Olist.213
Blog's Categories Tags About 学习笔记Day 安全流程
 Olist.213
Blog's Categories Tags About 学习笔记Day 安全流程

Time 2021 06 14

Written by with ♥ on June 14, 2021 in

  • ProxyLogon

    ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

usage:
    python ProxyLogon.py --host=exchange.com --mail=admin@exchange.com
    python ProxyLogon.py --host=exchange.com --mails=./mails.txt
args:
    --host: target's address.
    --mail: exists user's mail.
    --mails: mails file.
    • chisel
    • get_Team_Pass
    • pyinstall编译
    • AoiAWD
    • https://github.com/lawrenceamer/dns-black-cat.git
    • http://www.firstsight.me/2020/02/from-recon-to-optimizing-rce-results-simple-story-with-one-of-the-biggest-ict-company-in-the-world/
    • onlinetools
      • 在线cms识别|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取
    • Mssql 常规提权

Author: Olist.213

Link: https://olist213.github.io/study_book/time-2021-06-14/

back · home
 Time 2021 06 05 mac os软件安装 2023 03 29 
© 2018 - 2023 Olist.213 | Powered by Hugo & LeaveIt