http://wechat.doonsec.com/MzkxMjYyMjA3Mg.xmlThe latest security articles about WeChat official accountzh-CNFri, 21 Nov 2025 15:23:03 GMTPyRSS2Gen-1.1.0http://blogs.law.harvard.edu/tech/rsshttp://wechat.doonsec.com/http://wechat.doonsec.com/static/front/img/doonsec_bak3.pnghttps://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485581&idx=1&sn=995fee84e3bee031095c2284d55fe4c8PE结构+windbg+PE Bear + 函数地址手动解析羽泪云小栈羽泪云小栈2025-11-21T10:30:50https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485546&idx=1&sn=db815e2a1e83f3a2c5db5004b449e5a1windows-shellcode 续写nasm 工具安装仅做汇编代码的工具+汇编代码+x64dbg调试+寄存器知识羽泪云小栈羽泪云小栈2025-11-20T10:40:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485531&idx=1&sn=f43312087ecc3e594c79a624c2793013shellcode加载器 入门+代码+分析羽泪云小栈羽泪云小栈2025-11-18T10:40:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485517&idx=1&sn=3ce859797049e2019382298fdb195165websocket的ws与wss观察，用了socket.io库的flask聊天室demo，想要观察它的ws与wss羽泪云小栈羽泪云小栈2025-11-09T08:50:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485505&idx=1&sn=8eec21f94231ba490b2c779ba9b73f9aDLL注入入门羽泪云小栈羽泪云小栈2025-11-04T10:50:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485497&idx=1&sn=19dad8219e05c17f404fcc674754482d云服务器部署flask+uwsgi+nginx羽泪云小栈羽泪云小栈2025-10-30T10:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485493&idx=1&sn=738a48be4ff8ec341ad69cdf2ef119eaSe8_Artificial+linux(Eazy)+tensorflow-rce+restic提权羽泪云小栈羽泪云小栈2025-06-28T22:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485489&idx=1&sn=fcc1f9e7d998433c8f71cba54982f0d6Se8_Sorcery+linux(hard)+cypher注入+kafka协议流量+内网网段探测+ dnsmasq利用+mitmproxy拦截+钓鱼邮件发送羽泪云小栈羽泪云小栈2025-06-21T22:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485478&idx=1&sn=bc452c406ab1638d8b22b28ea3481e19Se8_TombWatcher+windows(Med)+writeSPN+readGMSApasswd+GenericOwner+(is_deleted)certipy羽泪云小栈羽泪云小栈2025-06-14T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485473&idx=1&sn=be4708b35aa2433287dd6e20837130e3HTB_certificate+windows(hard)+zip绕过+esc3-\\x26gt;gold_cert羽泪云小栈羽泪云小栈2025-06-13T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485469&idx=1&sn=89fa2d8cb7fa6becc85a68382f50347dHTB8_Fluffy+windows(easy)+GenericAll+GenericWrite-\\x26gt;certipy羽泪云小栈羽泪云小栈2025-06-08T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485465&idx=1&sn=880b4a6d752319de5aa6959e59b7ddd7HTB_Nocturnal+FUZZ+命令执行绕过-\\x26gt;CVE-2023-46818羽泪云小栈羽泪云小栈2025-04-18T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485461&idx=1&sn=33b6d4c216ace2e23c5835538b146150HTB_WhiteRabbit+linux(Insane)+改响应码进后台发现新接口+请求构造+sqlmap+flask羽泪云小栈羽泪云小栈2025-04-15T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485446&idx=1&sn=035960fc71763f6bf57c16fed1108f1d诈骗电话羽泪云小栈羽泪云小栈2025-04-12T20:00:42https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485450&idx=1&sn=f13270028c1bb3b000d1b44134723442HTB_Haze+Windows(hard)-\\x26gt;cve-2024-36991-\\x26gt;gMSA组-\\x26gt;WriteOnwer权限+ForceChangePassword权限利用-\\x26gt;Splunk-shell+SeImpersonatePrivilege羽泪云小栈羽泪云小栈2025-04-12T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485432&idx=1&sn=edc502ff3b0aaa3209384f64a4ba23e8HTB_Code+linux(eazy)+python-继承链-\\x26gt;ln软链接羽泪云小栈羽泪云小栈2025-04-10T20:00:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485428&idx=1&sn=7d5f1fd567e891076b8de521d6fef962HTB_TheFrizz+Windows(Insane)+CVE-2023-45878-\\x26gt;kerberos登录ssh-\\x26gt;回收站-\\x26gt;洪范配合GPO滥用提权羽泪云小栈羽泪云小栈2025-04-09T00:10:43https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485423&idx=1&sn=1da8ef3edbc8fc4d227441472dd39314HTB_Dog+linux(Eazy)+.git泄露+dropback-1.27.1-rce+php调试环境搭建vscode+xdebug+phpstudy羽泪云小栈羽泪云小栈2025-04-06T22:35:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485417&idx=1&sn=b3f0a2e5b246b1c4371f87047afb08d6HTB_Checker+linux(hard)+CVE-2023-1545-\\x26gt;CVE-2023-6199羽泪云小栈羽泪云小栈2025-04-05T22:05:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485413&idx=1&sn=f1fcedf1e0ede56405e7883497ccc491HTB_Cypher+linux(Med)+目录爆破-\\x26gt;jd-gui分析jar-\\x26gt;cypher-inject+sudo提权羽泪云小栈羽泪云小栈2025-04-05T22:00:44https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485409&idx=1&sn=cc619244e24a1cb7fac2bc790e748e69HTB_Titanic+linux(Eazy)+子域名+任意文件下载-\\x26gt;cve-2024-41817羽泪云小栈羽泪云小栈2025-04-04T22:30:57https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485405&idx=1&sn=9c0c38dd9a7e9c6e5c2298e811d61a19linux-windows混合AD+CVE-2024-42009+postgresql注入-\\x26gt;postgres弹shell-\\x26gt;内网横向-\\x26gt;krbrelayx-\\x26gt;dpapi-\\x26gt;pywhisker-\\x26gt;upn欺骗-\\x26gt;gpo_abuse羽泪云小栈羽泪云小栈2025-03-19T21:10:17https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485401&idx=1&sn=5bbd93a61ed45ffd0c73e96b7e64105bHTB_Bigbang+CVE_2023-26326+CVE-2024-2961+app逆向羽泪云小栈羽泪云小栈2025-02-07T20:00:18https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485396&idx=1&sn=87356740064eca47baf980b1b66c3f75HTB_Cat+linux(Medium)+代码审计+xss+sql盲注-\\x26gt;端口转发+gitea_xss羽泪云小栈羽泪云小栈2025-02-06T20:03:14https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485388&idx=1&sn=74e685a7639e0314856454b95462a187HTB_Backfire+linux(Med)+Havoc_poc+Hardhatc2_poc+sudo+ssh私钥羽泪云小栈羽泪云小栈2025-01-23T20:00:25https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485392&idx=1&sn=a3204187202136c21f954c939c9d6a3dCE基础知识了解羽泪云小栈羽泪云小栈2025-01-22T20:00:46https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485387&idx=1&sn=cd63395d61608fa0e0fa3a453a6b9eb3Websocket了解羽泪云小栈羽泪云小栈2025-01-21T20:00:42https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485368&idx=1&sn=74ddd25dde102efbcdb5039899f102d1S7_HTB_EscapeTwo+windows(Easy)+smbclient+mssql利用+bloodyAD+CA模板漏洞利用羽泪云小栈羽泪云小栈2025-01-16T20:00:44https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485367&idx=1&sn=dc03aa1898daa66f43405c5cf951f4dffrida环境搭建+HTB_APKey+apk反编译+frida_hook羽泪云小栈羽泪云小栈2025-01-14T20:00:23https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485355&idx=1&sn=1daf8e542791e21a08caefb9ce458e5dHTB-Unrested+linux(Med)+CVE-2024-42327(时间盲注)-\\x26gt;RCE-\\x26gt;sudo -l(nmap)羽泪云小栈羽泪云小栈2024-12-22T20:31:43https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485349&idx=1&sn=a329b52351dc5b9a272eb4450c1df369HTB_Vintage（思路）+ windows(hard)+pre2k+krb5票据(getTGT)+bloodyAD+asreproast+dpapi羽泪云小栈羽泪云小栈2024-12-08T20:00:10https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485343&idx=1&sn=11f1ac8a85a3a280a2cebafc70dde1acpwn110+mprotect+__libc_stack_end羽泪云小栈羽泪云小栈2024-11-24T00:01:26https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485333&idx=1&sn=ea4483585e0169afbf783b1640ad7a74THM_pwn109+ret2libc+rop gadgets羽泪云小栈羽泪云小栈2024-11-23T20:00:21https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485311&idx=1&sn=259b559254467b7b3dcee850a4b4cb07HTB_BlockBlock+fetch_xss+json-rpc信息泄露+sudo提权羽泪云小栈羽泪云小栈2024-11-21T20:00:27https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485279&idx=1&sn=5a364b58f2dc06c59b6e2a98fc20c669THM_pwn109+NX+libc+ROP羽泪云小栈羽泪云小栈2024-11-19T20:00:48https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485256&idx=1&sn=c270089dff0d99f2cb4bf45522e27d55thm_pwn108+GOT覆盖+printf格式化字符串%n利用羽泪云小栈羽泪云小栈2024-11-16T20:00:15https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485233&idx=1&sn=7ad0cf32c05e5ab37fb5ab3388f3f029thm_pwn107+格式化字符串溢出+PIE绕过+canary获取+动态基址获取羽泪云小栈羽泪云小栈2024-11-15T21:30:18https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485207&idx=1&sn=91ad667a36ec73349dd30451f7cafd32HTB_Administrator+bloodhound+GeneriAll+Genericwrite+DCSync羽泪云小栈羽泪云小栈2024-11-14T20:01:00https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485180&idx=1&sn=34b285e609745d187170243e1bebccfaTHM_pwn103+scanf缓冲区溢出+栈对齐羽泪云小栈羽泪云小栈2024-11-13T22:30:23https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485124&idx=1&sn=cf1807878af914dbcc449bb1e46cf8fdHTB之Certified+windows(Med)+smb服务利用+bloodhound+ADCS利用羽泪云小栈羽泪云小栈2024-11-10T20:00:36https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485089&idx=1&sn=d2e489a897e9a58424c208f7e5a20d32记一次应急响应排除挖矿病毒记录+root密码重置+进程cpu占用率异常+找到相关路径，计划任务，服务进行排查羽泪云小栈羽泪云小栈2024-11-06T20:00:43https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485076&idx=1&sn=724e31274c73dd3386945c370ddd9dfb赛季6HTB之University+Window(Insane)+CVE-2023-33733-\\x26gt;socks代理+文件上传+?羽泪云小栈羽泪云小栈2024-11-03T20:00:20https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485024&idx=1&sn=6303195c52d52e780850d663fb733cb3赛季6HTB之Chemistry+linux(eazy)+cif文件伪造+python解析db文件+CVE-2024-23334羽泪云小栈羽泪云小栈2024-10-26T20:01:41https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485016&idx=1&sn=f021c2e152d21341258619cf550200b1HTB之Chemistry(思路)+cif文件伪造+CVE羽泪云小栈羽泪云小栈2024-10-20T21:00:21https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247485000&idx=1&sn=e8b15fa2e4b133af54008e9ab43ca078HTB之Yummy+linxu(hard)+本地文件包含-\\x26gt;jwt伪造-\\x26gt;sudo提权羽泪云小栈羽泪云小栈2024-10-15T11:32:17https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484979&idx=1&sn=cb17a35d6a87462fdc38d0f6197769bd赛季6HTB之Cicada+Windows(Eazy)+smb漏洞利用+SeBackup提权羽泪云小栈羽泪云小栈2024-10-03T20:00:08https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484961&idx=1&sn=21fc262f5a82b6283b93b63da6dd3570HTB之Cicada+Windows(Eazy)+SMB漏洞利用-\\x26gt;SeBackup权限/Backup Operators组利用羽泪云小栈羽泪云小栈2024-09-29T20:00:46https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484953&idx=1&sn=dc36d59912d8feb43794612e1f078037赛季6HTB之Trickster(root补充)羽泪云小栈羽泪云小栈2024-09-25T23:33:52https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484943&idx=1&sn=8f8508fe73979b3d41bfa0a452e98fcd赛季6HTB之linux(Med)+CVE-2024-34716-\\x26gt;docker端口转发-\\x26gt;CVE-2024-32651羽泪云小栈羽泪云小栈2024-09-23T22:14:38https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484907&idx=1&sn=0ac39cbc4216db244aacd21738d74898赛季6HTB之Caption(User解法二)+linux(hard)-\\x26gt;FUZZ+XSS+SSRF+LFI羽泪云小栈羽泪云小栈2024-09-21T21:28:30https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484876&idx=1&sn=adbcd5a38c9272be55162f3a43d4069d赛季6HTB之Caption+linux(hard)+H2-RCE-\\x26gt;thrift客户端服务端RPC通信羽泪云小栈羽泪云小栈2024-09-17T21:12:24https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484843&idx=1&sn=0b318b3e806f00cddf9dcd9646448759赛季6HTB之Sightless+linux(Eazy)+CVE-2022-0944+shadow密码爆破+ssh-\\x26gt;端口转发+chrome远程调用+命令执行羽泪云小栈羽泪云小栈2024-09-11T22:20:48https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484812&idx=1&sn=ecbb5a87666714c7a00fcc75cdfddb15赛季6HTB之monitorsthree+linux(med)+SQL注入+子域名爆破+CVE-2024-25641反弹webshell+敏感配置文件,密码爆破+横向shell+ssh端口转发+Duplicati-bypass+计划备份任务羽泪云小栈羽泪云小栈2024-08-27T19:06:39https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484770&idx=1&sn=f3ea2f42f62db78fd52a388f7d9f77c7赛季6HTB之Lantern+db文件BLOB数据查看羽泪云小栈羽泪云小栈2024-08-24T11:56:21https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484741&idx=1&sn=35168965b6fc445052e86b53ae1073b5赛季6HTB之Lantern+linux(hard)+ssrf+dll反编译+dll反弹shell羽泪云小栈羽泪云小栈2024-08-22T01:29:16https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484696&idx=1&sn=e399186f7629b515cd91d800d7a133d7HTB之Compiled(root部分)+windows(Med)+CVE-2024-20656羽泪云小栈羽泪云小栈2024-08-14T15:56:32https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484685&idx=1&sn=af7fa8f7cdb5e261b7746793480e0ffaHTB之Compiled(user部分)+Windows(Med)+CVE-2024-32002+密码爆破+winrm远程连接羽泪云小栈羽泪云小栈2024-08-13T23:43:41https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484659&idx=1&sn=69bbe38891c7f95a1784e08cb2a7204c赛季6HTB之Sea+linux(eazy)+cms_nday利用+hash爆破+端口转发+命令执行羽泪云小栈羽泪云小栈2024-08-11T21:44:27https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484613&idx=1&sn=db3f2b448d5294fe2d4cd1bc6885c9c9Season6+HTB之Resource+本地文件包含+敏感信息泄露(zipgrep)+CA签名登录羽泪云小栈羽泪云小栈2024-08-07T18:46:40https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484584&idx=1&sn=30b73729de0eb6798bf0b8d4a3f77648搜狗输入法绕锁屏密码漏洞羽泪云小栈羽泪云小栈2024-08-02T13:03:01https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484580&idx=1&sn=a63d6be72bba56381a083bea5bb61f6f赛季靶5HTB之permx+linux(eazy)+CVE-2023-4220+配置文件数据库凭证泄露+ssh密码重用+sudo提权羽泪云小栈羽泪云小栈2024-07-08T16:09:33https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484568&idx=1&sn=50ca9b979d3bbeb80685a888145de3ab赛季5之Blazorized+windows(Med)+DLL反编译+jwt伪造+MSSQL注入+powerview使用与bloodhound分析羽泪云小栈羽泪云小栈2024-07-02T23:28:57https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484539&idx=1&sn=7a7e87f2123378e24ade8f5550f0a40e赛季靶HTB之Axlle+钓鱼邮件xll-exec反弹shell+hta反弹shell羽泪云小栈羽泪云小栈2024-06-27T17:52:11https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484522&idx=1&sn=1ff3a128f2648a99de78348c1f0c9e0f赛季5HTB之Editorial+linux(Eazy)+SSRF+.git敏感信息泄露+CVE-2022-24439羽泪云小栈羽泪云小栈2024-06-17T18:05:42https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484507&idx=1&sn=ce95c2a5a2d12a1771858d418b411929赛季5之HTB-Blurry+linux(Medium)+CVE漏洞利用+sudo提权/恶意文件构造羽泪云小栈羽泪云小栈2024-06-12T11:10:31https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484495&idx=1&sn=c63e7f161283221088d8e36fb2a94064赛季靶HTB之HTB之Freelancer+windows(hard)+任意注册+越权+约束委派利用羽泪云小栈羽泪云小栈2024-06-10T09:57:05https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484476&idx=1&sn=b171af11ec47f65533791bd2da4d176f赛季靶5HTB之boardlight+子域名爆破+CVE-2023-30253+CVE-2022-37706羽泪云小栈羽泪云小栈2024-05-27T21:55:14https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484461&idx=1&sn=2c4acfc241bf636c446cacdc80e2c026HTB之MagicGardens+linux(ins)+smtp用户枚举+5000端口密码爆破+drg.py脚本利用获得敏感文件+ssh连接+端口转发+cdp利用羽泪云小栈羽泪云小栈2024-05-21T18:03:36https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484436&idx=1&sn=5e32ea5633d793723cc72ed2014fe21d赛季5HTB之scholarlab+smb用户枚举+smbclient敏感信息泄露+CVE-2023-33733+端口转发+CVE-2023-32315+openfire解密爆破羽泪云小栈羽泪云小栈2024-05-14T15:33:21https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484397&idx=1&sn=07e5201b3641914b5384e0d59ad6057d赛季5_HTB之Mailing+windows(eazy)+任意文件下载+第三方组件漏洞利用+sam哈希导出羽泪云小栈羽泪云小栈2024-05-11T21:19:18https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484386&idx=1&sn=814902e662e2f395c4b13c2b99896db9HTB之Intuition+linux(hard)+xss弹cookie+ssrf读取文件+(敏感信息泄露+ftp)+逆向代码分析羽泪云小栈羽泪云小栈2024-05-01T11:50:46https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484368&idx=1&sn=4c8863db41a0f1da293aff9186b35904赛季5HTB之Runner+子域名扫描+未授权api调用+敏感信息收集+端口转发+runc逃逸羽泪云小栈羽泪云小栈2024-04-23T19:59:59https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484342&idx=1&sn=5e82034b835fddf7638e1c0c57d56ed9webshell流量的记录羽泪云小栈羽泪云小栈2024-04-19T18:04:02https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484285&idx=1&sn=bc4605628c29abea99cd92fa760f7fa6HTB之Iclean+linux(Med)+xss反弹cookie+ssti注入反弹shell+数据库信息泄露+sudo -l提权羽泪云小栈羽泪云小栈2024-04-15T19:54:37https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484269&idx=1&sn=d96f2d6e02f28b977f44c73f19876f70HTB之Ouija+linux(insane)+请求夹带bypass+哈希长度扩展攻击+软链接的任意文件读取羽泪云小栈羽泪云小栈2024-03-26T11:49:57https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484251&idx=1&sn=9c9345ef67b74965e4f56ac1cfa1d9d0赛季靶HTB之Headless+linux(eazy)+xss+命令执行+sudo提取羽泪云小栈羽泪云小栈2024-03-24T14:09:58https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484241&idx=1&sn=f8633555025425dfe9ad9bd72426c38e赛季靶HTB之WifineticTwo+linux(Med)+openplc漏洞+wlan密码爆破+有关配置羽泪云小栈羽泪云小栈2024-03-18T17:21:28https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484218&idx=1&sn=ce91c655d979affbf561fe05d8b82bcbHTB赛季靶之FormulaX+linux(hard)+xss敏感信息获取+simple-git漏洞利用+mongodb数据库信息泄露+ssh -L端口转发+webshell获取+敏感配置文件信息获取+OpenOffice漏洞利用羽泪云小栈羽泪云小栈2024-03-16T14:36:36https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484178&idx=1&sn=950fb5140de480ac54160181ab0ee977vulnhub之Brainpan：1+linux+缓冲区溢出(eip+jmp esp)+sudo提权羽泪云小栈羽泪云小栈2024-03-06T23:28:18https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484147&idx=1&sn=2b7c8df6d557b354d1b1f1dc224a979c赛季靶HTB之Perfection+ssti注入+ssh爆破羽泪云小栈羽泪云小栈2024-03-05T13:17:48https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484138&idx=1&sn=09f7085733d30cf29f2e9fb491cb59f2赛季靶HTB之Jab+Windows(Med)+第三方软件利用+ASREP Roast+135端口远程登录+端口转发+CVE-2023-32315羽泪云小栈羽泪云小栈2024-02-29T00:19:58https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484122&idx=1&sn=c9980eb739095c1602100eecf9ebd2de赛季靶HTB之Office+windows(hard)+cms漏洞利用+smb信息泄露+kerberos流量破解+内网：多用户横向渗透+GPO提权羽泪云小栈羽泪云小栈2024-02-24T10:24:53https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484057&idx=1&sn=ba13fa12f0f73639fdeeffd12c4ec3f6HTB赛季靶之pov+windows(Med)+本地文件包含漏洞+VIEWSTATE漏洞利用+PScredential+Runascs工具+msf羽泪云小栈羽泪云小栈2024-02-01T15:37:04https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484049&idx=1&sn=f881af1d6d3ba1755ac793fff80e5488HTB赛季4-analysis+windows(hard)+fuzz+kerbrute+ldap注入+dll劫持提权羽泪云小栈羽泪云小栈2024-01-24T15:24:57https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484041&idx=1&sn=40d29db7f9c1f9e5b50f60469e909521HTB之Clicker+linux(Med)+nfs协议漏洞+代码审计+perl提权羽泪云小栈羽泪云小栈2024-01-19T12:04:41https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247484026&idx=1&sn=8b1b1ba08aa7319c85088f267378368f赛季靶HTB之monitored+snmp泄露+接口访问+信息收集羽泪云小栈羽泪云小栈2024-01-18T14:29:15https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483996&idx=1&sn=f4431b3402427976ea1e150158752fb2HTB之Visual+windows(Mid)+本地git+NET项目编译+恢复权限+提权羽泪云小栈羽泪云小栈2024-01-12T19:27:30https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483901&idx=1&sn=921ca648a3833272bd4624b93b05f7b5HTB之Bizness cve漏洞利用+derby数据库+grep信息处理羽泪云小栈羽泪云小栈2024-01-11T01:17:30https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483859&idx=1&sn=b3c8b4808ace8ffc3943f8a7b80e8563vulnhub之socnet，代码反弹shell+内网穿透+uname提权羽泪云小栈羽泪云小栈2024-01-09T16:11:43https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483809&idx=1&sn=b1734f1c031b62d68fa130e482b16503主要为凭证盗取；思路：smb信息泄露、ldap监听、ADCS证书漏洞提权；工具：smbclient、certipy、evil-winrm、impacket羽泪云小栈羽泪云小栈2023-12-11T16:30:18https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483767&idx=1&sn=b600816aee6b6a4862bbc1b530ae0aaaBroker之ActiveMQ漏洞羽泪云小栈羽泪云小栈2023-12-06T16:03:08https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483746&idx=1&sn=5c1bf32dd4d7e459ba347c732adba676vulnhub-DERPNSTINK: 1 弱口令+文件上传羽泪云小栈羽泪云小栈2023-12-02T22:12:04https://mp.weixin.qq.com/s?__biz=MzkxMjYyMjA3Mg==&mid=2247483657&idx=1&sn=bfddb408ca05b204e1759f69b14c1262渗透测试基础知识分享羽泪云小栈羽泪云小栈2023-12-01T20:08:01