【干货】 12个思路漏洞组合渗透思路和详细过程
2023-4-19 20:1:20 Author: 渗透安全团队(查看原文) 阅读量:18 收藏

/etc 目录

目录
解释
/etc/passwdlinux保存用户信息、工作目录文件(可读)
/etc/shadowlinux保存用户信息、密码hash的文件(root可读写)
/etc/apache2/*Apache配置文件(包括WEB目录,服务端口等信息)
/etc/nginx/*Nginx配置文件(包括WEB目录,服务端口等信息)
/etc/apparmor.(d)/*Apparmor配置文件(包括各应用系统调用的黑、白名单)
/etc/(cron.d/*|crontab)定时任务文件
/etc/environment环境变量的配置文件(其一)
/etc/hostname主机名
/etc/hosts主机名查询静态列表(包含指定域名解析IP的成对信息)
/etc/issue系统版本
/etc/mysql/* MYSQL配置文件
/etc/php/* PHP配置文件

Linux 敏感目录(字典)

/apache/apache/conf/httpd.conf

/apache/apache2/conf/httpd.conf

/apache/php/php.ini

/bin/php.ini

/etc/anacrontab

/etc/apache/apache.conf

/etc/apache/httpd.conf

/etc/apache2/apache.conf

/etc/apache2/httpd.conf

/etc/apache2/sites-available/default

/etc/apache2/vhosts.d/00_default_vhost.conf

/etc/at.allow

/etc/at.deny

/etc/cron.allow

/etc/cron.deny

/etc/crontab

/etc/fstab

/etc/host.conf

/etc/httpd/conf.d/httpd.conf

/etc/httpd/conf.d/php.conf

/etc/httpd/conf/httpd.conf

/etc/httpd/htdocs/index.html

/etc/httpd/htdocs/index.php

/etc/httpd/logs/access.log

/etc/httpd/logs/access_log

/etc/httpd/logs/error.log

/etc/httpd/logs/error_log

/etc/httpd/php.ini

/etc/init.d/httpd

/etc/init.d/mysql

/etc/ld.so.conf

/etc/motd

/etc/my.cnf

/etc/mysql/my.cnf

/etc/mysql/my.cnf

/etc/network/interfaces

/etc/networks

/etc/passwd

/etc/php.ini

/etc/php/apache/php.ini

/etc/php/apache2/php.ini

/etc/php/cgi/php.ini

/etc/php/php.ini

/etc/php/php4/php.ini

/etc/php4.4/fcgi/php.ini

/etc/php4/apache/php.ini

/etc/php4/apache2/php.ini

/etc/php4/cgi/php.ini

/etc/php5/apache/php.ini

/etc/php5/apache2/php.ini

/etc/php5/cgi/php.ini

/etc/phpmyadmin/config.inc.php

/etc/resolv.conf

/etc/shadow

/etc/ssh/sshd_config

/etc/ssh/sshd_config

/etc/ssh/ssh_config

/etc/ssh/ssh_config

/etc/ssh/ssh_host_dsa_key

/etc/ssh/ssh_host_dsa_key

/etc/ssh/ssh_host_dsa_key.pub

/etc/ssh/ssh_host_dsa_key.pub

/etc/ssh/ssh_host_key

/etc/ssh/ssh_host_key

/etc/ssh/ssh_host_key.pub

/etc/ssh/ssh_host_key.pub

/etc/ssh/ssh_host_rsa_key

/etc/ssh/ssh_host_rsa_key

/etc/ssh/ssh_host_rsa_key.pub

/etc/ssh/ssh_host_rsa_key.pub

/etc/sysconfig/network

/etc/sysconfig/network

/home/apache/conf/httpd.conf

/home/apache2/conf/httpd.conf

/home/bin/stable/apache/php.ini

/home2/bin/stable/apache/php.ini

/NetServer/bin/stable/apache/php.ini

/opt/www/conf/httpd.conf

/opt/www/htdocs/index.html

/opt/www/htdocs/index.php

/opt/xampp/etc/php.ini

/PHP/php.ini

/php/php.ini

/php4/php.ini

/php5/php.ini

/root/.atftp_history

/root/.bashrc

/root/.bash_history

/root/.mysql_history

/root/.nano_history

/root/.php_history

/root/.profile

/root/.ssh/authorized_keys

/root/.ssh/identity

/root/.ssh/identity.pub

/root/.ssh/id_dsa

/root/.ssh/id_dsa.pub

/root/.ssh/id_rsa

/root/.ssh/id_rsa.pub

/root/anaconda-ks.cfg

/tmp/apache/htdocs/index.html

/tmp/apache/htdocs/index.php

/usr/lib/php.ini

/usr/lib/php/php.ini

/usr/local/apache/conf/httpd.conf

/usr/local/apache/conf/php.ini

/usr/local/apache/htdocs/index.html

/usr/local/apache/htdocs/index.php

/usr/local/apache/logs/access.log

/usr/local/apache/logs/access_log

/usr/local/apache/logs/access_logaccess_log.old

/usr/local/apache/logs/error.log

/usr/local/apache/logs/error_log

/usr/local/apache/logs/error_logerror_log.old

/usr/local/apache2/conf/httpd.conf

/usr/local/apache2/conf/php.ini

/usr/local/apache2/htdocs/index.html

/usr/local/apache2/htdocs/index.php

/usr/local/cpanel/logs

/usr/local/cpanel/logs/access_log

/usr/local/cpanel/logs/error_log

/usr/local/cpanel/logs/license_log

/usr/local/cpanel/logs/login_log

/usr/local/cpanel/logs/stats_log

/usr/local/cpanel/logs/stats_log

/usr/local/etc/php.ini

/usr/local/httpd/conf/httpd.conf

/usr/local/httpd2.2/htdocs/index.html

/usr/local/httpd2.2/htdocs/index.php

/usr/local/lib/php.ini

/usr/local/mysql/bin/mysql

/usr/local/mysql/my.cnf

/usr/local/php/lib/php.ini

/usr/local/php4/lib/php.ini

/usr/local/php4/lib/php.ini

/usr/local/php4/php.ini

/usr/local/php5/etc/php.ini

/usr/local/php5/lib/php.ini

/usr/local/php5/php5.ini

/usr/local/share/examples/php/php.ini

/usr/local/share/examples/php4/php.ini

/usr/local/tomcat5527/bin/version.sh

/usr/local/Zend/etc/php.ini

/usr/share/tomcat6/bin/startup.sh

/usr/tomcat6/bin/startup.sh

/var/apache2/config.inc

/var/httpd/conf/httpd.conf

/var/httpd/conf/php.ini

/var/httpd/conf/php.ini

/var/httpd/htdocs/index.html

/var/httpd/htdocs/index.php

/var/lib/mysql/my.cnf

/var/lib/mysql/mysql/user.MYD

/var/local/www/conf/httpd.conf

/var/local/www/conf/php.ini

/var/log/access.log

/var/log/access_log

/var/log/apache/access.log

/var/log/apache/access_log

/var/log/apache/error.log

/var/log/apache/error_log

/var/log/apache2/access.log

/var/log/apache2/access_log

/var/log/apache2/error.log

/var/log/apache2/error_log

/var/log/error.log

/var/log/error_log

/var/log/mysql.log

/var/log/mysql/mysql-bin.log

/var/log/mysql/mysql-slow.log

/var/log/mysql/mysql.log

/var/log/mysqlderror.log

/var/mail/root

/var/mysql.log

/var/spool/cron/crontabs/root

/var/spool/mail/root

/var/www/conf/httpd.conf

/var/www/htdocs/index.html

/var/www/htdocs/index.php

/var/www/index.html

/var/www/index.php

/var/www/logs/access.log

/var/www/logs/access_log

/var/www/logs/error.log

/var/www/logs/error_log

/web/conf/php.ini

/www/conf/httpd.conf

/www/htdocs/index.html

/www/htdocs/index.php

/www/php/php.ini

/www/php4/php.ini

/www/php5/php.ini

/xampp/apache/bin/php.ini

/xampp/apache/conf/httpd.conf

root/.ssh/authorized_keys

root/.ssh/identity

root/.ssh/identity.pub

root/.ssh/id_dsa

root/.ssh/id_dsa.pub

root/.ssh/id_rsa

root/.ssh/id_rsa.pub


文章来源: http://mp.weixin.qq.com/s?__biz=MzkxNDAyNTY2NA==&mid=2247503277&idx=2&sn=f70326e11592e94abdbce14aad46e701&chksm=c1763002f601b914d14609e0a8db98910f198122036f11bbe148335167d1ac2d9c0dd61fb2d5#rd
如有侵权请联系:admin#unsafe.sh