即入门需要熟练掌握的漏洞,我自己也写了总结,可以从公众号第一篇文章开始翻起。
★★★SQL注入★★★
★关于学习Oracle注入
https://xz.aliyun.com/t/7897
★又双叒叕谈注入
https://xz.aliyun.com/t/5980
★与某WAF斗智斗勇的每一天
https://www.freebuf.com/articles/web/247655.html
★★利用PHP的字符串解析特性Bypass
https://www.freebuf.com/articles/web/213359.html
★★sqlite注入的一点总结
https://xz.aliyun.com/t/8627
★★原理+实战掌握SQL注入
https://xz.aliyun.com/t/6677
★★Mssql数据库命令执行总结
https://xz.aliyun.com/t/7534
★★360webscan bypass
https://h3art3ars.gitee.io/2020/02/17/360webscan-bypass/
★★★MSSQL使用CLR程序集来执行命令
https://xz.aliyun.com/t/6682
★★★WAF绕过之SQL注入(归来)
https://xz.aliyun.com/t/7767
★★★对MYSQL注入相关内容及部分Trick的归类小结
https://xz.aliyun.com/t/7169
★★★XSS★★★
★某证券集团网站一处反射型XSS绕过与利用
https://xz.aliyun.com/t/4010
★★csp绕过姿势
https://xz.aliyun.com/t/7372
★★★XSS Thousand Knocks解题记录
https://xz.aliyun.com/t/4074
★★★文件上传★★★
★★Upload与WAF的那些事
https://xz.aliyun.com/t/8084
★★★从RFC规范看如何绕过waf上传表单 上篇
https://www.anquanke.com/post/id/241265
★★★从RFC规范看如何绕过waf上传表单 下篇
https://www.anquanke.com/post/id/242583
★★★CORS★★★
★★浅析CORS攻击及其挖洞思路
https://xz.aliyun.com/t/7242
★★★CSRF★★★
★★一次渗透测试引发的Json格式下CSRF攻击的探索
https://xz.aliyun.com/t/7911
★★★CRLF★★★
★★初识HTTP响应拆分攻击(CRLF Injection)
https://whoamianony.top/2021/04/20/Web%E5%AE%89%E5%85%A8/HTTP%E5%93%8D%E5%BA%94%E6%8B%86%E5%88%86%E6%94%BB%E5%87%BB%EF%BC%88CRLF%20Injection%EF%BC%89/
★★★XXE★★★
★★通过XXE读取本地文件(HTTP OOB失败后)
https://xz.aliyun.com/t/6913
★★★文件包含★★★
★★浅谈文件包含漏洞
https://xz.aliyun.com/t/7176
★★★逻辑漏洞★★★
★★密码重置的那些事★★
https://xz.aliyun.com/t/8136
★★★SSRF★★★
★gopher协议在SSRF 中的一些利用
https://xz.aliyun.com/t/6993
★★★请求走私★★★
★★★HTTP/2:续篇总是更糟糕
https://www.anquanke.com/post/id/253474
原文始发于微信公众号(珂技知识分享):渗透文章分享(2)——常见漏洞