Home | 简体中文 | 繁体中文 | 杂文 | 打赏(Donations) | ITEYE 博客 | OSChina 博客 | Facebook | Linkedin | 知乎专栏 | Search | Email

部分 X. Security

目录

139. Authentication
139.1. /etc/login.defs
139.2. PAM 插件认证
139.2.1. pam_tally2.so
139.2.2. pam_listfile.so
139.2.3. pam_access.so
139.2.4. pam_wheel.so
139.3. Network Authentication
139.3.1. Network Information Service (NIS)
139.3.1.1. 安装NIS服务器
139.3.1.2. Slave NIS Server
139.3.1.3. 客户机软件安装
139.3.1.4. Authentication Configuration
139.3.1.5. application example
139.3.1.6. Mount /home volume from NFS
139.3.2. OpenLDAP
139.3.2.1. Server
139.3.2.2. Client
139.3.2.3. User and Group Management
139.3.3. Kerberos
139.3.3.1. Kerberos 安装
139.3.3.2. Kerberos Server
139.3.3.3. Kerberos Client
139.3.3.4. Kerberos Management
139.3.3.5. OpenSSH Authentications
139.3.4. FreeRADIUS (Remote Authentication Dial In User Service)
139.3.4.1. 安装 FreeRADIUS
139.3.4.2. ldap
139.3.4.3. mysql
139.3.4.4. WAP2 Enterprise
139.3.5. SASL (Simple Authentication and Security Layer)
139.3.6. GSSAPI (Generic Security Services Application Program Interface)
140. Sniffer
140.1. nmap - Network exploration tool and security / port scanner
140.1.1. 端口扫描
140.1.2. HOST DISCOVERY
140.1.2.1. -sP: Ping Scan - go no further than determining if host is online
140.1.3. SCAN TECHNIQUES
140.1.3.1. -sU: UDP Scan 扫描
140.1.3.2. -b <FTP relay host>: FTP bounce scan
140.1.4. PORT SPECIFICATION AND SCAN ORDER
140.1.4.1. -p <port ranges>: Only scan specified ports
140.1.5. SCRIPT SCAN
140.1.5.1. ftp-anon
140.1.5.2. mysql-info
140.1.5.3. http
140.1.5.4. snmp
140.1.5.5. SSHv1
140.1.5.6. --script-updatedb 更新脚本
140.1.6. OS DETECTION
140.1.6.1. -O: Enable OS detection 操作系统探测
140.1.7. OUTPUT
140.1.7.1. --open: Only show open (or possibly open) ports 操作系统探测
140.1.8. MISC
140.1.8.1. -6: Enable IPv6 scanning
140.1.8.2. -A: Enables OS detection and Version detection, Script scanning and Traceroute
140.1.9. Nmap Scripting Engine (NSE)
140.2. tcpdump - A powerful tool for network monitoring and data acquisition
140.2.1. 监控网络适配器接口
140.2.2. 监控主机
140.2.3. 监控TCP端口
140.2.4. 监控协议
140.2.5. 输出到文件
140.2.6. src / dst
140.2.7. 保存结果
140.2.8. Cisco Discovery Protocol (CDP)
140.2.9. Flags
140.2.10. 案例
140.2.10.1. 监控80端口与icmp,arp
140.2.10.2. monitor mysql tcp package
140.2.10.3. HTTP 包
140.2.10.4. 显示SYN、FIN和ACK-only包
140.2.10.5. 嗅探 Oracle 错误
140.2.10.6. smtp
140.3. cdpr - Cisco Discovery Protocol Reporter
140.4. ncat - Concatenate and redirect sockets
140.4.1. TCP 数据传输
140.4.2. UDP 数据传输
140.4.3. 始终保持服务器开启
140.4.4. 传输视频流
140.5. ngrep - Network layer grep tool
140.5.1. 匹配关键字
140.5.2. 指定网络接口
140.6. Unicornscan,Zenmap,nast
140.7. netstat-nat - Show the natted connections on a linux iptable firewall
140.8. Tcpreplay
140.9. Wireshark
141. sqlmap - automatic SQL injection and database takeover tool
141.1. Installation
141.2. 开始入住实验
141.2.1. 测试脚本
141.2.2. sqlmap.ini
141.3. Request参数
141.3.1. --method, --data
141.3.2. --cookie
141.3.3. --referer
141.3.4. --user-agent
141.3.4.1. -a
141.3.5. --headers
141.3.6. --referer
141.3.7. auth
141.3.7.1. --auth-type
141.3.7.2. --auth-cred
141.3.8. --proxy
141.3.9. --threads
141.3.10. --delay
141.3.11. --timeout
141.4. Injection
141.4.1. --dbms
141.4.2. --prefix
141.4.3. --postfix
141.4.4. --string
141.4.5. --regexp
141.4.6. --excl-str
141.4.7. --excl-reg
141.5. Techniques
141.5.1. --stacked-test
141.5.2. --time-test
141.5.3. --union-test
141.5.4. --union-tech
141.5.5. --union-use
141.6. Enumeration
141.6.1. dbs
141.6.2. --count
141.6.3. --dump/--dump-all
141.6.4. --sql-query
141.6.5. --sql-shell
141.7. Miscellaneous
141.7.1. --update
141.7.2. --save
142. Vulnerability Scanner
142.1. Nessus
142.2. OpenVAS
143. Injection & Penetration
143.1. Backtrack Linux
144. SELinux
144.1. getsebool - get SELinux boolean value
144.2. sestatus - SELinux status tool
144.3. setsebool - set SELinux boolean value
144.4. chcon - change file SELinux security context
144.5. rsync
145. Suricata Engine
146. psad
147. fwknop
148. fwsnort
149. nftables
150. Haka