Demo Preparation https://mp.weixin.qq.com/debug/cgi-bin/sandbox?t=sandbox/login WeChat public platform interface test account application, no public account required, quick application for interface test account Directly experience and test all advanced interfaces of the public platform Configuration The URL address here is an address that needs to be deployed to be accessible online (locally it is recommended to use natapp […]
Tag: scanning
Scanning scheme for default file system types
1. Introduction Normally, when we need to traverse the entire disk, we will choose to use the interface provided by the system, or call the filesystem module in the standard library or boost library. The traversal method of the filesystem library is relatively simple, so this article only lists the usage of the system traversal […]
XSS attack(4), XSS scanning tool
XSSTrike and Burp Suite scan for XSS vulnerabilities One, XSSTrike 1. Installation Download: https://github.com/s0md3v/XSStrike/releases Install dependencies: pip install tld, fuzzywuzzy, requests Official documentation: https://github.com/s0md3v/XSStrike/wiki/Usage#scan-a-single-url 2. Use Test get request Option: -u or –url python .\xsstrike.py -u “http://192.168.112.200/security/testxss.php?content=test” [~] Checking for DOM vulnerabilities [ + ] WAF Status: Offline [!] Testing parameter: content [!] Reflections found: […]
16.1 Socket port scanning technology
Port scanning is a network security testing technology that can be used to determine the open services on the peer host to collect information during penetration. The main principle is to detect open services on a specific host by sending a series of network requests. code>TCP/IPport. Specifically, the port scanner will send a TCP or […]
HarmonyOS application development: scanner file scanning
Huawei HarmonyOS has developed to 4.0, using ArkTS as the development language. This article combines Dynamsoft Service to develop a simple Hongmeng application to obtain the scanner connected to the PC in the office (HP, Fujitsu, Epson, etc.) and scan documents to the mobile phone. Preparation Dynamsoft Service Install Dynamsoft Service on the computer connected […]
Linux network port scanning tool example
Linux network port scanning tool example 1. Linux network port 2. Port scanning 2.1 Netstat 2.1.1 Usage examples based on SDX12 platform 2.1.2 Port restrictions based on SDX12 platform 2.2 Nmap 2.2.1 Introduction to Namp 2.2.2 Basic usage 2.2.3 Usage examples based on SDX12 platform 1. Linux network port In computer networking, a port is […]
Container image security vulnerability scanning-Trivy
1. Trivy Overview Trivy (tri pronounced as trigger, vy as envy) is a simple yet comprehensive vulnerability/misconfiguration scanner for containers and other artifacts. Software vulnerabilities are glitches, flaws, or weaknesses in software or operating systems. Trivy detects vulnerabilities in operating system packages (Alpine, RHEL, CentOS, etc.) and specific language packages (Bundler, Composer, npm, yarn, etc.). […]
Use go to encapsulate and implement code scanning login
Use go to encapsulate and implement scan code login This article is about using go to design and develop your own lightweight login library/framework – Qiu Bo – Blog Park (cnblogs.com) scan code login business article, will talk about the implementation of scan code login, and add to the library/framework New functions, finally instructions on […]
NMAP advanced usage tips and vulnerability scanning discovery
This article is only for study and research, please do not use it illegally! ! ! This article is only for study and research, please do not use it illegally! ! ! This article is only for study and research, please do not use it illegally! ! ! NMAP advanced usage tips: NMAP Overview: nmap […]
A source IP scanning tool integrated with ChatGPT
About chaos chaos is a powerful source IP address scanning tool that integrates the functions of ChatGPT and is mainly aimed at security penetration testers and vulnerability hunters. The source IP mentioned here refers to the final public IP destination address used by websites hosted through third-party public services. Function introduction 1. Support multi-threading to […]