当前位置:网站首页>Penetration test information collection - site architecture and construction
Penetration test information collection - site architecture and construction
2022-07-06 18:35:00 【Aspirin. two thousand and two】
List of articles
information gathering — framework 、 Construction, etc
1、 Site construction analysis
1.1、 Directory site
xxx.com
and xxx.com/bbs
There are two different pages , It can be regarded as two sets of procedures , But the vulnerability of any page has an impact on the website
The home page may be in D Under the plate www In the directory root Catalog ,bbs The page is on root in bbs Catalog
1.2、 Port class site
xxx.com:8080
The default home page is 80 port , however 8080 Port vulnerabilities will also affect 80 port , Both are on the same server
Port settings , Different ports correspond to different applications . such as ssh The default port is 22
1.3、 Subdomain site
goodlift-www.bbs
master station :www.goodlift.net
substation :bbs.goodlift.net
bbs.goodlift.net Yes, it is Discuz Built , and www.goodlift.net Yes, it is destoon b2b Built . Two websites are not necessarily on the same server
1.4、 Similar domain name sites
It must be on the same server
1.4、 Similar domain name sites
Different domain name , Same website
边栏推荐
- Why does wechat use SQLite to save chat records?
- STM32+HC05串口蓝牙设计简易的蓝牙音箱
- Interesting - questions about undefined
- Tree-LSTM的一些理解以及DGL代码实现
- 图片缩放中心
- Stm32+hc05 serial port Bluetooth design simple Bluetooth speaker
- The third season of Baidu online AI competition is coming in midsummer, looking for you who love AI!
- None of the strongest kings in the monitoring industry!
- 图之广度优先遍历
- celery最佳实践
猜你喜欢
F200 - UAV equipped with domestic open source flight control system based on Model Design
Some understandings of tree LSTM and DGL code implementation
Execution process of MySQL query request - underlying principle
爬虫玩得好,牢饭吃到饱?这3条底线千万不能碰!
Shangsilicon Valley JUC high concurrency programming learning notes (3) multi thread lock
Virtual machine VirtualBox and vagrant installation
巨杉数据库首批入选金融信创解决方案!
微信为什么使用 SQLite 保存聊天记录?
Distill knowledge from the interaction model! China University of science and Technology & meituan proposed virt, which combines the efficiency of the two tower model and the performance of the intera
Self-supervised Heterogeneous Graph Neural Network with Co-contrastive Learning 论文阅读
随机推荐
287. 寻找重复数
从交互模型中蒸馏知识!中科大&美团提出VIRT,兼具双塔模型的效率和交互模型的性能,在文本匹配上实现性能和效率的平衡!...
SQL优化问题的简述
小程序在产业互联网中的作用
CRMEB 商城系统如何助力营销?
[the 300th weekly match of leetcode]
Numerical analysis: least squares and ridge regression (pytoch Implementation)
C language college laboratory reservation registration system
STM32+ESP8266+MQTT协议连接OneNet物联网平台
C language exchanges two numbers through pointers
C语言自动预订飞机票问题
文档编辑之markdown语法(typora)
Wchars, coding, standards and portability - wchars, encodings, standards and portability
Grafana 9.0 is officially released! It's the strongest!
用友OA漏洞学习——NCFindWeb 目录遍历漏洞
Stm32+mfrc522 completes IC card number reading, password modification, data reading and writing
從交互模型中蒸餾知識!中科大&美團提出VIRT,兼具雙塔模型的效率和交互模型的性能,在文本匹配上實現性能和效率的平衡!...
Cocos2d Lua smaller and smaller sample memory game
Common - magic number 7
FMT open source self driving instrument | FMT middleware: a high real-time distributed log module Mlog