Home | 简体中文 | 繁体中文 | 杂文 | 打赏(Donations) | ITEYE 博客 | OSChina 博客 | Facebook | Linkedin | 知乎专栏 | Search | Email

部分 X. Security

目录

137. Authentication
137.1. /etc/login.defs
137.2. PAM 插件认证
137.2.1. pam_tally2.so
137.2.2. pam_listfile.so
137.2.3. pam_access.so
137.2.4. pam_wheel.so
137.3. Network Authentication
137.3.1. Network Information Service (NIS)
137.3.1.1. 安装NIS服务器
137.3.1.2. Slave NIS Server
137.3.1.3. 客户机软件安装
137.3.1.4. Authentication Configuration
137.3.1.5. application example
137.3.1.6. Mount /home volume from NFS
137.3.2. OpenLDAP
137.3.2.1. Server
137.3.2.2. Client
137.3.2.3. User and Group Management
137.3.3. Kerberos
137.3.3.1. Kerberos 安装
137.3.3.2. Kerberos Server
137.3.3.3. Kerberos Client
137.3.3.4. Kerberos Management
137.3.3.5. OpenSSH Authentications
137.3.4. FreeRADIUS (Remote Authentication Dial In User Service)
137.3.4.1. 安装 FreeRADIUS
137.3.4.2. ldap
137.3.4.3. mysql
137.3.4.4. WAP2 Enterprise
137.3.5. SASL (Simple Authentication and Security Layer)
137.3.6. GSSAPI (Generic Security Services Application Program Interface)
138. Sniffer
138.1. nmap - Network exploration tool and security / port scanner
138.1.1. 端口扫描
138.1.2. HOST DISCOVERY
138.1.2.1. -sP: Ping Scan - go no further than determining if host is online
138.1.3. SCAN TECHNIQUES
138.1.3.1. -sU: UDP Scan 扫描
138.1.3.2. -b <FTP relay host>: FTP bounce scan
138.1.4. PORT SPECIFICATION AND SCAN ORDER
138.1.4.1. -p <port ranges>: Only scan specified ports
138.1.5. SCRIPT SCAN
138.1.5.1. ftp-anon
138.1.5.2. mysql-info
138.1.5.3. http
138.1.5.4. snmp
138.1.5.5. SSHv1
138.1.5.6. --script-updatedb 更新脚本
138.1.6. OS DETECTION
138.1.6.1. -O: Enable OS detection 操作系统探测
138.1.7. OUTPUT
138.1.7.1. --open: Only show open (or possibly open) ports 操作系统探测
138.1.8. MISC
138.1.8.1. -6: Enable IPv6 scanning
138.1.8.2. -A: Enables OS detection and Version detection, Script scanning and Traceroute
138.1.9. Nmap Scripting Engine (NSE)
138.2. tcpdump - A powerful tool for network monitoring and data acquisition
138.2.1. 监控网络适配器接口
138.2.2. 监控主机
138.2.3. 监控TCP端口
138.2.4. 监控协议
138.2.5. 输出到文件
138.2.6. src / dst
138.2.7. 保存结果
138.2.8. Cisco Discovery Protocol (CDP)
138.2.9. Flags
138.2.10. 案例
138.2.10.1. 监控80端口与icmp,arp
138.2.10.2. monitor mysql tcp package
138.2.10.3. HTTP 包
138.2.10.4. 显示SYN、FIN和ACK-only包
138.2.10.5. 嗅探 Oracle 错误
138.2.10.6. smtp
138.3. cdpr - Cisco Discovery Protocol Reporter
138.4. ncat - Concatenate and redirect sockets
138.4.1. TCP 数据传输
138.4.2. UDP 数据传输
138.4.3. 始终保持服务器开启
138.4.4. 传输视频流
138.5. ngrep - Network layer grep tool
138.5.1. 匹配关键字
138.5.2. 指定网络接口
138.6. Unicornscan,Zenmap,nast
138.7. netstat-nat - Show the natted connections on a linux iptable firewall
138.8. Tcpreplay
138.9. Wireshark
139. sqlmap - automatic SQL injection and database takeover tool
139.1. Installation
139.2. 开始入住实验
139.2.1. 测试脚本
139.2.2. sqlmap.ini
139.3. Request参数
139.3.1. --method, --data
139.3.2. --cookie
139.3.3. --referer
139.3.4. --user-agent
139.3.4.1. -a
139.3.5. --headers
139.3.6. --referer
139.3.7. auth
139.3.7.1. --auth-type
139.3.7.2. --auth-cred
139.3.8. --proxy
139.3.9. --threads
139.3.10. --delay
139.3.11. --timeout
139.4. Injection
139.4.1. --dbms
139.4.2. --prefix
139.4.3. --postfix
139.4.4. --string
139.4.5. --regexp
139.4.6. --excl-str
139.4.7. --excl-reg
139.5. Techniques
139.5.1. --stacked-test
139.5.2. --time-test
139.5.3. --union-test
139.5.4. --union-tech
139.5.5. --union-use
139.6. Enumeration
139.6.1. dbs
139.6.2. --count
139.6.3. --dump/--dump-all
139.6.4. --sql-query
139.6.5. --sql-shell
139.7. Miscellaneous
139.7.1. --update
139.7.2. --save
140. Vulnerability Scanner
140.1. Nessus
140.2. OpenVAS
141. Injection & Penetration
141.1. Backtrack Linux
142. SELinux
142.1. getsebool - get SELinux boolean value
142.2. sestatus - SELinux status tool
142.3. setsebool - set SELinux boolean value
142.4. chcon - change file SELinux security context
142.5. rsync
143. Suricata Engine
144. psad
145. fwknop
146. fwsnort
147. nftables
148. Haka