 cmseek.py -u 42dK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0f1&6i4K6u0W2y4U0y4Q4x3X3f1J5x3o6m8Q4x3X3f1%4z5g2)9K6b7e0R3^5x3o6y4Q4x3V1j5`.
5、Webfinger:6fbK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3N6A6N6r3S2#2j5W2)9J5k6h3y4G2L8g2)9J5c8Y4y4W2y4e0g2A6x3r3&6Q4x3V1k6i4k6h3u0X3K9h3&6Y4k6i4t1`.
WAF
常见的WAF产品以及检测方法
- 1、Awesome-WAF项目
- 336K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3N6A6N6r3S2#2j5W2)9J5k6h3y4G2L8g2)9J5c8U0m8^5L8r3&6X3k6h3y4@1K9h3!0F1i4K6u0r3b7i4N6W2M7$3!0E0k6g2)9J5k6q4N6m8c8R3`.`.
- 2、检测脚本:wafw00f
- 57fK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3N6A6N6r3S2#2j5W2)9J5k6h3y4G2L8g2)9J5c8V1g2F1j5h3u0D9k6g2y4W2j5%4g2J5K9i4c8&6i4K6u0r3N6$3q4X3N6K6l9H3k6R3`.`.
- git clone 996K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6Y4K9i4c8Z5N6h3u0Q4x3X3g2U0L8$3#2Q4x3V1k6q4L8X3q4T1L8r3g2e0k6h3y4#2M7X3W2@1P5g2)9J5c8Y4N6S2k6Y4M7H3x3r3j5`.
- python setup.py install
内容分发网CDN
CDN全称Content Delivery Network,内容分发网络。
- 国内在线 CDN云观测: 39cK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3y4V1L8W2)9J5k6h3y4Z5K9h3&6S2P5W2)9J5k6h3y4G2L8g2)9J5c8R3`.`.
- 国外在线 cdnplanet : 494K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6%4N6%4N6Q4x3X3g2U0k6r3&6H3L8r3q4F1k6i4c8Q4x3X3g2U0L8$3#2Q4x3V1j5`.
- 脚本canteen:xcdn : 88aK9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6Y4K9i4c8Z5N6h3u0Q4x3X3g2U0L8$3#2Q4x3V1j5K6P5s2l9I4x3r3W2@1i4K6u0r3P5r3y4V1L8R3`.`.
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
|
|
|---|---|
