本文最后更新于 471 天前,其中的信息可能已经有所发展或是发生改变。
:::info
💘渗透全流程:
信息收集 – 漏洞发现 – 漏洞👣利用 – 权限提升 – 隧道搭建 – 内网渗透 – 横向移动 – 后渗透
:::
ZIP 爆破
pip install pyzipper
V1.0
#! /usr/bin/env python ''' ZIP 爆破 ''' from tqdm import tqdm # 进度条 import pyzipper passwordfile = 'password_num6.txt' zip_name = 'test.zip' n_words = len(list(open(passwordfile, 'r'))) with open(passwordfile, 'r') as wordlist: for word in tqdm(wordlist, total=n_words, unit='word'): pwd = word.replace('\n', '') try: with pyzipper.AESZipFile(zip_name, 'r', compression = pyzipper.ZIP_DEFLATED, encryption = pyzipper.WZ_AES) as extracted_zip: extracted_zip.extractall(pwd=str.encode(pwd)) except: continue else: print('[+] password found: %s' % word.strip()) exit(0) print('[-] password not found: please change another wordlist and try again')
简单的 n 位数字密码字典生成:
大多数的压缩包密码还是局限于 6 位数字或者简单的字母 + 数字
with open('password_num6.txt', 'w') as f: i = 0 while i < 1000000: try: f.write(str(i).rjust(6,'0') + '\n') i += 1 except: break
