{"id":420,"date":"2022-07-26T09:24:46","date_gmt":"2022-07-26T09:24:46","guid":{"rendered":"http:\/\/cyberspace.institute\/?p=420"},"modified":"2022-07-26T09:24:46","modified_gmt":"2022-07-26T09:24:46","slug":"web%e5%ae%89%e5%85%a8%e5%ad%a6%e4%b9%a0%e7%ac%94%e8%ae%b0","status":"publish","type":"post","link":"http:\/\/info.engineer\/?p=420","title":{"rendered":"Web\u5b89\u5168\u5b66\u4e60\u7b14\u8bb0"},"content":{"rendered":"\n

\u3010\u76ee\u5f55\u3011<\/p>\n\n\n\n

1\u5e8f\u7ae0<\/p>\n\n\n\n

1.1 Web\u6280\u672f\u6f14\u5316<\/p>\n\n\n\n

1.2\u7f51\u7edc\u653b\u9632\u6280\u672f\u6f14\u5316<\/p>\n\n\n\n

1.3\u7f51\u7edc\u5b89\u5168\u89c2<\/p>\n\n\n\n

1.4\u6cd5\u5f8b\u4e0e\u6cd5\u89c4<\/p>\n\n\n\n

2\u8ba1\u7b97\u673a\u7f51\u7edc\u4e0e\u534f\u8bae<\/p>\n\n\n\n

2.1\u7f51\u7edc\u57fa\u7840<\/p>\n\n\n\n

2.2 UDP\u534f\u8bae<\/p>\n\n\n\n

2.3 TCP\u534f\u8bae<\/p>\n\n\n\n

2.4 DHCP\u534f\u8bae<\/p>\n\n\n\n

2.5\u8def\u7531\u7b97\u6cd5<\/p>\n\n\n\n

2.6\u57df\u540d\u7cfb\u7edf<\/p>\n\n\n\n

2.7 HTTP\u534f\u8bae\u7c07<\/p>\n\n\n\n

2.8\u90ae\u4ef6\u534f\u8bae\u65cf<\/p>\n\n\n\n

2.9 SSL\/TLS<\/p>\n\n\n\n

2.10 IPsec<\/p>\n\n\n\n

2.11 Wi-Fi<\/p>\n\n\n\n

3\u4fe1\u606f\u6536\u96c6<\/p>\n\n\n\n

3.1\u7f51\u7edc\u5165\u53e3\/\u4fe1\u606f<\/p>\n\n\n\n

3.2\u57df\u540d\u4fe1\u606f<\/p>\n\n\n\n

3.3\u7aef\u53e3\u4fe1\u606f<\/p>\n\n\n\n

3.4\u7ad9\u70b9\u4fe1\u606f<\/p>\n\n\n\n

3.5\u641c\u7d22\u5f15\u64ce\u5229\u7528<\/p>\n\n\n\n

3.6\u793e\u4f1a\u5de5\u7a0b\u5b66<\/p>\n\n\n\n

3.7\u53c2\u8003\u94fe\u63a5<\/p>\n\n\n\n

4\u5e38\u89c1\u6f0f\u6d1e\u653b\u9632<\/p>\n\n\n\n

4.1 SQL\u6ce8\u5165<\/p>\n\n\n\n

4.2 XSS<\/p>\n\n\n\n

4.3 CSRF<\/p>\n\n\n\n

4.4 SSRF<\/p>\n\n\n\n

4.5\u547d\u4ee4\u6ce8\u5165<\/p>\n\n\n\n

4.6\u76ee\u5f55\u7a7f\u8d8a<\/p>\n\n\n\n

4.7\u6587\u4ef6\u8bfb\u53d6<\/p>\n\n\n\n

4.8\u6587\u4ef6\u4e0a\u4f20<\/p>\n\n\n\n

4.9\u6587\u4ef6\u5305\u542b<\/p>\n\n\n\n

4.10 XXE<\/p>\n\n\n\n

4.11\u6a21\u7248\u6ce8\u5165<\/p>\n\n\n\n

4.12 Xpath\u6ce8\u5165<\/p>\n\n\n\n

4.13\u903b\u8f91\u6f0f\u6d1e\/\u4e1a\u52a1\u6f0f\u6d1e<\/p>\n\n\n\n

4.14\u914d\u7f6e\u4e0e\u7b56\u7565\u5b89\u5168<\/p>\n\n\n\n

4.15\u4e2d\u95f4\u4ef6<\/p>\n\n\n\n

4.16 Web Cache\u6b3a\u9a97\u653b\u51fb<\/p>\n\n\n\n

4.17 HTTP\u8bf7\u6c42\u8d70\u79c1<\/p>\n\n\n\n

5\u8bed\u8a00\u4e0e\u6846\u67b6<\/p>\n\n\n\n

5.1 PHP<\/p>\n\n\n\n

5.2 Python<\/p>\n\n\n\n

5.3 Java<\/p>\n\n\n\n

5.4 JavaScript<\/p>\n\n\n\n

5.5 Golang<\/p>\n\n\n\n

5.6 Ruby<\/p>\n\n\n\n

5.7 ASP<\/p>\n\n\n\n

5.8 PowerShell<\/p>\n\n\n\n

5.9 Shell<\/p>\n\n\n\n

5.10 CSharp<\/p>\n\n\n\n

6\u5185\u7f51\u6e17\u900f<\/p>\n\n\n\n

6.1 Windows\u5185\u7f51\u6e17\u900f<\/p>\n\n\n\n

6.2 Linux\u5185\u7f51\u6e17\u900f<\/p>\n\n\n\n

6.3\u540e\u95e8\u6280\u672f<\/p>\n\n\n\n

6.4\u7efc\u5408\u6280\u5de7<\/p>\n\n\n\n

6.5\u53c2\u8003\u94fe\u63a5<\/p>\n\n\n\n

7\u4e91\u5b89\u5168<\/p>\n\n\n\n

7.1\u4e91\u53d1\u5c55\u53f2<\/p>\n\n\n\n

7.2\u5bb9\u5668\u6807\u51c6<\/p>\n\n\n\n

7.3 Docker<\/p>\n\n\n\n

7.4 Kubernetes<\/p>\n\n\n\n

7.5\u53c2\u8003\u94fe\u63a5<\/p>\n\n\n\n

8\u9632\u5fa1\u6280\u672f<\/p>\n\n\n\n

8.1\u56e2\u961f\u5efa\u8bbe<\/p>\n\n\n\n

8.2\u7ea2\u84dd\u5bf9\u6297<\/p>\n\n\n\n

8.3\u5b89\u5168\u5f00\u53d1<\/p>\n\n\n\n

8.4\u5b89\u5168\u5efa\u8bbe<\/p>\n\n\n\n

8.5\u5a01\u80c1\u60c5\u62a5<\/p>\n\n\n\n

8.6 ATT&CK<\/p>\n\n\n\n

8.7\u98ce\u9669\u63a7\u5236<\/p>\n\n\n\n

8.8\u9632\u5fa1\u6846\u67b6<\/p>\n\n\n\n

8.9\u52a0\u56fa\u68c0\u67e5<\/p>\n\n\n\n

8.10\u5165\u4fb5\u68c0\u6d4b<\/p>\n\n\n\n

8.11\u96f6\u4fe1\u4efb\u5b89\u5168<\/p>\n\n\n\n

8.12\u871c\u7f50\u6280\u672f<\/p>\n\n\n\n

8.13 RASP<\/p>\n\n\n\n

8.14\u5e94\u6025\u54cd\u5e94<\/p>\n\n\n\n

8.15\u6eaf\u6e90\u5206\u6790<\/p>\n\n\n\n

9\u8ba4\u8bc1\u673a\u5236<\/p>\n\n\n\n

9.1\u591a\u56e0\u5b50\u8ba4\u8bc1<\/p>\n\n\n\n

9.2 SSO<\/p>\n\n\n\n

9.3 JWT<\/p>\n\n\n\n

9.4 OAuth<\/p>\n\n\n\n

9.5 SAML<\/p>\n\n\n\n

9.6 SCRAM<\/p>\n\n\n\n

9.7 Windows<\/p>\n\n\n\n

9.8 Kerberos<\/p>\n\n\n\n

9.9 NTLM\u8eab\u4efd\u9a8c\u8bc1<\/p>\n\n\n\n

10\u5de5\u5177\u4e0e\u8d44\u6e90<\/p>\n\n\n\n

10.1\u63a8\u8350\u8d44\u6e90<\/p>\n\n\n\n

10.2\u76f8\u5173\u8bba\u6587<\/p>\n\n\n\n

10.3\u4fe1\u606f\u6536\u96c6<\/p>\n\n\n\n

10.4\u793e\u4f1a\u5de5\u7a0b\u5b66<\/p>\n\n\n\n

10.5\u6a21\u7cca\u6d4b\u8bd5<\/p>\n\n\n\n

10.6\u6f0f\u6d1e\u5229\u7528\/\u68c0\u6d4b<\/p>\n\n\n\n

10.7\u8fd1\u6e90\u6e17\u900f<\/p>\n\n\n\n

10.8 Web\u6301\u4e45\u5316<\/p>\n\n\n\n

10.9\u6a2a\u5411\u79fb\u52a8<\/p>\n\n\n\n

10.10\u4e91\u5b89\u5168<\/p>\n\n\n\n

10.11\u64cd\u4f5c\u7cfb\u7edf\u6301\u4e45\u5316<\/p>\n\n\n\n

10.12\u5ba1\u8ba1\u5de5\u5177<\/p>\n\n\n\n

10.13\u9632\u5fa1<\/p>\n\n\n\n

10.14\u5b89\u5168\u5f00\u53d1<\/p>\n\n\n\n

10.15\u8fd0\u7ef4<\/p>\n\n\n\n

10.16\u53d6\u8bc1<\/p>\n\n\n\n

10.17\u5176\u4ed6<\/p>\n\n\n\n

11\u624b\u518c\u901f\u67e5<\/p>\n\n\n\n

11.1\u7206\u7834\u5de5\u5177<\/p>\n\n\n\n

11.2\u4e0b\u8f7d\u5de5\u5177<\/p>\n\n\n\n

11.3\u6d41\u91cf\u76f8\u5173<\/p>\n\n\n\n

11.4\u55c5\u63a2\u5de5\u5177<\/p>\n\n\n\n

11.5 SQLMap\u4f7f\u7528<\/p>\n\n\n\n

12\u5176\u4ed6<\/p>\n\n\n\n

12.1\u4ee3\u7801\u5ba1\u8ba1<\/p>\n\n\n\n

12.2 WAF<\/p>\n\n\n\n

12.3\u5e38\u89c1\u7f51\u7edc\u8bbe\u5907<\/p>\n\n\n\n

12.4\u6307\u7eb9<\/p>\n\n\n\n

12.5 Unicode<\/p>\n\n\n\n

12.6 JSON<\/p>\n\n\n\n

12.7\u62d2\u7edd\u670d\u52a1\u653b\u51fb<\/p>\n\n\n\n

12.8\u90ae\u4ef6\u5b89\u5168<\/p>\n\n\n\n

12.9 APT<\/p>\n\n\n\n

12.10\u4f9b\u5e94\u94fe\u5b89\u5168<\/p>\n\n\n\n

12.11\u8fd1\u6e90\u6e17\u900f<\/p>\n\n\n\n

12.12\u5e38\u89c1\u672f\u8bed<\/p>\n","protected":false},"excerpt":{"rendered":"

\u3010\u76ee\u5f55\u3011 1\u5e8f\u7ae0 1.1 Web\u6280\u672f\u6f14\u5316 1.2\u7f51\u7edc\u653b\u9632\u6280\u672f\u6f14\u5316 1.3\u7f51\u7edc\u5b89\u5168\u89c2 1.4\u6cd5\u5f8b\u4e0e\u6cd5\u89c4 2\u8ba1\u7b97\u673a\u7f51\u7edc\u4e0e\u534f\u8bae 2.1\u7f51\u7edc\u57fa\u7840 2.2 UDP\u534f\u8bae 2.3 TCP\u534f\u8bae 2.4 DHCP\u534f\u8bae 2.5\u8def\u7531\u7b97\u6cd5 2.6\u57df\u540d\u7cfb\u7edf 2.7 HTTP\u534f\u8bae\u7c07 2.8\u90ae\u4ef6\u534f\u8bae\u65cf 2.9 SSL\/TLS 2.10 IPsec 2.11 Wi-Fi 3\u4fe1\u606f\u6536\u96c6 3.1\u7f51\u7edc\u5165\u53e3\/\u4fe1\u606f 3.2\u57df\u540d\u4fe1\u606f 3.3\u7aef\u53e3\u4fe1\u606f 3.4\u7ad9\u70b9\u4fe1\u606f 3.5\u641c\u7d22\u5f15\u64ce\u5229\u7528 3.6\u793e\u4f1a\u5de5\u7a0b\u5b66 3.7\u53c2\u8003\u94fe\u63a5 4\u5e38\u89c1\u6f0f\u6d1e\u653b\u9632 4.1 SQL\u6ce8\u5165 4.2 XSS 4.3 CSRF 4.4 SSRF 4.5\u547d\u4ee4\u6ce8\u5165 4.6\u76ee\u5f55\u7a7f\u8d8a 4.7\u6587\u4ef6\u8bfb\u53d6 4.8\u6587\u4ef6\u4e0a\u4f20 4.9\u6587\u4ef6\u5305\u542b 4.10 XXE 4.11\u6a21\u7248\u6ce8\u5165 4.12 Xpath\u6ce8\u5165 4.13\u903b\u8f91\u6f0f\u6d1e\/\u4e1a\u52a1\u6f0f\u6d1e 4.14\u914d\u7f6e\u4e0e\u7b56\u7565\u5b89\u5168 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[33],"class_list":["post-420","post","type-post","status-publish","format-standard","hentry","category-wlaq","tag-33"],"_links":{"self":[{"href":"http:\/\/info.engineer\/index.php?rest_route=\/wp\/v2\/posts\/420","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/info.engineer\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/info.engineer\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/info.engineer\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/info.engineer\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=420"}],"version-history":[{"count":0,"href":"http:\/\/info.engineer\/index.php?rest_route=\/wp\/v2\/posts\/420\/revisions"}],"wp:attachment":[{"href":"http:\/\/info.engineer\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=420"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/info.engineer\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=420"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/info.engineer\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=420"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}