当前位置:网站首页>Penetration test information collection - site architecture and construction
Penetration test information collection - site architecture and construction
2022-07-06 18:35:00 【Aspirin. two thousand and two】
List of articles
information gathering — framework 、 Construction, etc
1、 Site construction analysis
1.1、 Directory site
xxx.com
and xxx.com/bbs
There are two different pages , It can be regarded as two sets of procedures , But the vulnerability of any page has an impact on the website
The home page may be in D Under the plate www In the directory root Catalog ,bbs The page is on root in bbs Catalog
1.2、 Port class site
xxx.com:8080
The default home page is 80 port , however 8080 Port vulnerabilities will also affect 80 port , Both are on the same server
Port settings , Different ports correspond to different applications . such as ssh The default port is 22
1.3、 Subdomain site
goodlift-www.bbs
master station :www.goodlift.net
substation :bbs.goodlift.net
bbs.goodlift.net Yes, it is Discuz Built , and www.goodlift.net Yes, it is destoon b2b Built . Two websites are not necessarily on the same server
1.4、 Similar domain name sites
It must be on the same server
1.4、 Similar domain name sites
Different domain name , Same website
边栏推荐
- 测试行业的小伙伴,有问题可以找我哈。菜鸟一枚~
- 测试123
- Implementation of queue
- SQL优化问题的简述
- Using block to realize the traditional values between two pages
- node の SQLite
- Declval of template in generic programming
- STM32+MFRC522完成IC卡号读取、密码修改、数据读写
- 2019阿里集群数据集使用总结
- Comparative examples of C language pointers *p++, * (p++), * ++p, * (++p), (*p) + +, +(*p)
猜你喜欢
Coco2017 dataset usage (brief introduction)
Grafana 9.0 正式发布!堪称最强!
简单易用的PDF转SVG程序
Docker installation redis
虚拟机VirtualBox和Vagrant安装
[the 300th weekly match of leetcode]
Comparative examples of C language pointers *p++, * (p++), * ++p, * (++p), (*p) + +, +(*p)
Maixll dock camera usage
Top command details
传输层 拥塞控制-慢开始和拥塞避免 快重传 快恢复
随机推荐
std::true_ Type and std:: false_ type
Test 123
C language college laboratory reservation registration system
DOM Brief
30 分钟看懂 PCA 主成分分析
Docker安装Redis
阿里云国际版ECS云服务器无法登录宝塔面板控制台
Example of implementing web server with stm32+enc28j60+uip protocol stack
Windows connects redis installed on Linux
Markdown syntax for document editing (typera)
Penetration test information collection - CDN bypass
Why does wechat use SQLite to save chat records?
复现Thinkphp 2.x 任意代码执行漏洞
Implementation of queue
测试123
Declval (example of return value of guidance function)
Stm32+esp8266+mqtt protocol connects onenet IOT platform
[Matlab] Simulink 同一模块的输入输出的变量不能同名
Grafana 9.0 is officially released! It's the strongest!
虚拟机VirtualBox和Vagrant安装