Home | 簡體中文 | 繁體中文 | 雜文 | 打賞(Donations) | ITEYE 博客 | OSChina 博客 | Facebook | Linkedin | 知乎專欄 | Search | Email

部分 X. Security

目錄

137. Authentication
137.1. /etc/login.defs
137.2. PAM 插件認證
137.2.1. pam_tally2.so
137.2.2. pam_listfile.so
137.2.3. pam_access.so
137.2.4. pam_wheel.so
137.3. Network Authentication
137.3.1. Network Information Service (NIS)
137.3.1.1. 安裝NIS伺服器
137.3.1.2. Slave NIS Server
137.3.1.3. 客戶機軟件安裝
137.3.1.4. Authentication Configuration
137.3.1.5. application example
137.3.1.6. Mount /home volume from NFS
137.3.2. OpenLDAP
137.3.2.1. Server
137.3.2.2. Client
137.3.2.3. User and Group Management
137.3.3. Kerberos
137.3.3.1. Kerberos 安裝
137.3.3.2. Kerberos Server
137.3.3.3. Kerberos Client
137.3.3.4. Kerberos Management
137.3.3.5. OpenSSH Authentications
137.3.4. FreeRADIUS (Remote Authentication Dial In User Service)
137.3.4.1. 安裝 FreeRADIUS
137.3.4.2. ldap
137.3.4.3. mysql
137.3.4.4. WAP2 Enterprise
137.3.5. SASL (Simple Authentication and Security Layer)
137.3.6. GSSAPI (Generic Security Services Application Program Interface)
138. Sniffer
138.1. nmap - Network exploration tool and security / port scanner
138.1.1. 連接埠掃瞄
138.1.2. HOST DISCOVERY
138.1.2.1. -sP: Ping Scan - go no further than determining if host is online
138.1.3. SCAN TECHNIQUES
138.1.3.1. -sU: UDP Scan 掃瞄
138.1.3.2. -b <FTP relay host>: FTP bounce scan
138.1.4. PORT SPECIFICATION AND SCAN ORDER
138.1.4.1. -p <port ranges>: Only scan specified ports
138.1.5. SCRIPT SCAN
138.1.5.1. ftp-anon
138.1.5.2. mysql-info
138.1.5.3. http
138.1.5.4. snmp
138.1.5.5. SSHv1
138.1.5.6. --script-updatedb 更新腳本
138.1.6. OS DETECTION
138.1.6.1. -O: Enable OS detection 操作系統探測
138.1.7. OUTPUT
138.1.7.1. --open: Only show open (or possibly open) ports 操作系統探測
138.1.8. MISC
138.1.8.1. -6: Enable IPv6 scanning
138.1.8.2. -A: Enables OS detection and Version detection, Script scanning and Traceroute
138.1.9. Nmap Scripting Engine (NSE)
138.2. tcpdump - A powerful tool for network monitoring and data acquisition
138.2.1. 監控網絡適配器介面
138.2.2. 監控主機
138.2.3. 監控TCP連接埠
138.2.4. 監控協議
138.2.5. 輸出到檔案
138.2.6. src / dst
138.2.7. 保存結果
138.2.8. Cisco Discovery Protocol (CDP)
138.2.9. Flags
138.2.10. 案例
138.2.10.1. 監控80連接埠與icmp,arp
138.2.10.2. monitor mysql tcp package
138.2.10.3. HTTP 包
138.2.10.4. 顯示SYN、FIN和ACK-only包
138.2.10.5. 嗅探 Oracle 錯誤
138.2.10.6. smtp
138.3. cdpr - Cisco Discovery Protocol Reporter
138.4. ncat - Concatenate and redirect sockets
138.4.1. TCP 數據傳輸
138.4.2. UDP 數據傳輸
138.4.3. 始終保持伺服器開啟
138.4.4. 傳輸視頻流
138.5. ngrep - Network layer grep tool
138.5.1. 匹配關鍵字
138.5.2. 指定網絡介面
138.6. Unicornscan,Zenmap,nast
138.7. netstat-nat - Show the natted connections on a linux iptable firewall
138.8. Tcpreplay
138.9. Wireshark
139. sqlmap - automatic SQL injection and database takeover tool
139.1. Installation
139.2. 開始入住實驗
139.2.1. 測試腳本
139.2.2. sqlmap.ini
139.3. Request參數
139.3.1. --method, --data
139.3.2. --cookie
139.3.3. --referer
139.3.4. --user-agent
139.3.4.1. -a
139.3.5. --headers
139.3.6. --referer
139.3.7. auth
139.3.7.1. --auth-type
139.3.7.2. --auth-cred
139.3.8. --proxy
139.3.9. --threads
139.3.10. --delay
139.3.11. --timeout
139.4. Injection
139.4.1. --dbms
139.4.2. --prefix
139.4.3. --postfix
139.4.4. --string
139.4.5. --regexp
139.4.6. --excl-str
139.4.7. --excl-reg
139.5. Techniques
139.5.1. --stacked-test
139.5.2. --time-test
139.5.3. --union-test
139.5.4. --union-tech
139.5.5. --union-use
139.6. Enumeration
139.6.1. dbs
139.6.2. --count
139.6.3. --dump/--dump-all
139.6.4. --sql-query
139.6.5. --sql-shell
139.7. Miscellaneous
139.7.1. --update
139.7.2. --save
140. Vulnerability Scanner
140.1. Nessus
140.2. OpenVAS
141. Injection & Penetration
141.1. Backtrack Linux
142. SELinux
142.1. getsebool - get SELinux boolean value
142.2. sestatus - SELinux status tool
142.3. setsebool - set SELinux boolean value
142.4. chcon - change file SELinux security context
142.5. rsync
143. Suricata Engine
144. psad
145. fwknop
146. fwsnort
147. nftables
148. Haka