当前位置:网站首页>外网打点(信息收集)
外网打点(信息收集)
2022-07-06 09:22:00 【不知名白帽】
外网打点(信息收集)
一、子域名
1.FOFA
2.cert证书
3.子域名工具
a.oneforall
b.子域名爆破
子域名挖掘机
FOFA插件(subdomainsbrute)
在线网站(https://phpinfo.me/domain/)
c.Subfinder
d.Sublist3r
e.微步在线
f.360威胁情报中心
二、C段
fofa
shodan
360quake
潮汐指纹
三、Web指纹
1.反查
a.备案--天眼查(https://www.tianyancha.com/)/企查查/爱企查
b.CDN
c.whois--站长之家(https://www.chinaz.com/)
d.DNS历史解析记录(https://securitytrails.com/)
ping
nslookup
dig
2.目录
a.御剑
b.kali-dirb
c.github-dirsearch
d.爬虫(rad、JSfinder、AWVS爬虫模式、高级版XRAY)
3.google hack语法
4.cms
a.云悉(https://www.yunsee.cn/)
b.FOFA-IP聚合
c.潮汐指纹
d.kali-whatweb
e.github cms识别工具
f.火狐插件-Wappalyzer
5.端口
nmap
诸多小工具
FOFA
TTL判断操作系统类型
6.waf识别
kali-wafw00f
7.中间件
默认端口
报错信息
HTTP头部信息(nmap)
边栏推荐
- xray与burp联动 挖掘
- 7-7 7003 组合锁(PTA程序设计)
- FAQs and answers to the imitation Niuke technology blog project (I)
- How to understand the difference between technical thinking and business thinking in Bi?
- Programme de jeu de cartes - confrontation homme - machine
- Have you encountered ABA problems? Let's talk about the following in detail, how to avoid ABA problems
- UGUI—Text
- Hackmyvm target series (3) -visions
- This time, thoroughly understand the MySQL index
- 7-5 走楼梯升级版(PTA程序设计)
猜你喜欢
HackMyvm靶机系列(1)-webmaster
Relationship between hashcode() and equals()
【VMware异常问题】问题分析&解决办法
Hackmyvm target series (3) -visions
xray与burp联动 挖掘
[VMware abnormal problems] problem analysis & Solutions
It's never too late to start. The tramp transformation programmer has an annual salary of more than 700000 yuan
2022 Teddy cup data mining challenge question C idea and post game summary
Hackmyvm target series (6) -videoclub
网络层—简单的arp断网
随机推荐
Why use redis
7-4 散列表查找(PTA程序设计)
实验七 常用类的使用(修正帖)
Meituan dynamic thread pool practice ideas, open source
Force deduction 152 question multiplier maximum subarray
Hackmyvm Target Series (3) - vues
7-15 h0161. Find the greatest common divisor and the least common multiple (PTA program design)
Brief introduction to XHR - basic use of XHR
The difference between cookies and sessions
Experiment 9 input and output stream (excerpt)
7-11 机工士姆斯塔迪奥(PTA程序设计)
7-9 制作门牌号3.0(PTA程序设计)
撲克牌遊戲程序——人機對抗
MySQL lock summary (comprehensive and concise + graphic explanation)
7-1 output all primes between 2 and n (PTA programming)
HackMyvm靶机系列(1)-webmaster
2022泰迪杯数据挖掘挑战赛C题思路及赛后总结
Have you encountered ABA problems? Let's talk about the following in detail, how to avoid ABA problems
中间件漏洞复现—apache
Zatan 0516