She took down a jar from one of the shelves as she passed; it was labelled `ORANGE MARMALADE', but to her great disappointment it was empty: she did not like to drop the jar for fear of killing somebody, so managed to put it into one of the cupboards as she fell past it. Lewis Carroll "Alice In Wonderland"
|
 |
|
 |
|
|
|
||
|
¿ª·¢ÏîÄ¿ Active port forwarder ÔËÓð²È«Ì×½Ó×ÖÐÒéʵÏÖ°²È«ËíµÀ¡£ÕâÊÇרΪÄÇЩ²»¾ßÓÐÍⲿIPµØÖ·È´ÈÔÏëʵÏÖ»¥ÁªÍø·þÎñµÄÈËÉè¼ÆµÄ¡ Cctt, "Covert Channel Tunneling Tool" - ¹ËÃû˼Ò壬ÕâÊÇÒ»ÖÖÒþ²ØͨµÀ¹¤¾ß¡£ËûÌṩ¼¸ÖÖ¿ÉÐз½·¨À´ÊµÏÖÔÊÐíÔÚÒѱ»ÍøÂç·ÃÎÊ¿ØÖÆϵͳÊÚȨµÄÊý¾ÝÁ÷ÉÏ´´½¨²¢½¨Á¢ÈÎÒâÊý¾ÝÁ÷´«ÊäÐŵÀ¡£ Cooking channels - from the paper How to cook a covert channel is a set of two python scripts (CGI and client) allowing to build a communication channel over HTTP cookies. Firepass - Ò»ÖÖËíµÀ¼¼Êõ¹¤¾ß£¬Í¨¹ýËü¿ÉÒԱܿª·À»ðǽµÄ¹æÔòÔ¼Êø£¬½«Êý¾ÝÁ÷·â×°ÔںϷ¨µÄHTTP POSTÇëÇóÖС£ÈκλùÓÚTCP/UDPÐÒéµÄ×ÓÐÒé¿ÉÒÔͨ¹ýËüÀ´´©Ô½HTTP´úÀí·þÎñÆ÷¶ÔHTTPÐÒéµÄÑϸñÉó²é¡£µ½Ä¿Ç°ÎªÖ¹£¬¿Í»§¶ËºÍ·þÎñÆ÷¶Ë½öÓÃPerlÓïÑÔ±àд¡£·þÎñÆ÷¶Ë×÷Ϊһ¸öCGI½Å±¾ÔËÐÐÔÚWEB·þÎñÆ÷ÉÏ¡£ g00gle CrewBots - from the paper g00gle CrewBots is a set of two POC python scripts allowing set up communication channels over the g00gle. MsnShell - Ò»ÖÖÒþ²ØͨµÀ¹¤¾ß£¬ÍâÍøµÄ¼ÆËã»ú¿ÉÒԱܿª·À»ðǽµÄÑϸñÊý¾ÝÉó²é£¬Ô¶³Ì¿ØÖÆһ̨ÄÚÍø¼ÆËã»ú¡£Ëü°ÑShellÃüÁî/ÏìÓ¦Òþ±ÎµØ·â×°ÔÚMSNÐÒéÖд«ËͳöÈ¥¡£±ØҪʱ»¹¿ÉÒÔ½«MSNÐÒé°ü·â×°ÔÚHTTPÐÒéÖд«ËͳöÈ¥¡£ËüÎÞÐè°²×°¿Í»§¶Ë£¬Ö»ÓÉÒ»¸ö¿ÉÖ´ÐгÌÐò×é³É·þÎñ¶Ë¡£ Wsh, "Web Shell" - Ô¶³Ì¿ØÖÆUNIX/WIN SHELL£¬Ëü»ùÓÚHTTP/HTTPSÐÒ飬´ËÈí¼þ°üº¬Á½¸ö·Ö±ð¶ÔÓ¦Æä¿Í»§¶Ë/·þÎñÆ÷¶ËµÄPERL½Å±¾ºÍÒ»¸ö·þÎñ¶ËCÓïÑÔ³ÌÐò¡£¿Í»§¶Ë½Å±¾Óë¿ØÖÆ̨ÖÕ¶ËÓ÷¨ÏàËÆ¡£·þÎñÆ÷¶ËÒÔÒ»¸öCGI½Å±¾µÄÐÎʽ³öÏÖÔÚÄ¿±ê£¨ÊÜ¿Ø£©Ö÷»úÉÏ¡£ ËíµÀ/Òþ²ØͨµÀ̽²â£º Cctde - ÕâÊÇ¡°»ÒÉ«µÄÊÀ½ç¡±Ð¡×éµÄµÚÒ»¸öÒþ²ØͨµÀ̽²âÖ´ÐгÌÐò¡£´Ë³ÌÐòÊÇ´ËÇ°µÄһƪÃûΪ¡°»ùÓÚHTTPÐÒéµÄÒþ²ØͨµÀ/ËíµÀµÄ̽²â¼¼Êõ£ºGWÖ´ÐÐÔÀíÉè¼Æ¡±Ä¿Ç°£¬Ëü±»Éè¼ÆΪһ¸öSnortµÄºó¶Ë·ÖÎöÊØ»¤½ø³Ì¡£Snort - Ò»ÖÖÍøÂçÈëÇÖ̽²âϵͳ¹¤¾ß£¬Äܹ»ÌṩʵʱµÄ´«Êä·ÖÎöÒÔ¼°Êý¾Ý°ü¼Í¼»úÖÆ¡£Ëü»¹ÌṩÐÒé·ÖÎöÀ´Âú×ã²éÕÒ/Æ¥Å䣬Ëü±»ÓÃÓÚ̽²â´óÁ¿µÄ¹¥»÷/̽²â¡£ NACS bypassing (Proof Of Concept) Skeeve is a POC tool you can use to simply create an ICMP tunnel between two computers, which may be located in different networks and separated by a firewall. Skeeve utilizes ICMP packets and IP address spoofing technology to create a data channel in order to redirect TCP connections inside this channel. HttPostNG is a funny poc to convert a text file into one or several png images and send them to a remote CGI in HTTP POST requests so that the network based "detector" has to figure if all POST images it monitors are legitimate or suspicious. Trt-scapy is another implementation for the 0trace tool based on scapy. ÆäËûÔÓÏ etc/passwd - ´ÓÊÕ¼¯googleÉϵij£ÓöñÒâÎļþÃû¹Ø¼ü×ÖÁÐ±í¡£ µ±Ç°ÏîÄ¿£º
ÈôÒªÁ˽â¸ü¶à£¬Çë·ÃÎÊ: |
|
|
|
||
|
||
|
||
|
GNU General Public License GNU Free Documentation License |
IRC://irc.0x557.org:3331/gray-world.net CHANGELOG, MIRRORS, LEGAL NOTICE 29/08/2008 [03:13:57] GMT+03:00 / Unique IPs today: 3666 / Hits: 50686 |