小迪渗透实地培训第六期视频教程


小迪渗透实地培训第六期视频教程

本套小迪渗透实地培训第六期视频教程【高清完整版23课教程目录如下:
基础补习:
环境搭建篇(2天)
虚拟机安装
安装win2003,winxp,kali等操作系统
安装VMware
安装必要工具和插件
学习使用虚拟机快照,网络配置,线程设置等
脚本编程篇(4天)
1.html语言基础补习(表单,跳转,处理)                                                                                     
2.asp,php脚本编程基础补习(注释符,接受函数,编写规则,处理函数)                                                          
3.sql语言基础补习(查询,插入,修改更新等)                                                    
4.实例自己写文件上传页面                                                    
5.实例自己写sql注入测试页面
6.实例自己写后门小马,大马

1.搭建asp,php,aspx等环境(软件包,集成包,IIS,apache,tomcat等环境)                                                             
2.了解常见的搭建组合(asp+access,asp+mssql等)                                     
3.学习常见数据库和网站应用(iis6.0 7.0 apache等)                                     
4.分析数据库和网站信息传递过程,了解web服务流程(sql数据和网站调用)                  
5.HTTP数据包分析(请求行,状态行,相应码等)

1.实例sql注入原理分析
2.实例手工注入asp+access全过程                                                            
3.实例手工注入asp+mssql全过程                                                             
4.实例工具注入(啊D,明小子,穿山甲,sqlmap)                                          
5.实例php+mysql5注入(密码猜解)                            
6.实例php+mysql5注入(文件读取)                                                                   
7.实例php+mysql5注入(文件导出)                                                          
8.网站路径查找(爆路径,遗留文件等)                                                 
9.实例php+mysql5.0以下注入入侵思路                                                    
10.实例jsp+orcle注入(手工+工具)                                                             
11.实例JAVA,strust等漏洞利用                                                                                  
12.实例其他数据库注入(postsql,db2等)                                                 
13.实例cookie注入 post注入                                                             
14.代码审计注入漏洞产生原理                                                    
15.access偏移注入                                                                
16.access跨库注入                                                                     
17.xml实例注入原理和攻击演示                                                          
18.宽字节(搜索)注入                                                                   
19.xpath注入                                                                                 
20.盲注产生和利用                                                                      
21.数字,字符,搜索注入                                                             
22.关于扫描器注入利用                                                                      
22.绕过防注入继续注入(waf拦截,关键字拦截,函数拦截等)                               
23.其他类似复杂注入问题

不再提供下载

相关资源

发表评论

点 击 提 交