jjlhlianfangzhizaoportmap
PortMap 时间:2021-04-03 阅读:()
InternetScanningCurrentStateandLessonsLearnedMarkSchloesser-Rapid7Labs@BlackHatUSA-August6th2014MarkSchloesserTwitter@repmovsbSecurityResearcheratRapid7LabsCoredeveloperforCuckooSandboxResearchonbotnets,malwareLotsofsmallersideprojects,dexlabs.
org(Android),honeypots,protocols$idQuickRecapInternetScanningIntro/History/Motivation/Ethics/etcProjectSonarResearch/FindingsAssetdiscoveryexampleusecaseOutlineLargescalescanningInternetwidedata-gatheringInternet-widescanningInternetMappingProject,BellLabs/Lumeta,1998+IPv4Census2003-2006EFFSSLObservatory2014InternetCensus2012(thebotnet)ShodanRIPEAtlas(slightlydifferent)Critical.
IO,2012-2013UniversityofMichiganShadowserverErrataSec(R.
Graham/masscan)Rapid7,ProjectSonarResearch/FindinghistoryTop3UPnPsoftwarestackscontainvulnerabilities/areexploitableMostwidespreadserviceontheInternet,millionsofdevicesaffected,patchrateslowuntiltodayIPMIServerManagementProtocolvulnerabilitiesServerManagementControllersauth-bypassandothervulnsWidespreadmisconfigurationsNTPDDoSamplificationproblemsknownsince2010OpenRecursors,OpenSMTPrelays,ElasticSearchinstances,etcMiningPsandQs,UMich/UCSDWeakkeysusedforSSLcommunicationusername=sapassword=Masterkey2011LicenseCheck=DefneDSN=sms;UID=XXX;PWD=XXXsys;DSN=GeoXXX;UID=XXX;PWD=XXXsys;8383passwordh4ve@gr8d3y--daemon--port8020--socks5--s_userWindows--s_passwordSystemXXXX/ssh/auth=password/user=admin/passwd=admin_p@s$wordhttp://a.
b.
c/manage/retail_login.
php3ms_id=14320101&passwd=7325a.
b.
c.
d:3389--useradministrator--passpassw0rd123SNMP–listprocesses,getcredentialsTelnet:RouterShells10,000+Routersdon'tevenbotherwithpasswordsjiuyuan_bt_nm_ah>jiyougongsi>jjcaisanxiaoxue>jjda>jjdc>jjgd>jjlhlianfangzhizao>jjpzx>jjshhshengangzhizao>jjxjy>jjxy>jjxz>jjyljuda>jkx_sdl>jnszy_2692>joelsmith>jsyh>jt_net>jtic>jx123>jzglkyzz>kashiwa>kbbmetro>kd-ip>mp1700-kslp>mp1700E>mp1762>mp2600e>mp2692>mp2700>msk-cat3>mty-3500-1>multivoice01>mvy-rtr-01>mx-fdc-dmz1>mx-frtsw01>mx-frtsw02>nak2ama-east-ps>nak2ama-north-ps>nak2ama-ps>nak2ama-south-ps>nak2ama-west-ps>naldi>nanchang2621>nanquc3550-02>nanshigaosu_A5>narashino>nayana2>telnet@AYRS-CES2k-1>telnet@AdminVideoSW1>telnet@BBG>telnet@BEL-WIFI-1>telnet@BGLWANSW01>telnet@BGLWANSW02>telnet@BI-RX-1>telnet@BI-Solsi>telnet@BIGION-CORE-1>telnet@BR2-NET1-MLXe>telnet@BRCD-ADX-2>telnet@BSI01>telnet@Backbone_Backup>telnet@BigIronRX-4Router>telnet@BigIronRX-8Router>telnet@BigIronRouter>telnet@Bloco.
A1.
Core>telnet@Bloco.
B.
Core>telnet@Border40G-1>telnet@Brocade_ABA_1>telnet@CHD-BOU-CO-2>telnet@CON-LONFESX4801>telnet@CON-LONFESX4802>S1-DNS-3560-NSGK>3,000+WindowsCEdevicesdropCMDshellsTelnet:WindowsCEShellsWelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonITPPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv4.
20\>WelcometotheWindowsCETelnetServiceonPicoCOM2-SielaffPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv4.
10\>WelcometotheWindowsCETelnetServiceonG4-XRCPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonHMI_PanelPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonG4-XFCPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonPELOADPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonMCGSPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonDb1200PocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonVEUIICEPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonBorneCebus/HorusPocketCMDv6.
00\>3,000+LinuxsystemsdroptorootTelnet:LinuxShellsMontaVista(R)Linux(R)ProfessionalEdition4.
0.
1(0502020)Linux/armv5tejlWelcometelnetroot@~#Localsystemtime:SunMay2004:12:49UTC2012root:#root@(unknown):/#root@routon-h1:/#root@umts_spyder:/#root@vanquish_u:/#root@smi:/#root@dinara_cg:/#root@BCS5200:/#root@edison:/#root@umts_yangtze:/#root@cdma_spyder:/#root@vanquish:/#root@scorpion_mini:/#root@qinara:/#sh-3.
00#Licenseplatereaders,ontheinternet,viaTelnetATZP372applicationAug29200816:07:45P372RAM:128M@128MEPROM:512kFlexcapabilities003fCamerafirmware:4.
34362ANPRenabledfor:USALouisiana.
Installedoptions:00220018*.
.
.
CompactFlash*.
.
.
BasicVESwithnosecurity*.
.
.
USALicenceplaterecognition*PIPSTechnologyAUTOPLATE(tm)licenseplaterecognition*VES-(violationenforcementsystem)Telnet:otherstuffSerialPortServersDevicesthatmakenetwork-disableddevicesintonetwork-enabledones.
Doesn'tsoundlikeagoodidea…Mostcommonaccessconfig(authenticated/encryptedmethodsavailable):Unauthenticatedclear-textTCPmultiplexportsUnauthenticatedTCPpass-throughportsExampleRemoteSerialPortsIPTVHeadendsystem,sometimesleftlogged-inElasticSearch,codeexecutionisafeatureBydefaultallows"dynamicscripting",executingcodeontheserverNotavulnerability,justmisconfigurationwhenservedonapublicIPwithoutfiltering/protectionOfcoursenottheonlyexample,seeMongoDB,andallotherSQLDBswithoutauthordefaultcredentialsFindingissuesandraisingawarenessaboutthemisimmenselyvaluable.
Rapid7LabsstartsProjectSonar(announcedbyHDatDerbycon2013)443/TCP-SSLCertificates80/TCP–HTTPGET/(IPvhost)ReverseDNS(PTRrecords)ForwardDNS(A/AAAA/ANYlookups)OtherSSLcertificatesources,STARTTLS,etcSeveralUDPprobesUPnP,IPMI,NTP,NetBios,MDNS,MSSQL,Portmap,SIP,etcSonar–Dataoverview443/TCP-SSLCertificates–weekly~40Mopenports,~25MSSLcerts,~55GBin100kdevicesexposedSomefalloutfrompreviousSupermicro/IPMI/BMCpublications(stillgivingawayroot…)Otherrecentfindings–indisclosureprocessUsescanningdatatobuildlookupdatabasesforIPsandnamesStartwithanarrayofdomainnamesandCIDRsandgenerateareportofassociatedassets/relevantdataQuickLivedemoforRapid7ExampleUse-CaseAssetDiscoveryMakedataavailabletotheSecuritycommunityCollaborationwithUniversityofMichiganRawScandatapublishedathttp://scans.
io/Historicalupload(critical.
io,Michigandata)Almost-real-timeuploadofrawscanoutputCollaborationishighlyimportanthttp://scans.
io/TheInternetisbroken.
Widespreadbugs,vulnerabilities,misconfigurationsWeakcredentialsLostandforgottendevices,embeddedhardwarepilingupwithoutupdatepossibilitiesWe'renotimprovingtheoverall"stateofsecurity"Can'tstressenoughtheimportanceofawarenessandvisibilityInternetscanningisapowerfultoolthatcandoalotofgoodforthecommunityIdentify/quantifyvulnerabilities,buildawarenessbeforetheyaremisusedMeasureimprovementscontinuouslyCollaborationisessentialfordatacollectionandanalysisMovingforwardZMapathttp://zmap.
io/ZMapBestPracticeshttps://zmap.
io/documentation.
html#bestpracticesJ.
AlexHaldermanon"FastInternet-wideScanninganditsSecurityApplications"at30C3(Germany)HDMoore'skeynote"ScanningDarkly"atDerbycon2013http://sonar.
labs.
rapid7.
com/MakesuretoalsocheckoutThanks!
Rapid7LabsMarkSchloessermark_schloesser@rapid7.
com@repmovsb
org(Android),honeypots,protocols$idQuickRecapInternetScanningIntro/History/Motivation/Ethics/etcProjectSonarResearch/FindingsAssetdiscoveryexampleusecaseOutlineLargescalescanningInternetwidedata-gatheringInternet-widescanningInternetMappingProject,BellLabs/Lumeta,1998+IPv4Census2003-2006EFFSSLObservatory2014InternetCensus2012(thebotnet)ShodanRIPEAtlas(slightlydifferent)Critical.
IO,2012-2013UniversityofMichiganShadowserverErrataSec(R.
Graham/masscan)Rapid7,ProjectSonarResearch/FindinghistoryTop3UPnPsoftwarestackscontainvulnerabilities/areexploitableMostwidespreadserviceontheInternet,millionsofdevicesaffected,patchrateslowuntiltodayIPMIServerManagementProtocolvulnerabilitiesServerManagementControllersauth-bypassandothervulnsWidespreadmisconfigurationsNTPDDoSamplificationproblemsknownsince2010OpenRecursors,OpenSMTPrelays,ElasticSearchinstances,etcMiningPsandQs,UMich/UCSDWeakkeysusedforSSLcommunicationusername=sapassword=Masterkey2011LicenseCheck=DefneDSN=sms;UID=XXX;PWD=XXXsys;DSN=GeoXXX;UID=XXX;PWD=XXXsys;8383passwordh4ve@gr8d3y--daemon--port8020--socks5--s_userWindows--s_passwordSystemXXXX/ssh/auth=password/user=admin/passwd=admin_p@s$wordhttp://a.
b.
c/manage/retail_login.
php3ms_id=14320101&passwd=7325a.
b.
c.
d:3389--useradministrator--passpassw0rd123SNMP–listprocesses,getcredentialsTelnet:RouterShells10,000+Routersdon'tevenbotherwithpasswordsjiuyuan_bt_nm_ah>jiyougongsi>jjcaisanxiaoxue>jjda>jjdc>jjgd>jjlhlianfangzhizao>jjpzx>jjshhshengangzhizao>jjxjy>jjxy>jjxz>jjyljuda>jkx_sdl>jnszy_2692>joelsmith>jsyh>jt_net>jtic>jx123>jzglkyzz>kashiwa>kbbmetro>kd-ip>mp1700-kslp>mp1700E>mp1762>mp2600e>mp2692>mp2700>msk-cat3>mty-3500-1>multivoice01>mvy-rtr-01>mx-fdc-dmz1>mx-frtsw01>mx-frtsw02>nak2ama-east-ps>nak2ama-north-ps>nak2ama-ps>nak2ama-south-ps>nak2ama-west-ps>naldi>nanchang2621>nanquc3550-02>nanshigaosu_A5>narashino>nayana2>telnet@AYRS-CES2k-1>telnet@AdminVideoSW1>telnet@BBG>telnet@BEL-WIFI-1>telnet@BGLWANSW01>telnet@BGLWANSW02>telnet@BI-RX-1>telnet@BI-Solsi>telnet@BIGION-CORE-1>telnet@BR2-NET1-MLXe>telnet@BRCD-ADX-2>telnet@BSI01>telnet@Backbone_Backup>telnet@BigIronRX-4Router>telnet@BigIronRX-8Router>telnet@BigIronRouter>telnet@Bloco.
A1.
Core>telnet@Bloco.
B.
Core>telnet@Border40G-1>telnet@Brocade_ABA_1>telnet@CHD-BOU-CO-2>telnet@CON-LONFESX4801>telnet@CON-LONFESX4802>S1-DNS-3560-NSGK>3,000+WindowsCEdevicesdropCMDshellsTelnet:WindowsCEShellsWelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonITPPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv4.
20\>WelcometotheWindowsCETelnetServiceonPicoCOM2-SielaffPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonWindowsCEPocketCMDv4.
10\>WelcometotheWindowsCETelnetServiceonG4-XRCPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonHMI_PanelPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonG4-XFCPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonPELOADPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonMCGSPocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonDb1200PocketCMDv5.
0\>WelcometotheWindowsCETelnetServiceonVEUIICEPocketCMDv6.
00\>WelcometotheWindowsCETelnetServiceonBorneCebus/HorusPocketCMDv6.
00\>3,000+LinuxsystemsdroptorootTelnet:LinuxShellsMontaVista(R)Linux(R)ProfessionalEdition4.
0.
1(0502020)Linux/armv5tejlWelcometelnetroot@~#Localsystemtime:SunMay2004:12:49UTC2012root:#root@(unknown):/#root@routon-h1:/#root@umts_spyder:/#root@vanquish_u:/#root@smi:/#root@dinara_cg:/#root@BCS5200:/#root@edison:/#root@umts_yangtze:/#root@cdma_spyder:/#root@vanquish:/#root@scorpion_mini:/#root@qinara:/#sh-3.
00#Licenseplatereaders,ontheinternet,viaTelnetATZP372applicationAug29200816:07:45P372RAM:128M@128MEPROM:512kFlexcapabilities003fCamerafirmware:4.
34362ANPRenabledfor:USALouisiana.
Installedoptions:00220018*.
.
.
CompactFlash*.
.
.
BasicVESwithnosecurity*.
.
.
USALicenceplaterecognition*PIPSTechnologyAUTOPLATE(tm)licenseplaterecognition*VES-(violationenforcementsystem)Telnet:otherstuffSerialPortServersDevicesthatmakenetwork-disableddevicesintonetwork-enabledones.
Doesn'tsoundlikeagoodidea…Mostcommonaccessconfig(authenticated/encryptedmethodsavailable):Unauthenticatedclear-textTCPmultiplexportsUnauthenticatedTCPpass-throughportsExampleRemoteSerialPortsIPTVHeadendsystem,sometimesleftlogged-inElasticSearch,codeexecutionisafeatureBydefaultallows"dynamicscripting",executingcodeontheserverNotavulnerability,justmisconfigurationwhenservedonapublicIPwithoutfiltering/protectionOfcoursenottheonlyexample,seeMongoDB,andallotherSQLDBswithoutauthordefaultcredentialsFindingissuesandraisingawarenessaboutthemisimmenselyvaluable.
Rapid7LabsstartsProjectSonar(announcedbyHDatDerbycon2013)443/TCP-SSLCertificates80/TCP–HTTPGET/(IPvhost)ReverseDNS(PTRrecords)ForwardDNS(A/AAAA/ANYlookups)OtherSSLcertificatesources,STARTTLS,etcSeveralUDPprobesUPnP,IPMI,NTP,NetBios,MDNS,MSSQL,Portmap,SIP,etcSonar–Dataoverview443/TCP-SSLCertificates–weekly~40Mopenports,~25MSSLcerts,~55GBin100kdevicesexposedSomefalloutfrompreviousSupermicro/IPMI/BMCpublications(stillgivingawayroot…)Otherrecentfindings–indisclosureprocessUsescanningdatatobuildlookupdatabasesforIPsandnamesStartwithanarrayofdomainnamesandCIDRsandgenerateareportofassociatedassets/relevantdataQuickLivedemoforRapid7ExampleUse-CaseAssetDiscoveryMakedataavailabletotheSecuritycommunityCollaborationwithUniversityofMichiganRawScandatapublishedathttp://scans.
io/Historicalupload(critical.
io,Michigandata)Almost-real-timeuploadofrawscanoutputCollaborationishighlyimportanthttp://scans.
io/TheInternetisbroken.
Widespreadbugs,vulnerabilities,misconfigurationsWeakcredentialsLostandforgottendevices,embeddedhardwarepilingupwithoutupdatepossibilitiesWe'renotimprovingtheoverall"stateofsecurity"Can'tstressenoughtheimportanceofawarenessandvisibilityInternetscanningisapowerfultoolthatcandoalotofgoodforthecommunityIdentify/quantifyvulnerabilities,buildawarenessbeforetheyaremisusedMeasureimprovementscontinuouslyCollaborationisessentialfordatacollectionandanalysisMovingforwardZMapathttp://zmap.
io/ZMapBestPracticeshttps://zmap.
io/documentation.
html#bestpracticesJ.
AlexHaldermanon"FastInternet-wideScanninganditsSecurityApplications"at30C3(Germany)HDMoore'skeynote"ScanningDarkly"atDerbycon2013http://sonar.
labs.
rapid7.
com/MakesuretoalsocheckoutThanks!
Rapid7LabsMarkSchloessermark_schloesser@rapid7.
com@repmovsb
- jjlhlianfangzhizaoportmap相关文档
- 方程式portmap
- distributionsportmap
- Noteportmap
- 模拟portmap
- PHPportmap
- factorportmap
香港2GB内存DIYVM2核(¥50月)香港沙田CN2云服务器
DiyVM 香港沙田机房,也是采用的CN2优化线路,目前也有入手且在使用中,我个人感觉如果中文业务需要用到的话虽然日本机房也是CN2,但是线路的稳定性不如香港机房,所以我们在这篇文章中亲测看看香港机房,然后对比之前看到的日本机房。香港机房的配置信息。CPU内存 硬盘带宽IP价格购买地址2核2G50G2M1¥50/月选择方案4核4G60G3M1¥100/月选择方案4核8G70G3M4¥200/月选择...
Gcore(gcorelabs)俄罗斯海参崴VPS简单测试
有一段时间没有分享Gcore(gcorelabs)的信息了,这是一家成立于2011年的国外主机商,总部位于卢森堡,主要提供VPS主机和独立服务器租用等,数据中心包括俄罗斯、美国、日本、韩国、新加坡、荷兰、中国(香港)等多个国家和地区的十几个机房,商家针对不同系列的产品分为不同管理系统,比如VPS(Hosting)、Cloud等都是独立的用户中心体系,部落分享的主要是商家的Hosting(Virtu...
ParkInHost - 俄罗斯VPS主机 抗投诉 55折,月付2.75欧元起
ParkInHost主机商是首次介绍到的主机商,这个商家是2013年的印度主机商,隶属于印度DiggDigital公司,主营业务有俄罗斯、荷兰、德国等机房的抗投诉虚拟主机、VPS主机和独立服务器。也看到商家的数据中心还有中国香港和美国、法国等,不过香港机房肯定不是直连的。根据曾经对于抗投诉外贸主机的了解,虽然ParkInHost以无视DMCA的抗投诉VPS和抗投诉服务器,但是,我们还是要做好数据备...
PortMap为你推荐
-
2020双十一成绩单2020年12月四级考试什么时候出成绩access数据库Access数据库对象的操作包括哪五种?18comic.fun黑色禁药http://www.lovecomic.cn/attachment/Fid_18/18_4_00d3b0cb502ea74.jpg这幅画名字叫什么?陈嘉垣陈浩民狼吻陈嘉恒是什么时候的事杰景新特杰普特长笛JFL-511SCE是不是有纯银的唇口片??价格怎样??钟神发战旗TV ID:新年快乐丶未央不见是哪个主播同ip域名不同的几个ip怎样和同一个域名对应上m.2828dy.combabady为啥打不开了,大家帮我提供几个看电影的网址抓站工具仿站必备软件有哪些工具?最好好用的仿站工具是那个几个?www.bbb551.com100bbb网站怎样上不去了