当前位置:网站首页>Att & CK actual combat series - red team actual combat - V
Att & CK actual combat series - red team actual combat - V
2022-07-04 00:20:00 【F。 N hey hey】
ATT&CK Practical series — The red team is fighting -5
nmap sweep , See the open port , notice thinkphp Search directly after the version of payload
Write payload when , because <> Will be in windows Report errors , This want to use `` hold < Cover up , But it's still wrong , will payload Encrypted into base64 Then write to the file , Then decrypt the file into plaintext file 
Intranet channel 192.168.138.137
There is no password caught here ( The reason will be explained later )
Try to go online cs Grab the code 
Turn off firewall 
Turn on 3389
View host information , Prepare for remote login 
stay win7 On the use of fscan Scan host , obtain win2008
hashdump, obtain sid Wait for the information , adopt cs Upper psexec Sign in win2008
There was no migration process before , Lead to msf Of hashdump Failure 
Use wmiexec Sign in win2008, Failed to connect , Then try to connect win7, I found that I could connect , Explain that the agent has problems 
Find out msf There is no route added in ,, As a result, it cannot be connected 2008, Now add the route 
Login successful 
Subsequent operations are similar to win7 be similar , Finally, clean up the traces
边栏推荐
- 2022 examination of safety production management personnel of hazardous chemical production units and examination skills of safety production management personnel of hazardous chemical production unit
- Smart fan system based on stm32f407
- Ningde times and BYD have refuted rumors one after another. Why does someone always want to harm domestic brands?
- ITK learning notes (VII) the position of ITK rotation direction remains unchanged
- Amway by head has this project management tool to improve productivity in a straight line
- 2022 chemical automation control instrument examination content and chemical automation control instrument simulation examination
- Iclr2022: how does AI recognize "things I haven't seen"?
- Pytorch learning notes 5: model creation
- D30:color tunnels (color tunnels, translation)
- STM32 GPIO CSDN creative punch in
猜你喜欢
Yyds dry goods inventory three JS source code interpretation - getobjectbyproperty method
Ningde times and BYD have refuted rumors one after another. Why does someone always want to harm domestic brands?
Iclr2022: how does AI recognize "things I haven't seen"?
2022 system integration project management engineer examination knowledge points: software development model
STM32 GPIO CSDN creative punch in
![[complimentary ppt] kubemeet Chengdu review: make the delivery and management of cloud native applications easier!](/img/28/fc05f2e8d53cf81fd061c799090022.jpg)
[complimentary ppt] kubemeet Chengdu review: make the delivery and management of cloud native applications easier!
Tencent interview: can you find the number of 1 in binary?
Deep learning ----- using NN, CNN, RNN neural network to realize MNIST data set processing
MySQL winter vacation self-study 2022 12 (1)
![[MySQL] classification of multi table queries](/img/96/2e51ae8d52ea8184945e0540ce18f5.jpg)
[MySQL] classification of multi table queries
随机推荐
P1339 [USACO09OCT]Heat Wave G
(Introduction to database system | Wang Shan) Chapter V database integrity: Exercises
Deep learning ----- using NN, CNN, RNN neural network to realize MNIST data set processing
【leetcode】300. Longest increasing subsequence (dynamic programming, dichotomy)
[complimentary ppt] kubemeet Chengdu review: make the delivery and management of cloud native applications easier!
Solve the problem that the kaggle account registration does not display the verification code
Double efficiency. Six easy-to-use pychar plug-ins are recommended
Distributed transaction -- middleware of TCC -- selection / comparison
Similarities and differences of text similarity between Jaccard and cosine
Is the securities account opened by Caicai for individuals safe? Is there a routine
[NLP] text classification still stays at Bert? Duality is too strong than learning framework
2022 a special equipment related management (elevator) examination questions and a special equipment related management (elevator) examination contents
Idea integrates Microsoft TFs plug-in
Kubedl hostnetwork: accelerating the efficiency of distributed training communication
It is forbidden to splice SQL in code
Qtcharts notes (V) scatter diagram qscatterseries
D23:multiple of 3 or 5 (multiple of 3 or 5, translation + solution)
Idea set class header comments
[CSDN Q & A] experience and suggestions
Gossip about redis source code 82