wKioL1Pt63TRPv0EAAFmQhxLgk66章节.pptxVIP

Kali Linux Web 渗透测试—初级教程（第四课）goole hack 实例玄魂交流qq群：303242737第四课 google hack 实战1.寻找持续构建工具Jenkins的管理面板，有可能获取某些项目的源代码或者敏感信息2.综合利用各种信息搞定xampp3. 后门查找4.关于google hack databaseGooglehack基础知识/Blog/2014/8/13/google-hack-%E4%B9%8B-%E6%9F%A5%E8%AF%A2%E8%AF%AD%E6%B3%95http:///Blog/2014/8/13/google-hack-%E4%B9%8B-%E6%9F%A5%E8%AF%A2%E8%AF%AD%E6%B3%95寻找持续构建工具Jenkins的管理面板寻找持续构建工具Jenkins的管理面板，有可能获取某些项目的源代码或者敏感信息寻找持续构建工具Jenkins的管理面板/search?q=inurl:8080%20intitle:%22Dashboard%20%5bJenkins%5d%22inurl:8080 /search?q=inurl:8080%20intitle:%22Dashboard%20%5bJenkins%5d%22intitle/search?q=inurl:8080%20intitle:%22Dashboard%20%5bJenkins%5d%22:Dashboard [Jenkins]搞定xampp寻找安装了xampp的主机： inurl:xampp/index intext:XAMPP for Windows 1）寻找phpmyadmin不用验证或者弱口令管理页面，通过mysql 的root 权限插入一句话木马提权，获取服务器管理权限3. 后门查找Google搜索目标：intitle:=[ 1n73ct10n privat shell ]=“/search?q=intitle:%22WSO%202.4%22%20%5b%20Sec.%20Info%20%5d,%20%5b%20Files%20%5d,%20%5b%20Console%20%5d,%20%5b%20Sql%20%5d,%20%5b%20Php%20%5d,%20%5b%20Safe%20mode%20%5d,%20%5b%20String%20tools%20%5d,%20%5b%20Bruteforce%20%5d,%20%5b%20Network%20%5d,%20%5b%20Self%20remove%20%5dintitle/search?q=intitle:%22WSO%202.4%22%20%5b%20Sec.%20Info%20%5d,%20%5b%20Files%20%5d,%20%5b%20Console%20%5d,%20%5b%20Sql%20%5d,%20%5b%20Php%20%5d,%20%5b%20Safe%20mode%20%5d,%20%5b%20String%20tools%20%5d,%20%5b%20Bruteforce%20%5d,%20%5b%20Network%20%5d,%20%5b%20Self%20remove%20%5d:WSO 2.4 [ Sec. Info ], [ Files ], [ Console ], [ /search?q=intitle:%22WSO%202.4%22%20%5b%20Sec.%20Info%20%5d,%20%5b%20Files%20%5d,%20%5b%20Console%20%5d,%20%5b%20Sql%20%5d,%20%5b%20Php%20%5d,%20%5b%20Safe%20mode%20%5d,%20%5b%20String%20tools%20%5d,%20%5b%20Bruteforce%20%5d,%20%5b%20Network%20%5d,%20%5b%20Self%20remove%20%5dSql/search?q=intitle:%22WSO%202.4%22%20%5b%20Sec.%20Info%20%5d,%20%5b%20Files%20%5d,%20%5b%20Console%20%5d,%20%5b%20Sql%20%5d,%20%5b%20Php%20%5d,%20%5b%20Safe%20mode%20%5d,%20%5b%20String%20tools%20%5d,%20%5b%20Bruteforce%20%5d,%20%5b%20Network%20%5d,%20%5b%20Self%20remove%20%5d ], [ /searc