当前位置:网站首页>[flow analysis] Buu_ [an Xun cup 2019]attack
[flow analysis] Buu_ [an Xun cup 2019]attack
2022-06-09 21:28:00 【malloc_ Go!】
1. Open the traffic packet , Search in packet byte stream flag, Find a zip package , Use foremost Separate , Opening discovery requires a password .
2. Recall that there is such content in the traffic package : Guess the password belongs to the administrator ( Later, it was found that )
3. Export object ->HTTP I found a dmp file , Generally, it is the suffix of the database backup file , Because he is bigger than the others , So let's take a look
4. Now think of mimikatz The function of : Plaintext passwords can be captured from memory during intranet penetration .
// Increase authority
privilege::debug
// load dmp file
sekurlsa::minidump lsass.dmp
// Read the login password
sekurlsa::logonpasswords full5. First of all, will mimikatz Set to trusted , Bypass the firewall , Right click again to use the administrator login to find the password .
Open the compressed package with this password to obtain flag
边栏推荐
- 抽象类可以继承实体类吗?
- Paddlenlp general information extraction technology UIE [i] industrial application examples: information extraction {entity relationship extraction, Chinese word segmentation, accurate entity markers,
- Thoughts on "sword finger offer1-32"
- 二叉搜索树
- minikube config set driver kvm2
- Configuration du serveur DHCP et de la connexion client
- Improve the ttfb loading speed of Typecho homepage and several upgrades
- 如何定位到服务器CPU飙高的原因
- What is wave field TRX wallet development
- ASP.NET手机终端进销存系统,源码分享
猜你喜欢
瀏覽器無法打開百度,別的可以正常打開
剑指offer1-32题思路
Mysql:1062 Duplicate entry '1' for key 'PRIMARY'
Logistic regression summary
How Bi makes SaaS products have a "sense of security" and "sensitivity" (Part I)
STM32 memory knowledge
Numpy duplicate data
Latex数学符号大全
10 common high-frequency business scenarios that trigger IO bottlenecks
兰吉尔FFC3 电表电能量采集终端替代方案(DLMS红外光电采集器)
随机推荐
GBase 8s 扩展外连接
PaddleNLP--UIE(二)--小样本快速提升性能(含doccona标注)
QT database application 21 data grouping export
Embedded software design (interim summary)
Go calls several simple examples of kubernetes API
用Odoo实现企业数字化转型有什么好的?
Idea:new no class
Gbase8s database select Clause 6
Kubevirt network source code analysis (3) - virtual machine hot migration network
搭建ngrok服务器,实现内网穿透服务,实现外网到内网的在线访问
Gbase8s database select Clause 1
Open source a nodejs firewall gadget
ASP. Net mobile terminal inventory system, source code sharing
How Bi makes SaaS products have a "sense of security" and "sensitivity" (Part I)
Le navigateur ne peut pas ouvrir Baidu, d'autres peuvent être ouverts normalement
Modbus协议与SerialPort端口读写
[time series] TFT: multi-step direct prediction of interpretable time series transformers
minikube config set driver kvm2
Paddlenlp general information extraction technology UIE [i] industrial application examples: information extraction {entity relationship extraction, Chinese word segmentation, accurate entity markers,
Huawei's cloud industrial intelligence hub provides new momentum for accelerating the upgrading of industrial intelligence