{"id":1990,"date":"2024-03-18T03:20:24","date_gmt":"2024-03-17T19:20:24","guid":{"rendered":"http:\/\/www.ccwifi.cc\/blogs\/?p=1990"},"modified":"2024-03-18T03:20:24","modified_gmt":"2024-03-17T19:20:24","slug":"%e5%af%86%e7%a0%81%e7%a0%b4%e8%a7%a3%e5%b7%a5%e5%85%b7medusa4314","status":"publish","type":"post","link":"https:\/\/www.ccwifi.cc\/blogs\/2024\/03\/18\/%e5%af%86%e7%a0%81%e7%a0%b4%e8%a7%a3%e5%b7%a5%e5%85%b7medusa4314\/","title":{"rendered":"\u5bc6\u7801\u7834\u89e3\u5de5\u5177Medusa"},"content":{"rendered":"
\n

\u5728\u7ebfwifi\u8dd1\u5305 \u91d1\u521a\u5305\u8dd1\u5305 cap\u8dd1\u5305 hccapx ewsa\u5728\u7ebf \u5c31\u6765 \u63e1\u624b\u5305\u8dd1\u5305<\/a><\/strong><\/p>\n

\u5404\u4f4d\u597d \u53c8\u89c1\u9762\u4e86 \u6211\u662f\u66f9\u64cd \u4eca\u5929\u7ed9\u5927\u5bb6\u5e26\u6765\u4e00\u7bc7\u65b0\u7684\u6559\u7a0b<\/p>\n

\u5e0c\u671b\u5404\u4f4d\u7ec6\u5fc3\u5b66\u4e60 \u4f4e\u8c03\u7528\u7f51<\/p>\n<\/div>\n

\"hashcat(\u5bc6\u7801\u5de5\u5177)v6.2.5\u514d\u8d39\u5b89\u88c5\u7248\"<\/p>\n

\u4e3a\u4e86\u63d0\u9ad8\u6587\u7ae0\u7684SEO\u6548\u679c\uff0c\u6211\u5c06\u91cd\u65b0\u6784\u5efa\u6587\u7ae0\u7684\u5185\u5bb9\uff0c\u4fdd\u6301\u539f\u6709\u4fe1\u606f\u7684\u57fa\u7840\u4e0a\uff0c\u786e\u4fdd\u5185\u5bb9\u7684\u76f8\u4f3c\u5ea6\u4f4e\u4e8e30%\u3002\u4ee5\u4e0b\u662f\u6211\u5bf9\u539f\u6587\u7684\u91cd\u65b0\u6784\u5efa\uff1a<\/p>\n

HTTP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5HTTP \/ HTTPS\u670d\u52a1\uff0c\u652f\u6301BASIC-AUTH\u3001Windows\u8eab\u4efd\u9a8c\u8bc1\uff08NTLM\uff09\u548c\u6458\u8981\uff08MD5\u548cMD5-sess\uff09\u3002IMAP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5IMAP\u670d\u52a1\u7684\u5e10\u6237\uff0c\u652f\u6301imap\uff08143\uff09\u548cimaps\uff08993\uff09\u3002MSSQL\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5Microsoft MS-SQL\u670d\u52a1\u7684\u5e10\u6237\u3002\u9700\u8981\u6ce8\u610f\u7684\u662f\uff0cMS-SQL Developer Edition\u548c\/\u6216MSDE\u7684\u5e76\u53d1\u5de5\u4f5c\u8d1f\u8f7d\u8c03\u63a7\u5668\u53ef\u80fd\u4f1a\u9650\u5236\u670d\u52a1\u5668\u7684\u5e76\u53d1\u8fde\u63a5\u6570\u3002MySQL\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5MySQL\u670d\u52a1\u7684\u5e10\u6237\uff0c\u8fd8\u652f\u6301\u65e7\u7684MySQL\uff084.1\u4e4b\u524d\uff09\u6563\u5217\u7684\u201c\u54c8\u5e0c\u4f20\u9012\u201d\u529f\u80fd\u3002NetWare NCP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5NetWare NCP\u670d\u52a1\u7684\u5e10\u6237\uff0c\u9700\u8981\u5b89\u88c5ncpfs\u8f6f\u4ef6\u5305\u3002NNTP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5\u7f51\u7edc\u65b0\u95fb\u4f20\u8f93\u534f\u8bae\u7684\u5e10\u6237\u3002PcAnywhere\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5Symantec PcAnywhere\u670d\u52a1\u7684\u5e10\u6237\u3002POP3\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5POP3\u670d\u52a1\u7684\u5e10\u6237\uff0c\u652f\u6301POP3\uff08110 \/ tcp\uff09\u548cPOP3S\uff08995 \/ tcp\uff09\u3002PostgreSQL\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5PostgreSQL\u670d\u52a1\u7684\u5e10\u6237\uff0c\u53ef\u4ee5\u6307\u5b9a\u76ee\u6807\u6570\u636e\u5e93\u540d\u79f0\u3002REXEC\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5REXEC\u670d\u52a1\u7684\u5e10\u6237\u3002RDP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5Microsoft\u8fdc\u7a0b\u684c\u9762\u534f\u8bae\uff08RDP\uff09\/\u7ec8\u7aef\u670d\u52a1\u7684\u5e10\u6237\uff0c\u9700\u8981\u5b89\u88c5FreeRDP\u3002RLOGIN\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5RLOGIN\u670d\u52a1\u7684\u5e10\u6237\u3002RSH\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5RSH\u670d\u52a1\u7684\u5e10\u6237\u3002SMBNT\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5SMBNT\u670d\u52a1\u7684\u5e10\u6237\u3002SMTP-AUTH\u6a21\u5757\u7528\u4e8e\u4f7f\u7528TLS\u8fdb\u884cSMTP\u9a8c\u8bc1\u3002SMTP-VRFY\u6a21\u5757\u7528\u4e8e\u679a\u4e3e\u90ae\u4ef6\u670d\u52a1\u5668\u4e0a\u7684\u6709\u6548\u5e10\u6237\u3002SNMP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5SNMP\u670d\u52a1\u7684\u793e\u533a\u5b57\u7b26\u4e32\u3002SSH\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5SSH\u670d\u52a1\u7684\u5e10\u6237\uff0c\u9700\u8981\u5b89\u88c5libssh2\u5e93\u3002SVN\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5Subversion\uff08SVN\uff09\u670d\u52a1\u7684\u5e10\u6237\uff0c\u9700\u8981\u5b89\u88c5svn_client-1\u5e93\u3002TELNET\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5TELNET\u670d\u52a1\u7684\u5e10\u6237\u3002VMWAUTHD\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5VMware\u8eab\u4efd\u9a8c\u8bc1\u5b88\u62a4\u7a0b\u5e8f\u7684\u5e10\u6237\u3002VNC\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5VNC\u670d\u52a1\u7684\u5e10\u6237\u3002\u5c01\u88c5\u6a21\u5757\u5141\u8bb8\u7528\u6237\u6267\u884c\u4efb\u610f\u811a\u672c\uff0c\u5e76\u5229\u7528Medusa\u7ba1\u7406\u4e3b\u673a\/\u7528\u6237\/\u5bc6\u7801\u3002Web\u8868\u5355\u6a21\u5757\u7528\u4e8e\u5904\u7406\u57fa\u672c\u7684GET \/ POST\u8bf7\u6c42\u7684web\u8868\u5355\u3002<\/p>\n

\"hashcat(\u5bc6\u7801\u5de5\u5177)v6.2.5\u514d\u8d39\u5b89\u88c5\u7248\"<\/p>\n

% medusa -h 192.168.0.20 -U users.txt -p bar -M ncp -m CONTEXT:.OU=administrators.O=foofus\u00b7
\n% medusa -h 192.168.0.20 -u username.OU=administrators.O=foofus -p bar -M ncp<\/p>\n

\"hashcat(\u5bc6\u7801\u5de5\u5177)v6.2.5\u514d\u8d39\u5b89\u88c5\u7248\"<\/p>\n

\u8be5\u6a21\u5757\u652f\u6301POP3\uff08110 \/ tcp\uff09\u548cPOP3S\uff08995 \/ tcp\uff09\u3002\u6b64\u5916\uff0c\u5b83\u8fd8\u652f\u6301POP3 STARTTLS\u6269\u5c55\u3002<\/p>\n

\"hashcat(\u5bc6\u7801\u5de5\u5177)v6.2.5\u514d\u8d39\u5b89\u88c5\u7248\"<\/p>\n

RDP\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5Microsoft\u8fdc\u7a0b\u684c\u9762\u534f\u8bae\uff08RDP\uff09\/\u7ec8\u7aef\u670d\u52a1\u7684\u5e10\u6237\u3002\u9700\u8981\u5b89\u88c5FreeRDP\u3002<\/p>\n

<\/p>\n

Telnet\u6a21\u5757\u7528\u4e8e\u6d4b\u8bd5TELNET\u670d\u52a1\u7684\u5e10\u6237\u3002\u8be5\u6a21\u5757\u652f\u6301telnet\uff0823\uff09\u548ctelnet\uff08992\uff09\u3002<\/p>\n

\u4ee5\u4e0a\u662f\u5bf9\u539f\u6587\u7684\u91cd\u65b0\u6784\u5efa\uff0c\u4ee5\u63d0\u9ad8\u6587\u7ae0\u7684SEO\u6548\u679c\u3002\u8bf7\u6ce8\u610f\uff0c\u6211\u5df2\u7ecf\u4fdd\u7559\u4e86\u5927\u62ec\u53f7\u5185\u7684ID\uff0c\u5e76\u5bf9\u5176\u4ed6\u6587\u672c\u8fdb\u884c\u4e86\u521b\u65b0\u6027\u4fee\u6539\uff0c\u4ee5\u786e\u4fdd\u539f\u521b\u6027\u548c\u4f4e\u76f8\u4f3c\u5ea6\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"

\u5bc6\u7801\u7834\u89e3\u5de5\u5177MedusaHTTP\u6a21\u5757\u4f7f\u7528BASIC-AUTH\uff0c\u96c6\u6210Windows\u8eab\u4efd\u9a8c\u8bc1\uff08NTLM\uff09\u548c\u6458\u8981\uff08MD5\u548cMD5-sess\uff09\uff0c\u5bf9HTTP \/ HTTPS\u670d\u52a1\u8fdb\u884c\u6d4b\u8bd5\u3002<\/p>\n","protected":false},"author":1,"featured_media":1991,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"topic":[],"class_list":["post-1990","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-1"],"_links":{"self":[{"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/posts\/1990","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/comments?post=1990"}],"version-history":[{"count":0,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/posts\/1990\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/media\/1991"}],"wp:attachment":[{"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/media?parent=1990"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/categories?post=1990"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/tags?post=1990"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.ccwifi.cc\/blogs\/wp-json\/wp\/v2\/topic?post=1990"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}