当前位置:网站首页>Att & CK actual combat series - red team actual combat - V
Att & CK actual combat series - red team actual combat - V
2022-07-04 00:20:00 【F。 N hey hey】
ATT&CK Practical series — The red team is fighting -5
nmap sweep , See the open port , notice thinkphp Search directly after the version of payload
Write payload when , because <> Will be in windows Report errors , This want to use `` hold < Cover up , But it's still wrong , will payload Encrypted into base64 Then write to the file , Then decrypt the file into plaintext file 
Intranet channel 192.168.138.137
There is no password caught here ( The reason will be explained later )
Try to go online cs Grab the code 
Turn off firewall 
Turn on 3389
View host information , Prepare for remote login 
stay win7 On the use of fscan Scan host , obtain win2008
hashdump, obtain sid Wait for the information , adopt cs Upper psexec Sign in win2008
There was no migration process before , Lead to msf Of hashdump Failure 
Use wmiexec Sign in win2008, Failed to connect , Then try to connect win7, I found that I could connect , Explain that the agent has problems 
Find out msf There is no route added in ,, As a result, it cannot be connected 2008, Now add the route 
Login successful 
Subsequent operations are similar to win7 be similar , Finally, clean up the traces
边栏推荐
- The upload experience version of uniapp wechat applet enters the blank page for the first time, and the page data can be seen only after it is refreshed again
- Gossip about redis source code 80
- [C language] break and continue in switch statement
- Global and Chinese market of glossometer 2022-2028: Research Report on technology, participants, trends, market size and share
- [PHP basics] session basic knowledge, application case code and attack and defense
- Analysis on the scale of China's smart health industry and prediction report on the investment trend of the 14th five year plan 2022-2028 Edition
- Kubedl hostnetwork: accelerating the efficiency of distributed training communication
- Alibaba cloud container service differentiation SLO hybrid technology practice
- Report on prospects and future investment recommendations of China's assisted reproductive industry, 2022-2028 Edition
- Ningde times and BYD have refuted rumors one after another. Why does someone always want to harm domestic brands?
猜你喜欢
Double efficiency. Six easy-to-use pychar plug-ins are recommended
Idea set class header comments
Celebrate the new year | Suihua fire rescue detachment has wonderful cultural activities during the Spring Festival
Alibaba cloud container service differentiation SLO hybrid technology practice
Detailed explanation of the relationship between Zhongtai, wechat and DDD
Report on prospects and future investment recommendations of China's assisted reproductive industry, 2022-2028 Edition
Cannot build artifact 'test Web: War expanded' because it is included into a circular depend solution
![[CSDN Q & A] experience and suggestions](/img/db/dff3173dda24ca5740729b54a81153.jpg)
[CSDN Q & A] experience and suggestions
URL (data:image/png; Base64, ivborw0k... Use case
Ningde times and BYD have refuted rumors one after another. Why does someone always want to harm domestic brands?
随机推荐
How to trade spot gold safely?
It is forbidden to splice SQL in code
Is the securities account opened by Caicai for individuals safe? Is there a routine
MySQL is installed as a Windows Service
What is the Valentine's Day gift given by the operator to the product?
D25:sequence search (sequence search, translation + problem solving)
[source code] VB6 chat robot
JDBC Technology
Tencent interview: can you find the number of 1 in binary?
Amway by head has this project management tool to improve productivity in a straight line
2020.2.14
Cannot build artifact 'test Web: War expanded' because it is included into a circular depend solution
Powerful blog summary
Ningde times and BYD have refuted rumors one after another. Why does someone always want to harm domestic brands?
D29:post Office (post office, translation)
[2021]NeRF in the Wild: Neural Radiance Fields for Unconstrained Photo Collections
Suggestions for improving code quality
2022 a special equipment related management (elevator) examination questions and a special equipment related management (elevator) examination contents
Gossip about redis source code 76
Unity elementary case notes of angry birds Siki college 1-6