当前位置:网站首页>外网打点(信息收集)
外网打点(信息收集)
2022-07-06 09:22:00 【不知名白帽】
外网打点(信息收集)
一、子域名
1.FOFA
2.cert证书
3.子域名工具
a.oneforall
b.子域名爆破
子域名挖掘机
FOFA插件(subdomainsbrute)
在线网站(https://phpinfo.me/domain/)
c.Subfinder
d.Sublist3r
e.微步在线
f.360威胁情报中心
二、C段
fofa
shodan
360quake
潮汐指纹
三、Web指纹
1.反查
a.备案--天眼查(https://www.tianyancha.com/)/企查查/爱企查
b.CDN
c.whois--站长之家(https://www.chinaz.com/)
d.DNS历史解析记录(https://securitytrails.com/)
ping
nslookup
dig
2.目录
a.御剑
b.kali-dirb
c.github-dirsearch
d.爬虫(rad、JSfinder、AWVS爬虫模式、高级版XRAY)
3.google hack语法
4.cms
a.云悉(https://www.yunsee.cn/)
b.FOFA-IP聚合
c.潮汐指纹
d.kali-whatweb
e.github cms识别工具
f.火狐插件-Wappalyzer
5.端口
nmap
诸多小工具
FOFA
TTL判断操作系统类型
6.waf识别
kali-wafw00f
7.中间件
默认端口
报错信息
HTTP头部信息(nmap)
边栏推荐
- 7-14 error ticket (PTA program design)
- Difference and understanding between detected and non detected anomalies
- Experiment 8 exception handling
- 强化学习基础记录
- 7-3 构造散列表(PTA程序设计)
- . How to upload XMIND files to Jinshan document sharing online editing?
- 7-11 mechanic mustadio (PTA program design)
- FAQs and answers to the imitation Niuke technology blog project (II)
- A comprehensive summary of MySQL transactions and implementation principles, and no longer have to worry about interviews
- Yugu p1012 spelling +p1019 word Solitaire (string)
猜你喜欢
小程序web抓包-fiddler
Mode 1 two-way serial communication is adopted between machine a and machine B, and the specific requirements are as follows: (1) the K1 key of machine a can control the ledi of machine B to turn on a
It's never too late to start. The tramp transformation programmer has an annual salary of more than 700000 yuan
扑克牌游戏程序——人机对抗
Hackmyvm target series (7) -tron
Reinforcement learning series (I): basic principles and concepts
Hackmyvm target series (6) -videoclub
7-5 走楼梯升级版(PTA程序设计)
Hackmyvm Target Series (3) - vues
网络层—简单的arp断网
随机推荐
强化学习基础记录
. How to upload XMIND files to Jinshan document sharing online editing?
[MySQL database learning]
Hackmyvm target series (4) -vulny
[VMware abnormal problems] problem analysis & Solutions
HackMyvm靶机系列(2)-warrior
Strengthen basic learning records
xray与burp联动 挖掘
FAQs and answers to the imitation Niuke technology blog project (III)
A piece of music composed by buzzer (Chengdu)
[modern Chinese history] Chapter 6 test
【VMware异常问题】问题分析&解决办法
Spot gold prices rose amid volatility, and the rise in U.S. prices is likely to become the key to the future
渗透测试学习与实战阶段分析
Experiment 6 inheritance and polymorphism
Renforcer les dossiers de base de l'apprentissage
Experiment 9 input and output stream (excerpt)
Analysis of penetration test learning and actual combat stage
Detailed explanation of redis' distributed lock principle
.Xmind文件如何上传金山文档共享在线编辑?