Umlingane wethu
Qaphela ukuba oku kuquka iBurp Suite, kodwa kuya kubakho upapasho olwahlukileyo malunga nayo kunye neeplagi zayo eziluncedo.
Iziqulatho:
-
qokelela -
Altdns -
iaquatone -
IMassDNS -
nsec3maphu -
I-Acunetix -
Uphando -
wfuzz -
phuf -
gobuster -
Arjun -
IkhonkcoFinder -
JSParser -
sqlmap -
NoSQLMap -
oxml_xxe -
tplmap -
CeWL -
I-Weakpass -
AEM_hacker -
JoomScan -
WPScan
qokelela
Ukufumana iisegmenti zenethiwekhi ezidityanisiweyo kunye neenombolo zenkqubo ezizimeleyo, i-Amass isebenzisa iidilesi ze-IP ezifunyenwe ngexesha lokusebenza. Lonke ulwazi olufunyenweyo lusetyenziselwa ukwakha imephu yenethiwekhi.
Iinkonzo:
- Ubuchule bokuqokelela ulwazi bubandakanya:
* I-DNS - ukukhangela kwesichazi-magama se-subdomains, i-bruteforce subdomains, ukukhangela ngobuchule usebenzisa iinguqu ezisekelwe kwi-subdomains efunyenweyo, ukubuyisela umva imibuzo ye-DNS kunye nokukhangela iiseva ze-DNS apho kunokwenzeka ukwenza isicelo sokudlulisa indawo (AXFR);* Ukukhangela umthombo ovulekileyo - Buza, Baidu, Bing, CommonCrawl, DNSDB, DNSDumpster, DNSTable, Dogpile, Exalead, FindSubdomains, Google, IPv4Info, Netcraft, PTRArchive, Riddler, SiteDossier, ThreatCrowd, VirusTotal, Yahoo;
* Khangela ugcino lwedatha yesatifikethi se-TLS - Censys, CertDB, CertSpotter, Crtsh, Entrust;
* Ukusebenzisa ii-APIs zenjini yokukhangela-BinaryEdge, BufferOver, CIRCL, HackerTarget, PassiveTotal, Robtex, SecurityTrails, Shodan, Twitter, Umbrella, URLScan;
* Khangela oovimba bewebhu kwi-Intanethi: ArchiveIt, ArchiveToday, Arquivo, LoCArchive, OpenUKArchive, UKGovArchive, Wayback;
- Ukudityaniswa noMaltego;
- Ibonelela ngowona msebenzi ugqibeleleyo wokukhangela i-DNS subdomains.
Umgcini:
- Qaphela nge-amass.netdomains - iya kuzama ukuqhagamshelana nedilesi nganye ye-IP kwisiseko esichongiweyo kwaye ifumane amagama e-domain ukusuka kwi-reverse DNS lookups kunye nezatifikethi ze-TLS. Le yindlela "yomgangatho ophezulu", inokutyhila imisebenzi yakho yobuntlola kumbutho ophantsi kophando.
- Ukusetyenziswa kwememori ephezulu, kunokutya ukuya kwi-2 GB ye-RAM kwizicwangciso ezahlukeneyo, ezingayi kukuvumela ukuba usebenzise esi sixhobo efini kwi-VDS encinci.
Altdns
Iinkonzo:
- Isebenza kakuhle kunye neeseti ezinkulu zedatha.
iaquatone
Iinkonzo:
- Imveliso yenza iqela leefayile kunye neefolda ezilungele ukuzisebenzisa xa usebenza ngakumbi nezinye izixhobo:
* Ingxelo ye-HTML enezithombe zesikrini eziqokelelweyo kunye nezihloko zeempendulo ezihlanganiswe ngokufana;* Ifayile enazo zonke ii-URL apho iiwebhusayithi zifunyenwe;
* Ifayile enamanani kunye nedatha yephepha;
* Ifolda eneefayile eziqulethe iiheda zempendulo ezivela kwiithagethi ezifunyenweyo;
* Ifolda eneefayile eziqulethe umzimba wempendulo kwiithagethi ezifunyenweyo;
* Imifanekiso-skrini yeewebhusayithi ezifunyenweyo;
- Ixhasa ukusebenza ngeengxelo ze-XML ezivela kwi-Nmap kunye ne-Masscan;
- Isebenzisa iChrome/Chromium engenantloko ukwenza umfanekiso weskrini.
Umgcini:
- Inokutsala ingqalelo yeenkqubo zokubona ukungena, ngoko ke ifuna uqwalaselo.
Umfanekiso weskrini uthathwe kwenye yeenguqulelo ezindala ze-aquatone (v0.5.0), apho uphando lwe-DNS subdomain luphunyeziwe. Iinguqulelo ezindala zinokufumaneka apha
IMassDNS
Iinkonzo:
- Ngokukhawuleza - ekwazi ukusombulula amagama angaphezu kwamawaka angama-350 ngomzuzwana.
Umgcini:
- I-MassDNS inokubangela umthwalo obalulekileyo kwizisombululi ze-DNS ezisetyenziswayo, ezinokukhokelela ekuvinjweni kwezo seva okanye izikhalazo kwi-ISP yakho. Ukongeza, iya kubeka umthwalo omkhulu kwiiseva ze-DNS zenkampani, ukuba banazo kwaye ukuba banoxanduva lwemimandla ozama ukuyicombulula.
- Uluhlu lwabasombululi luphelelwe lixesha, kodwa ukuba ukhetha izisombululi zeDNS ezaphukileyo kwaye wongeze ezintsha ezaziwayo, yonke into iya kulunga.
Umfanekiso weskrini we-aquatone v0.5.0
nsec3maphu
Iinkonzo:
- Ngokukhawuleza ufumanisa iinginginya kwiindawo ze-DNS ezinenani elincinci lemibuzo ukuba inkxaso ye-DNSSEC yenziwe kwindawo;
- Ibandakanya iplagin kaJohn iRipper enokusetyenziswa ukuqhekeza isiphumo se-NSEC3 hashes.
Umgcini:
- Iimpazamo ezininzi ze-DNS aziphathwa ngokuchanekileyo;
- Akukho lungelelwaniso oluzenzekelayo lokusetyenzwa kweerekhodi ze-NSEC - kufuneka wahlule isithuba samagama ngesandla;
- Ukusetyenziswa kwememori ephezulu.
I-Acunetix
Iinkonzo:
- Inqanaba eliphantsi lezinto ezintle zobuxoki;
- Iziphumo zinokuthunyelwa njengeengxelo;
- Yenza inani elikhulu lokuhlola ubuthathaka obahlukeneyo;
- Ukuskena okunxuseneyo kweenginginya ezininzi.
Umgcini:
- Ayikho i-algorithm yokunciphisa (i-Acunetix iya kuqwalasela amaphepha afanayo ekusebenzeni ukuba ahluke, ekubeni akhokelela kwii-URL ezahlukeneyo), kodwa abaphuhlisi basebenza kuyo;
- Ifuna ukufakwa kwi-server yewebhu eyahlukileyo, eyenza nzima iinkqubo zokuvavanya umxhasi kunye noqhagamshelo lwe-VPN kunye nokusebenzisa iskena kwicandelo elizimeleyo lomnatha womxhasi wendawo;
- Inkonzo ephantsi kophando ingenza ingxolo, umzekelo, ngokuthumela ii-vectors ezininzi zokuhlaselwa kwifom yoqhagamshelwano kwisayithi, ngaloo ndlela inzima kakhulu iinkqubo zoshishino;
- Lubunikazi kwaye, ngokufanelekileyo, ayisosisombululo sasimahla.
Uphando
Iinkonzo:
- Uyakwazi ukwahlula amaphepha okwenene "ama-200 KULUNGILE" ukusuka kumaphepha "200 OK", kodwa ngombhalo "iphepha alifumanekanga";
- Iza nesichazi-magama esiluncedo esinolungelelwano olulungileyo phakathi kobukhulu kunye nempumelelo yokukhangela. Iqulethe iindlela ezisemgangathweni eziqhelekileyo kwiiCMS ezininzi kunye nezitaki zeteknoloji;
- Ifomathi yaso yesichazi-magama, ekuvumela ukuba ufezekise ukusebenza kakuhle kunye nokuguquguquka ekubaleni iifayile kunye nabalawuli;
- Imveliso efanelekileyo - umbhalo ocacileyo, JSON;
- Inokwenza i-throttling - ikhefu phakathi kwezicelo, into ebalulekileyo kuyo nayiphi na inkonzo ebuthathaka.
Umgcini:
- Izandiso kufuneka zigqithiswe njengentambo, engafanelekanga ukuba ufuna ukudlula ezininzi izandiso kanye;
- Ukuze usebenzise isichazi-magama sakho, kuya kufuneka ukuba siguqulwe kancinane kwifomathi yeDirsearch yesichazi-magama ukuze usebenze kakhulu.
wfuzz
Iinkonzo:
- I-Multifunctional - isakhiwo semodyuli, indibano ithatha imizuzu embalwa;
- Uhluzo olululo kunye nomatshini wokudibanisa;
- Unokwenza isigaba nayiphi na indlela ye-HTTP, kunye nayo nayiphi na indawo kwisicelo se-HTTP.
Umgcini:
- Phantsi kophuhliso.
phuf
Iinkonzo:
- Izihluzi ziyafana nezihluzo ze-wfuzz, zikuvumela ukuba uqwalasele ngokuguquguqukayo amandla akhohlakeleyo;
- Ikuvumela ukuba udibanise amaxabiso eheader ye-HTTP, idatha yesicelo se-POST kunye neendawo ezahlukeneyo ze-URL, kuquka amagama kunye namaxabiso e-GET parameters;
- Ungakhankanya nayiphi na indlela ye-HTTP.
Umgcini:
- Phantsi kophuhliso.
gobuster
Iinkonzo:
- Isantya esiphezulu sokusebenza kokubini kukhangelo lwamandla akhohlakeleyo kwi-DNS subdomains kunye namandla akhohlakeleyo efayile kunye nabalawuli.
Umgcini:
- Uguqulelo lwangoku aluxhasi ukusetwa kwezihloko zeHTTP;
- Ngokungagqibekanga, kuphela ezinye iikhowudi zesimo se-HTTP (200,204,301,302,307) zithathwa njengezisebenzayo.
Arjun
Iinkonzo:
- Isantya esiphezulu ngenxa yokukhangela kokubini;
- Inkxaso ye-GET / POST iiparamitha, kunye neeparameters ngendlela ye-JSON;
Iplagin yeBurp Suite isebenza kumgaqo ofanayo -
IkhonkcoFinder
Iinkonzo:
- Ukukhawuleza;
- Kukho iplagin ekhethekileyo yeChrome esekwe kwi-LinkFinder.
.
Umgcini:
- Isiphelo sokugqibela esingathandekiyo;
- Ayihlalutyi iJavaScript ekuhambeni kwexesha;
- Ingqiqo elula yokukhangela amakhonkco - ukuba iJavaScript ibonakaliswe ngandlela ithile, okanye amakhonkco alahlekile ekuqaleni kwaye enziwe ngamandla, ngoko ayizukwazi ukufumana nantoni na.
JSParser
Iinkonzo:
- Ukwahlulahlula ngokukhawuleza kweefayile zeJavaScript.
sqlmap
Iinkonzo:
- Inani elikhulu leendlela ezahlukeneyo zobuchule kunye neevektha;
- Inani eliphantsi leempembelelo zobuxoki;
- Ukhetho oluninzi lokulungisa kakuhle, ubuchule obahlukeneyo, ugcino lwedatha ekujoliswe kuyo, izikripthi eziphazamisayo zokudlula i-WAF;
- Ukukwazi ukwenza imveliso yokulahla;
- Izakhono ezininzi zokusebenza ezahlukeneyo, umzekelo, kwezinye iindawo zolwazi - ukulayisha ngokuzenzekelayo / ukukhulula iifayile, ukufumana amandla okuphumeza imiyalelo (RCE) kunye nabanye;
- Inkxaso yoqhagamshelwano oluthe ngqo kwisiseko sedatha usebenzisa idatha efunyenwe ngexesha lokuhlaselwa;
- Ungangenisa ifayile yokubhaliweyo eneziphumo ze Burp njengegalelo - akukho mfuneko yokuqamba ngesandla zonke iimpawu zomgca womyalelo.
Umgcini:
- Kunzima ukwenza, umzekelo, ukubhala ezinye iitshekhi zakho ngenxa yokunqaba kwamaxwebhu oku;
- Ngaphandle kwezicwangciso ezifanelekileyo, yenza isethi engaphelelanga yeetshekhi, ezinokulahlekisa.
NoSQLMap
Iinkonzo:
- Njenge-sqlmap, ayifumani kuphela ubuthathaka obunokwenzeka, kodwa iphinda ijonge ukuba nokwenzeka kokuxhatshazwa kwayo kwi-MongoDB kunye ne-CouchDB.
Umgcini:
- Ayixhasi i-NoSQL yeRedis, iCassandra, uphuhliso luyaqhubeka kweli cala.
oxml_xxe
Iinkonzo:
- Ixhasa iifomati ezininzi eziqhelekileyo ezinje ngeDOCX, ODT, SVG, XML.
Umgcini:
- Inkxaso ye-PDF, i-JPEG, i-GIF ayiphunyezwanga ngokupheleleyo;
- Yenza ifayile enye kuphela. Ukusombulula le ngxaki ungasebenzisa isixhobo
docem , enokudala inani elikhulu leefayile zokuhlawula kwiindawo ezahlukeneyo.
Ezi zinto zingentla zenza umsebenzi omhle wokuvavanya i-XXE xa ulayisha amaxwebhu aqulethe i-XML. Kodwa kwakhona khumbula ukuba abaphathi befomathi ye-XML banokufumaneka kwezinye iimeko ezininzi, umzekelo, i-XML ingasetyenziswa njengefomati yedatha endaweni ye-JSON.
Ke ngoko, sicebisa ukuba ubeke ingqalelo kolu vimba ulandelayo, oqulethe inani elikhulu leentlawulo ezahlukeneyo:
tplmap
Iinkonzo:
- Inani elikhulu leendlela ezahlukeneyo zobuchule kunye neevektha;
- Ixhasa iinjini ezininzi ezinikezela ngetemplate;
- Uninzi lweendlela zokusebenza.
CeWL
Iinkonzo:
- Kulula ukuyisebenzisa.
Umgcini:
- Kufuneka uqaphele ngobunzulu bokukhangela ukuze ungabambi i-domain eyongezelelweyo.
I-Weakpass
Iinkonzo:
- Iqulathe zombini izichazi-magama ezikhethekileyo kunye nezichazi-magama ezinamagama ayimfihlo aqhelekileyo - ungakhetha isichazi-magama esikhethekileyo kwiimfuno zakho;
- Izichazi-magama zihlaziywa kwaye zandiswa ngeephasiwedi ezintsha;
- Izichazi-magama zihlelwa ngokobuchule. Ungakhetha ukhetho lwazo zombini amandla akhohlakeleyo e-intanethi kunye nokhetho oluneenkcukacha lwamagama agqithisiweyo ukusuka kwisichazi-magama esinamandla ngokuvuza kwamva nje;
- Kukho isixhobo sokubala esibonisa ixesha elithathwayo ukukrazula amagama ayimfihlo kwisixhobo sakho.
Singathanda ukubandakanya izixhobo zokutshekishwa kweCMS kwiqela elahlukileyo: WPScan, JoomScan kunye ne-AEM hacker.
AEM_hacker
Iinkonzo:
- Inokuchonga izicelo ze-AEM kuluhlu lwee-URL ezingeniswe kwigalelo layo;
- Iqulethe imibhalo yokufumana i-RCE ngokulayisha iqokobhe le-JSP okanye ngokuxhaphaza i-SSRF.
JoomScan
Iinkonzo:
- Iyakwazi ukufumana iziphene zoqwalaselo kunye neengxaki ngezicwangciso zolawulo;
- Udwelisa iinguqulelo zeJoomla kunye nobuthathaka obunxulumeneyo, ngokufanayo kumacandelo ngamanye;
- Iqulathe ngaphezulu kwe-1000 yezenzo zeJoomla;
- Isiphumo seengxelo zokugqibela kwisicatshulwa kunye neefomathi zeHTML.
WPScan
Iinkonzo:
- Iyakwazi ukudwelisa kungekuphela nje iiplagi ze-WordPress ezingakhuselekanga kunye nemixholo, kodwa nokufumana uluhlu lwabasebenzisi kunye neefayile zeTimThumb;
- Unokwenza uhlaselo lwamandla akhohlakeleyo kwiindawo ze-WordPress.
Umgcini:
- Ngaphandle kwezicwangciso ezifanelekileyo, yenza isethi engaphelelanga yeetshekhi, ezinokulahlekisa.
Ngokubanzi, abantu abahlukeneyo bakhetha izixhobo ezahlukeneyo zomsebenzi: zonke zilungile ngendlela yazo, kwaye oko umntu akuthandayo kunokungahambelani nomnye kwaphela. Ukuba ucinga ukuba asiyihoyanga into eluncedo, bhala ngayo kumagqabantshintshi!
umthombo: www.habr.com