当前位置:网站首页>Xray and burp linkage mining
Xray and burp linkage mining
2022-07-06 14:03:00 【Lazy and talented】
Catalog
0x0A xray Basic introduction and use
0x0b Installation configuration
0x0c xray( Community Edition ) Basic use of
0x01 Active scanning ( Remember to authorize )
0x01 Sub domain name collection
0x0B burp And xray The linkage of
0x03 burp by xray Downstream of :( install jar plug-in unit )
0x0A xray Basic introduction and use
0x0a xray Official website
xray Community Edition xray - A powerful security assessment tool
0x01 function : Subdomain scanning 、 common web Vulnerability detection 、 Service Vulnerability Detection 、
Reptile detection 、 Special detection ability 、Xray linkage
0x02 Pattern : Active scanning (edu gov Site Don't try to ) Passive scanning ( Crawl web page cache scanning )
0x03 difference burp:xray Is to monitor packets burp Is to intercept packets
0x04 xray Community Edition and Red Team Edition For daily testing, the community version can meet ( The red team poc Quick update )
Advanced version xray Support struts、fastjson、thinkphp、shiro One click detection of high-risk historical vulnerabilities in the framework
0x0b Installation configuration
0x01powershell cd Get into xray root directory
0x02 command xray_windows_amd64.exe genca, Can generate ca certificate , How to detect this machine HTTPS Traffic .
( monitor cer The certificate needs to be installed on the local computer If you use firefox The browser also imports the browser )
0x03 Certificate name :ca.cer
0x04 yaml file analysis disallowed The domain name that is not allowed to be scanned by default
All in all Two places Just delete this line
0x05 double-click Certificate installation
double-click --> Installation certificate --> Default yes
0x0c xray( Community Edition ) Basic use of
0x01 Active scanning ( Remember to authorize )
xray_windows_amd64.exe webscan --url www.baidu.com --html-output test.html
0x02 Passive scanning
xray_windows_amd64.exe webscan--listen 127.0.0.1:7777 --html-output test.html
0x0d xray Red team version
0x01 Sub domain name collection
xray_windows_amd64.exe subdomain baidu.com --text-output baidu.txt
Than wydomain、subDomainsBrute And other tools are more practical , Advanced version xray As information collection , Recommended .
0x02 Special scanning
shiro fastjson thinkphp struts
Don't forget to sweep it out Using one's own poc verification
wait ...
0x0B burp And xray The linkage of
effect :xray Not easy to see host use burp Of history Just solve
0X01 Grab https Traffic
If grab is needed https Flow needs brup as well as xray All installed https certificate .
Please visit
brup Install certificate grabbing https
brup Install certificate grabbing https - L0ading - Blog Garden
xray Install the certificate http as well as https scanning
xray Install the certificate http as well as https scanning - L0ading - Blog Garden
0x02 burp by xray Upstream :
browser --> burp -->xray --> testing ( Put the bag manually , Not very convenient )
On the basis of conventional packet capturing ,burp Configuring a downstream agent . Send traffic to xray scan . stay bp The following configuration can be carried out on the basis of catching website packets . here bp Send the traffic to the local 7777 port
The browser opens 127.0.0.1:8080 burp Intercept port
The effect is as shown in the picture
0x03 burp by xray Downstream of :( install jar plug-in unit )
error: Remember to turn off burp As upstream Set up user-options Set up
Releases · c0ny1/passive-scan-client · GitHub
tips: First open xray Listen to the command stay run passive-scan-Clinet.jar modular
browser --> xray -->burp --> testing ( Automatic detection )
Set up xray Browser agent 127.0.0.1:7777
The effect is as shown in the picture Not very easy to use
summary ; No matter it is burp As xray The front and back of The effect is not very good ( It is recommended to have authorization Active scanning )
Share next issue :
xray+rad Linkage passive scanning
Fully automatic Deep climb
边栏推荐
- [data processing of numpy and pytoch]
- Detailed explanation of three ways of HTTP caching
- Programme de jeu de cartes - confrontation homme - machine
- xray與burp聯動 挖掘
- 内网渗透之内网信息收集(五)
- Write a program to simulate the traffic lights in real life.
- Experiment five categories and objects
- 【Numpy和Pytorch的数据处理】
- Which is more advantageous in short-term or long-term spot gold investment?
- 搭建域环境(win)
猜你喜欢
Mixlab unbounded community white paper officially released
Strengthen basic learning records
Experiment 6 inheritance and polymorphism
Harmonyos JS demo application development
Write a program to simulate the traffic lights in real life.
Principles, advantages and disadvantages of two persistence mechanisms RDB and AOF of redis
Differences among fianl, finally, and finalize
3. Input and output functions (printf, scanf, getchar and putchar)
HackMyvm靶机系列(1)-webmaster
"Gold, silver and four" job hopping needs to be cautious. Can an article solve the interview?
随机推荐
7-8 7104 约瑟夫问题(PTA程序设计)
[three paradigms of database] you can understand it at a glance
HackMyvm靶机系列(4)-vulny
Using spacedesk to realize any device in the LAN as a computer expansion screen
Hackmyvm Target Series (3) - vues
【educoder数据库实验 索引】
[insert, modify and delete data in the headsong educator data table]
7-6 矩阵的局部极小值(PTA程序设计)
xray与burp联动 挖掘
Harmonyos JS demo application development
QT meta object qmetaobject indexofslot and other functions to obtain class methods attention
简述xhr -xhr的基本使用
简单理解ES6的Promise
Safe driving skills on ice and snow roads
[experiment index of educator database]
7-9 make house number 3.0 (PTA program design)
This time, thoroughly understand the MySQL index
xray與burp聯動 挖掘
【数据库 三大范式】一看就懂
A piece of music composed by buzzer (Chengdu)