当前位置:网站首页>A real penetration test
A real penetration test
2022-07-04 07:09:00 【Distant sky】
Summary of the future :
Idle and boring , I came across a website , forehead ... There are many advertisements
A sudden impulse , Casually take the missing scanning tool and sweep it around , Several vulnerabilities were found , All are xss Loophole
" Test a wave with curiosity , Manually tested payload They all failed , The website "(" ,")" ,"<","> and "alert" Wait until these keywords are filtered out . No way out . Only hard —> Run directly to the dictionary , For xss Vulnerability dictionary payload test .
Finally, a lot of useful things are measured payload
Randomly choose a few tests , Successful pop-up !
At present, only one vulnerability has been tested , Other vulnerability points have not been tested .
As a student who has studied network security law , Of course, I know that I can't do things that harm others , Especially such a conscientious sharing website , Never destroy .
边栏推荐
- 输入年份、月份,确定天数
- 同一个job有两个source就报其中一个数据库找不到,有大佬回答下吗
- Since DMS is upgraded to a new version, my previous SQL is in the old version of DMS. In this case, how can I retrieve my previous SQL?
- [Valentine's day] - you can change your love and write down your lover's name
- Uniapp applet subcontracting
- Tar source code analysis Part 2
- centos8安装mysql.7 无法开机启动
- Campus network problems
- selenium IDE插件下载安装使用教程
- Computer connects raspberry pie remotely through putty
猜你喜欢
uniapp小程序分包
云Redis 有什么用? 云redis怎么用?
How notepad++ counts words
Summary of MySQL common judgment functions!! Have you used it
Transition technology from IPv4 to IPv6
响应式——媒体查询
校园网络问题
the input device is not a TTY. If you are using mintty, try prefixing the command with ‘winpty‘
![[GF (q) + LDPC] regular LDPC coding and decoding design and MATLAB simulation based on the GF (q) field of binary graph](/img/5e/7ce21dd544aacf23b4ceef1ec547fd.png)
[GF (q) + LDPC] regular LDPC coding and decoding design and MATLAB simulation based on the GF (q) field of binary graph
大厂技术专家:架构设计中常用的思维模型
随机推荐
Deep understanding of redis -- a new type of bitmap / hyperloglgo / Geo
Label management of kubernetes cluster
Responsive - media query
电子协会 C语言 1级 35 、银行利息
[GF (q) + LDPC] regular LDPC coding and decoding design and MATLAB simulation based on the GF (q) field of binary graph
Su Weijie, a member of Qingyuan Association and an assistant professor at the University of Pennsylvania, won the first Siam Youth Award for data science, focusing on privacy data protection, etc
Transition technology from IPv4 to IPv6
2022, peut - être la meilleure année économique de la prochaine décennie, avez - vous obtenu votre diplôme en 2022? Comment est - ce prévu après la remise des diplômes?
Data double write consistency between redis and MySQL
Analysis of tars source code 1
The important role of host reinforcement concept in medical industry
Design of test cases
2022年,或许是未来10年经济最好的一年,2022年你毕业了吗?毕业后是怎么计划的?
tars源码分析之7
Centos8 install mysql 7 unable to start up
The final week, I split
com. alibaba. nacos. api. exception. NacosException
【FPGA教程案例7】基于verilog的计数器设计与实现
MySQL relearn 2- Alibaba cloud server CentOS installation mysql8.0
How to buy financial products in 2022?