52ky 发表于 2022-9-19 09:24:07

渗透终极利器reDuh_GUI

reDuhGUI由来:reDuh最开始是由SensePost在BlackHatUSA2008会议上发布的一个议题中的一部分。它的出现是用于当时Web安全渗透测试常常会面临的一个问题,一起也是Web服务器加固方面一个很主要的部分,那就是Web服务器对外只打开一个80端口。Web服务器的安全防护可所以操作系统的端口定制或者是网管防火前的端口定制。这时渗透测试人员假如想进一步测试内网的话必须先拿下方案服务器并拥有一定的控制权限。reDuhGUI是由诺赛科技从原有的JAVA言语上移植到C++言语的一个WindowsGUI版本。

(Origin of reDuhGUI: reDuh was originally part of a topic released by SensePost at the BlackHatUSA2008 conference. Its appearance was used for a problem that Web security penetration testing often faced at that time, and it was also a very important part of Web server reinforcement, that is, the Web server only opened one port 80 to the outside world. The security protection of the web server can be customized for the port of the operating system or the port before the network management fire prevention. At this time, if the penetration tester wants to further test the intranet, he must first take down the solution server and have certain control rights. reDuhGUI is a WindowsGUI version transplanted from the original JAVA language to the C   language by Norsay Technology.)




页: [1]
查看完整版本: 渗透终极利器reDuh_GUI