starnightcyber
diff --git a/‎CobaltStrike4.0_related/Cobalt Strike 4.0笔记.pdf
8.45 MB b/‎CobaltStrike4.0_related/Cobalt Strike 4.0笔记.pdf
8.45 MB
diff --git a/‎CobaltStrike4.0_related/CobaltStrike4.0用户手册_中文翻译.pdf
10.2 MB b/‎CobaltStrike4.0_related/CobaltStrike4.0用户手册_中文翻译.pdf
10.2 MB
diff --git a/‎Horde/1.png
354 KB b/‎Horde/1.png
354 KB
diff --git a/‎Horde/2.png
549 KB b/‎Horde/2.png
549 KB
diff --git a/‎Horde/README.md
+19 b/‎Horde/README.md
+19
diff --git a/‎MiniCMS/.DS_Store
6 KB b/‎MiniCMS/.DS_Store
6 KB
diff --git a/‎MiniCMS/1.png
229 KB b/‎MiniCMS/1.png
229 KB
diff --git a/‎MiniCMS/2.png
238 KB b/‎MiniCMS/2.png
238 KB
diff --git a/‎MiniCMS/3.png
217 KB b/‎MiniCMS/3.png
217 KB
diff --git a/‎MiniCMS/4.png
59.8 KB b/‎MiniCMS/4.png
59.8 KB
diff --git a/‎MiniCMS/5.png
102 KB b/‎MiniCMS/5.png
102 KB
diff --git a/‎MiniCMS/6.png
202 KB b/‎MiniCMS/6.png
202 KB
diff --git a/‎README.md
+137 b/‎README.md
+137
diff --git a/‎firewall-info/README.md
+9 b/‎firewall-info/README.md
+9
diff --git a/‎firewall-info/各厂商防火墙.xmind
137 KB b/‎firewall-info/各厂商防火墙.xmind
137 KB
diff --git a/‎firewall-info/防火墙.png
457 KB b/‎firewall-info/防火墙.png
457 KB
diff --git a/‎pics/Error-Msg-CVE-2017-7504-using-JavaDeserH2HC.png
534 KB b/‎pics/Error-Msg-CVE-2017-7504-using-JavaDeserH2HC.png
534 KB
diff --git a/‎tools/htop-2.2.0-3.el7.x86_64.rpm
103 KB b/‎tools/htop-2.2.0-3.el7.x86_64.rpm
103 KB
diff --git a/‎tools/iftop-1.0-0.21.pre4.el7.x86_64.rpm
53.5 KB b/‎tools/iftop-1.0-0.21.pre4.el7.x86_64.rpm
53.5 KB
diff --git a/‎tools/nload-0.7.4-4.el7.x86_64.rpm
70.4 KB b/‎tools/nload-0.7.4-4.el7.x86_64.rpm
70.4 KB
diff --git a/‎基线检查&加固/README.MD
+154 b/‎基线检查&加固/README.MD
+154
@@ -0,0 +1,19 @@
+# Horde
+
+## CVE-2017-16906
+
+### Description
+
+	In Horde Groupware 5.2.19, there is XSS via the URL field in a "Calendar -> New Event" action.
+
+But this vulnerability still exists in Horde Groupware 5.2.22.
+
+Calendar -> New Event -> Set URL field to
+
+	http://localhost/">"><script>alert(/horde groupware 5.2.22 xss/)</script>
+	
+![image](https://raw.githubusercontent.com/starnightcyber/Miscellaneous/master/Horde/1.png)
+
+Click the event we just created, XSS triggered.
+
+![image](https://raw.githubusercontent.com/starnightcyber/Miscellaneous/master/Horde/2.png)
@@ -0,0 +1,137 @@
+# Miscellaneous
+Miscellaneous things
+
+## [小工具](https://github.com/starnightcyber/Miscellaneous/tree/master/tools)
+
+| 名称 | 用途 |
+| - | - |
+| iftop & nload | [Linux流量监控工具iftop & nload](https://www.cnblogs.com/Hi-blog/p/linux-network-flow-iftop-and-nload.html) |
+| htop | [Linux查看CPU和内存情况](https://www.cnblogs.com/Hi-blog/p/How-To-Check-CPU-And-Memory-On-CentOS7-Linux-System.html#autoid-0-3-1) |
+
+## 基线检查
+<details>
+  <summary>2020.5.22 ~ 操作系统基线检查脚本</summary>
+  目前在CentOS 7.6上进行测试，可以自主调整和更改：
+  
+  [baseline_os.sh](https://github.com/starnightcyber/Miscellaneous/blob/master/%E5%9F%BA%E7%BA%BF%E6%A3%80%E6%9F%A5%26%E5%8A%A0%E5%9B%BA/baseline_os.sh)
+
+</details>
+
+<details>
+  <summary>2020.5.13 ~ 基线检查&加固</summary>
+
+  * YDT 2700-2014 电信网和互联网安全防护基线配置要求及检测要求 数据库
+  * YDT 2701-2014 电信网和互联网安全防护基线配置要求及检测要求 操作系统
+  * YDT 2702-2014 电信网和互联网安全防护基线配置要求及检测要求 中间件
+  * YDT 2703-2014 电信网和互联网安全防护基线配置要求及检测要求 web应用系统
+
+</details>
+
+## 搬砖工
+
+
+<details>
+  <summary>2020.7.20 ~ burpsuite_pro_v2020_7 </summary>
+ 
+  burpsuite_pro_v2020_7，破解使用请参考原链：https://segmentfault.com/a/1190000022141253 
+  
+  下载：[Burp_Suite_Pro_v2020.2_Loader_Keygen.zip](https://github.com/starnightcyber/Miscellaneous/releases/download/burpsuite_pro_v2020_7/Burp_Suite_Pro_v2020.2_Loader_Keygen.zip)
+ 
+</details>
+
+<details>
+  <summary>2020.5.26 ~ Web漏扫软件 AppScan 10.0.0 破解版本下载</summary>
+ 
+  Web漏扫软件 AppScan 10.0.0 [破解版本下载](https://mega.nz/file/bZdDVSoS#K0xDXmExFO73Kp2wzexuLDNHSwlWOlJPqJFdmdIge-o)
+ 
+  安装破解步骤：
+* 正常安装完成
+* 用rcl_rational.dll替换安装目录下的对应文件;
+* 在许可证管理中导入AppScanStandard.txt作为许可证;
+  
+  具体步骤：帮助》许可证》切换到IBM许可证》打开AppScan License Manager 》点击许可证配置》添加选中许可证文件AppScanStandard.txt即可。
+ 
+</details>
+
+<details>
+  <summary>2020.4.23 ~ 防火墙账号信息</summary>
+  常用防火墙设备的默认账号信息：
+  
+  [firewall-info](https://github.com/starnightcyber/Miscellaneous/tree/master/firewall-info)
+
+</details>
+
+<details>
+  <summary>2020.4.12 ~ AWVS13破解版</summary>
+  
+  Awvs13破解版 Acunetix Web Vulnerability Scanner 13 cracked
+  
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/awvs13
+  
+  From:
+  https://www.ddosi.com/b238/
+
+破解方式：
+```
+wvsc.exe覆盖到“C:\Program Files (x86)\Acunetix\13.0.200205121\
+license_info.json覆盖到“C:\ProgramData\Acunetix\shared\license”
+```
+  </details>
+
+<details>
+  <summary>2020.3.24 ~ cobaltstrike4.0 原版&破解版</summary>
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/cobaltstrike4.0
+
+  From:
+  https://www.cnblogs.com/ssooking/p/12535998.html?from=timeline
+
+  资料：[破解的cs4.0、cs4.0官方手册翻译和一些笔记](https://github.com/Snowming04/CobaltStrike4.0_related)
+</details>
+
+<details>
+  <summary>2020.1.9 ~ Cobalt Strike 3.13 破解版</summary>
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/Cobalt-Strike-3.13
+
+  From:
+  https://download.csdn.net/download/ws13129/11100785
+
+</details>
+
+<details>
+  <summary>2019.12.23 ~ Seay源代码审计系统2.1</summary>
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/seay2.1
+
+  From: 
+  https://github.com/f1tz/cnseay
+</details>
+
+<details>
+  <summary>2019.12.19 ~ AWVS 10.5破解版</summary>
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/awvs10.5
+
+  From：
+  https://www.52pojie.cn/thread-377625-1-1.html
+
+  参考：[AWVS 10.5使用指南](https://www.cnblogs.com/Hi-blog/p/AWVS-User-Guide.html)
+</details>
+
+<details>
+  <summary>2019.12.9 ~  Wireshark-win32-2.9.0-gm.3.exe</summary>
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/Wireshark-win32-2.9.0
+  
+</details>
+
+<details>
+  <summary>2019.10.21 ~ AWVS 12破解版</summary>
+  Release:
+  https://github.com/starnightcyber/Miscellaneous/releases/tag/AWVS12
+  
+  参考：
+  [AWVS12破解版的安装使用](https://www.cnblogs.com/Hi-blog/p/AWVS12.html)
+</details>
@@ -0,0 +1,9 @@
+## 防火墙账号信息
+
+![image](https://github.com/starnightcyber/Miscellaneous/blob/master/firewall-info/%E9%98%B2%E7%81%AB%E5%A2%99.png)
+
+
+
+## 参考
+
+[各厂商防火墙登录IP、初始密码（技术支持）](https://blog.51cto.com/maguangjie/1744660)
@@ -0,0 +1,154 @@
+## 操作系统基线检查脚本
+
+起因是，某厂商对我司卖到客户那边的比较旧的产品做基线检查，发现很多不符合项，需进行整改。拿到了对方的检测报告，于是就有了这个脚本，报告暂不方便直接给出，后续我处理一下再给出来吧。
+
+### 检测项
+
+以在CentOS 7.2上进行测试，检测项如下。（个人感觉涵盖了很多，还是可以增补的）
+
+```
+2 操作系统
+2.1 帐号管理
+2.1.1 检查是否设置除root之外UID为0的用户
+2.1.2 检查是否按用户分配账号
+2.1.3 检查是否删除与设备运行、维护等工作无关的账号
+2.1.4 检查是否设置不同的用户组
+2.2 口令策略
+2.2.1 检查是否设置口令生存周期
+2.2.2 检查是否设置口令更改最小间隔天数
+2.2.3 检查设备密码复杂度策略
+2.2.4 检查是否设置口令过期前警告天数
+2.2.5 检查是否存在空口令账号
+2.2.6 检查密码重复使用次数限制
+2.2.7 检查账户认证失败次数限制
+2.3 认证授权
+2.3.1 检查用户目录缺省访问权限设置
+2.3.2 检查是否设置SSH登录前警告Banner
+2.4 日志审计
+2.4.1 检查是否对登录进行日志记录
+2.4.2 检查是否启用cron行为日志功能
+2.4.3 检查是否配置远程日志功能
+2.4.4 检查是否配置su命令使用情况记录
+2.4.5 检查日志文件权限设置
+2.4.6 检查安全事件日志配置
+2.5 文件权限
+2.5.1 检查FTP用户上传的文件所具有的权限
+2.5.2 检查重要目录或文件权限设置
+2.6 网络通信
+2.6.1 检查是否禁止root用户远程登录
+2.6.2 检查使用IP协议远程维护的设备是否配置SSH协议，禁用Telnet协议
+2.6.3 检查是否修改SNMP默认团体字
+2.6.4 检查是否禁止root用户登录FTP
+2.6.5 检查是否使用PAM认证模块禁止wheel组之外的用户su为root	
+2.7 其他配置
+2.7.1 检查是否禁止匿名用户登录FTP	
+2.7.2 检查是否删除了潜在危险文件
+2.7.3 检查是否设置命令行界面超时退出
+2.7.4 检查系统是否禁用Ctrl+Alt+Delete组合键
+2.7.5 检查root用户的path环境变量
+2.7.6 检查历史命令设置
+2.7.7 检查是否设置SSH成功登录后Banner
+2.7.8 检查是否限制FTP用户登录后能访问的目录
+2.7.9 检查是否关闭数据包转发功能
+2.7.10 检查别名文件/etc/aliase
+2.7.11 检查是否使用NTP（网络时间协议）保持时间同步
+2.7.12 检查是否限制远程登录IP范围
+2.7.13 检查NFS（网络文件系统）服务配置
+2.7.14 检查是否配置定时自动屏幕锁定
+2.7.15 检查是否安装chkrootkit进行系统监测
+2.7.16 检查是否安装OS补丁
+2.7.17 检查FTP banner设置
+2.7.18 检查Telnet banner设置
+2.7.19 检查系统内核参数配置
+2.7.20 检查系统openssh安全配置
+2.7.21 检查系统coredump设置
+2.7.22 检查是否关闭不必要的服务和端口
+2.7.23 检查磁盘空间占用率
+```
+
+### 颜色标识
+
+* 绿色标识检测通过PASS
+* 红色标识检测失败FAIL
+* 黄色标识需再次手工核验Manual
+* 蓝色标识输出更为详尽的信息
+* 紫色标识检测项
+
+
+### 输出显示
+脚本中，有做文字颜色输出设定，可能会更炫一点。
+```
+# ================ Global function for print result ===================
+# 绿色字体输出
+pass=$(($pass+1))
+print_pass(){
+    echo -e "\033[32m检测结果 ==> PASS \033[0m"
+}
+# 红色字体输出
+fail=$(($fail+1))
+print_fail(){
+  echo -e "\033[31m检测结果 ==> FAIL \033[0m"
+}
+# 黄色字体输出
+print_manual_check(){
+  echo -e "\033[33m请手工检测 ==> Manual \033[0m"
+}
+# 蓝色字体输出
+print_info(){
+  echo -e "\033[34m$1 \033[0m"
+}
+# 紫色字体输出
+print_check_point(){
+  echo ""
+  echo -e "\033[35m[No.$1] $2 \033[0m"
+  echo "------------------------------------------------------------------------"
+}
+print_summary(){
+  print_info "---------------------------- Summary -----------------------------"
+  echo -e "\033[35m全部检测项： $1 \033[0m"
+  echo -e "\033[32m通过检测项： $2 \033[0m"
+  echo -e "\033[31m失败检测项： $3 \033[0m"
+  echo -e "\033[33m手工检测项： $4 \033[0m"
+  print_info "------------------------------------------------------------------"
+}
+```
+
+### Usage
+在脚本检测过程中，也尽可能的输出更多的信息。
+```
+# ./baseline_os.sh             # 指定输出的文件名，默认os_check_result.txt
+...
+...
+... 以上省略几百行
+[No.45] 其他配置-20:检查系统openssh安全配置 
+------------------------------------------------------------------------
+X11Forwarding => no 
+MaxAuthTries => 4 
+IgnoreRhosts => yes 
+HostbasedAuthentication => no 
+PermitEmptyPasswords => no 
+检测结果 ==> PASS 
+
+[No.46] 其他配置-21:检查系统coredump设置 
+------------------------------------------------------------------------
+设置* soft  core、* hard core为0，且注释掉ulimit -S -c 0 > /dev/null 2>&1 
+检测结果 ==> FAIL 
+
+[No.47] 其他配置-22:检查是否关闭不必要的服务和端口 
+------------------------------------------------------------------------
+==>please check the output of the following command:  
+# chkconfig --list 
+请手工检测 ==> Manual 
+---------------------------- Summary ----------------------------- 
+全部检测项： 47 
+通过检测项： 24 
+失败检测项： 15 
+手工检测项： 8 
+------------------------------------------------------------------ 
+
+```
+也有做简单的数据统计，便于了解大致的检测项的符合情况。
+
+![image](https://github.com/starnightcyber/Miscellaneous/blob/master/%E5%9F%BA%E7%BA%BF%E6%A3%80%E6%9F%A5%26%E5%8A%A0%E5%9B%BA/os_output.png)
+
+以上，是操作系统的部分...