【笔记】Vulmap学习笔记

发表于 更新于 阅读次数:

前言

vulmon/Vulmap学习笔记

Vulmap is an open-source online local vulnerability scanner project. It consists of online local vulnerability scanning programs for Windows and Linux operating systems. These scripts can be used for defensive and offensive purposes. It is possible to make vulnerability assessments using these scripts. Also, they can be used for privilege escalation by pentesters/red teamers.(Github

下载项目

1
2
git clone https://github.com/vulmon/Vulmap.git
cd Vulmap

Windows

1
cd Vulmap-Windows

在受害者系统上执行信息收集程序

  • 利用文件上传漏洞上传信息收集程序vulmap-windows.ps1

  • 切换为PowerShell

1
powershell
  • 执行信息收集程序
1
.\vulmap-windows.ps1
  • 信息收集结束会显示信息收集结果

Linux

1
cd Vulmap-Linux

在受害者系统上执行信息收集程序

  • 利用文件上传漏洞上传信息收集程序vulmap-linux.py

  • 执行信息收集程序

1
python3 vulmap-linux.py
  • 信息收集结束会显示信息收集结果

完成