![[Meachines] [Easy] Love File Scanner SSRF+Voting System RCE+Win注册表.MSI权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/02/4b40ddaeb84dc5a7837b01ac41fa5e-400x280-c.jpg "[Meachines] [Easy] Love File Scanner SSRF+Voting System RCE+Win注册表.MSI权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.10.239TCP:80,135,139,443,445,3306,5000,5…
![[Meachines] [Easy] Previse EAR+Php files analysis RCE+TRP00F权限提升+Gzip路径劫持权限…缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/02/b769da0f48c5b098ef62ca4d8e44fc-400x280-c.jpg "[Meachines] [Easy] Previse EAR+Php files analysis RCE+TRP00F权限提升+Gzip路径劫持权限…缩略图")
Information GatheringIP AddressOpening Ports10.10.11.104TCP:22,80$ ip='10.10.11.104'; itf=…
背景介绍SSTI,又称服务端模板注入。其发生在MVC框架中的view层。服务端接收了用户的输入,将其作为Web 应用模板内容的一部分,在进行目标编译渲染的过程中,执行了用户插入的恶…
靶场:https://www.vulnhub.com/entry/phineas-1,674/安装:下载之后导入到vmware,网络模式选择nat攻击机:kali一、信息搜集arp…
![[Meachines] [Easy] Precious Ruby-pdfkit-RCE+Ruby YAML反序列化权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/02/c9de0044b62f02b1141e2dcf93822b-400x280-c.jpg "[Meachines] [Easy] Precious Ruby-pdfkit-RCE+Ruby YAML反序列化权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.11.189TCP:22,80$ ip='10.10.11.189'; itf=…
![[Meachines] [Easy] Help HelpDeskZ-SQLI+NODE.JS-GraphQL未授权访问+Kernel缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/02/b74ad9ce78395a95b436b440e983aa-400x280-c.jpg "[Meachines] [Easy] Help HelpDeskZ-SQLI+NODE.JS-GraphQL未授权访问+Kernel缩略图")
Information GatheringIP AddressOpening Ports10.10.10.121TCP:22,80,3000$ sudo masscan -p1-6…
![[Meachines] [Easy] TwoMillion JS混淆解密+API-RCE+OverlayFS权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/02/f52cc05bad4b6c792395ee1e121a59-400x280-c.jpg "[Meachines] [Easy] TwoMillion JS混淆解密+API-RCE+OverlayFS权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.11.221TCP:22,80$ sudo masscan -p1-65535,…
![[Meachines] [Easy] GoodGames SQLI+Flask SSTI+Docker逃逸权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/01/265df1700a0c912e163ebb88101a70-400x280-c.jpg "[Meachines] [Easy] GoodGames SQLI+Flask SSTI+Docker逃逸权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.11.130TCP:80$ sudo masscan -p1-65535,U:1…
续BUUCTF-reverse wp(一)萌新学习,大佬轻喷^_^Java逆向解密class文件,jd-gui打开:result = arr[i] + 64 ^ 0x20; 将输入…
![[Meachines] [Easy] Access FTP匿名登录+mdb文件解析+Outlook PST提取+Runas权限提升+DPAPI滥用(M…缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/01/219493f51557cdb50e8e4447242fab-400x280-c.jpg "[Meachines] [Easy] Access FTP匿名登录+mdb文件解析+Outlook PST提取+Runas权限提升+DPAPI滥用(M…缩略图")
Information GatheringIP AddressOpening Ports10.10.10.98TCP:21,23,80$ sudo masscan -p1-6553…