{"id":1464,"date":"2026-01-29T17:34:47","date_gmt":"2026-01-29T09:34:47","guid":{"rendered":"http:\/\/www.preluna.xyz\/?p=1464"},"modified":"2026-01-29T17:34:48","modified_gmt":"2026-01-29T09:34:48","slug":"%e4%bf%a1%e6%81%af%e6%94%b6%e9%9b%86-%e4%b8%bb%e6%9c%ba%e6%9c%8d%e5%8a%a1%e5%99%a8%e7%ab%af%e5%8f%a3%e6%89%ab%e6%8f%8f","status":"publish","type":"post","link":"http:\/\/www.preluna.xyz\/index.php\/2026\/01\/29\/%e4%bf%a1%e6%81%af%e6%94%b6%e9%9b%86-%e4%b8%bb%e6%9c%ba%e6%9c%8d%e5%8a%a1%e5%99%a8%e7%ab%af%e5%8f%a3%e6%89%ab%e6%8f%8f\/preluna\/text\/","title":{"rendered":"\u4fe1\u606f\u6536\u96c6-\u4e3b\u673a\u670d\u52a1\u5668&\u7aef\u53e3\u626b\u63cf"},"content":{"rendered":"\n

\ud83d\udd0d \u7aef\u53e3\u626b\u63cf\u4e0e\u670d\u52a1\u8bc6\u522b\u6df1\u5ea6\u8865\u5145<\/h2>\n\n\n\n

\u4e00\u3001\u7f51\u7edc\u7aef\u53e3\u670d\u52a1\u5206\u7c7b\u8be6\u89e3<\/h3>\n\n\n\n

1. Web\u670d\u52a1\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u670d\u52a1\/\u5e94\u7528<\/th>\u7528\u9014\u8bf4\u660e<\/th>\u5b89\u5168\u5173\u6ce8\u70b9<\/th><\/tr><\/thead>
80<\/td>TCP<\/td>HTTP<\/td>\u6807\u51c6Web\u670d\u52a1<\/td>SQL\u6ce8\u5165\u3001XSS\u3001\u76ee\u5f55\u904d\u5386<\/td><\/tr>
443<\/td>TCP<\/td>HTTPS<\/td>\u52a0\u5bc6Web\u670d\u52a1<\/td>SSL\/TLS\u914d\u7f6e\u3001\u8bc1\u4e66\u9a8c\u8bc1<\/td><\/tr>
8080<\/td>TCP<\/td>HTTP\u4ee3\u7406\/\u5907\u7528<\/td>\u66ff\u4ee3Web\u7aef\u53e3<\/td>\u5e38\u88ab\u7528\u4e8e\u7ba1\u7406\u540e\u53f0<\/td><\/tr>
8443<\/td>TCP<\/td>HTTPS\u5907\u7528<\/td>\u52a0\u5bc6\u5907\u7528\u7aef\u53e3<\/td>\u5185\u90e8\u7ba1\u7406\u63a5\u53e3<\/td><\/tr>
8000-8010<\/td>TCP<\/td>\u5f00\u53d1\u670d\u52a1\u5668<\/td>Flask\/Django\/Node.js\u5f00\u53d1\u7aef\u53e3<\/td>\u8c03\u8bd5\u6a21\u5f0f\u4fe1\u606f\u6cc4\u9732<\/td><\/tr>
9000<\/td>TCP<\/td>PHP-FPM<\/td>PHP\u8fdb\u7a0b\u7ba1\u7406\u5668<\/td>\u672a\u6388\u6743\u8bbf\u95ee\u3001RCE<\/td><\/tr>
9200\/9300<\/td>TCP<\/td>Elasticsearch<\/td>\u641c\u7d22\u670d\u52a1<\/td>\u672a\u6388\u6743\u8bbf\u95ee\u3001\u6570\u636e\u6cc4\u9732<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

2. \u6570\u636e\u5e93\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u6570\u636e\u5e93\u7c7b\u578b<\/th>\u9ed8\u8ba4\u914d\u7f6e<\/th>\u5e38\u89c1\u6f0f\u6d1e<\/th><\/tr><\/thead>
3306<\/td>TCP<\/td>MySQL\/MariaDB<\/td>\u6839\u7528\u6237\u8ba4\u8bc1<\/td>\u5f31\u53e3\u4ee4\u3001UDF\u63d0\u6743<\/td><\/tr>
5432<\/td>TCP<\/td>PostgreSQL<\/td>\u4fe1\u4efb\u8ba4\u8bc1<\/td>CVE-2019-9193<\/td><\/tr>
1433<\/td>TCP<\/td>MS SQL Server<\/td>Windows\u8ba4\u8bc1<\/td>xp_cmdshell\u6ee5\u7528<\/td><\/tr>
1521<\/td>TCP<\/td>Oracle<\/td>TNS\u76d1\u542c<\/td>TNS Poison\u653b\u51fb<\/td><\/tr>
27017<\/td>TCP<\/td>MongoDB<\/td>\u65e0\u8ba4\u8bc1\u9ed8\u8ba4<\/td>\u672a\u6388\u6743\u8bbf\u95ee<\/td><\/tr>
6379<\/td>TCP<\/td>Redis<\/td>\u65e0\u5bc6\u7801\u9ed8\u8ba4<\/td>\u672a\u6388\u6743\u8bbf\u95ee\u3001\u4e3b\u4ece\u590d\u5236RCE<\/td><\/tr>
5000<\/td>TCP<\/td>HBase<\/td>REST API<\/td>\u4fe1\u606f\u6cc4\u9732<\/td><\/tr>
7001-7002<\/td>TCP<\/td>Oracle WebLogic<\/td>\u63a7\u5236\u53f0<\/td>\u53cd\u5e8f\u5217\u5316\u6f0f\u6d1e<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

3. \u4e2d\u95f4\u4ef6\/\u5e94\u7528\u670d\u52a1\u5668\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u4e2d\u95f4\u4ef6<\/th>\u529f\u80fd<\/th>\u98ce\u9669\u70b9<\/th><\/tr><\/thead>
8080<\/td>TCP<\/td>Tomcat<\/td>Java Web\u5bb9\u5668<\/td>\u7ba1\u7406\u540e\u53f0\u5f31\u53e3\u4ee4<\/td><\/tr>
7001<\/td>TCP<\/td>WebLogic<\/td>Java EE\u670d\u52a1\u5668<\/td>\u53cd\u5e8f\u5217\u5316\u6f0f\u6d1e<\/td><\/tr>
8161<\/td>TCP<\/td>ActiveMQ<\/td>\u6d88\u606f\u961f\u5217<\/td>\u5f31\u53e3\u4ee4\u3001\u6587\u4ef6\u4e0a\u4f20<\/td><\/tr>
5672<\/td>TCP<\/td>RabbitMQ<\/td>\u6d88\u606f\u4ee3\u7406<\/td>\u9ed8\u8ba4\u51ed\u636e<\/td><\/tr>
15672<\/td>TCP<\/td>RabbitMQ\u7ba1\u7406<\/td>Web\u7ba1\u7406\u754c\u9762<\/td>\u672a\u6388\u6743\u8bbf\u95ee<\/td><\/tr>
8161<\/td>TCP<\/td>ActiveMQ<\/td>\u6d88\u606f\u961f\u5217<\/td>\u5f31\u53e3\u4ee4<\/td><\/tr>
61616<\/td>TCP<\/td>ActiveMQ<\/td>OpenWire\u534f\u8bae<\/td>\u53cd\u5e8f\u5217\u5316<\/td><\/tr>
2375\/2376<\/td>TCP<\/td>Docker API<\/td>\u5bb9\u5668\u5f15\u64ce<\/td>\u672a\u6388\u6743\u8bbf\u95ee<\/td><\/tr>
9000<\/td>TCP<\/td>Portainer<\/td>\u5bb9\u5668\u7ba1\u7406<\/td>\u5f31\u53e3\u4ee4<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

4. \u6587\u4ef6\u4e0e\u5b58\u50a8\u670d\u52a1\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u670d\u52a1<\/th>\u7528\u9014<\/th>\u5b89\u5168\u98ce\u9669<\/th><\/tr><\/thead>
21<\/td>TCP<\/td>FTP<\/td>\u6587\u4ef6\u4f20\u8f93<\/td>\u660e\u6587\u4f20\u8f93\u3001\u66b4\u529b\u7834\u89e3<\/td><\/tr>
22<\/td>TCP<\/td>SFTP<\/td>SSH\u6587\u4ef6\u4f20\u8f93<\/td>\u5bc6\u94a5\u6cc4\u9732<\/td><\/tr>
445<\/td>TCP<\/td>SMB\/CIFS<\/td>Windows\u6587\u4ef6\u5171\u4eab<\/td>\u6c38\u6052\u4e4b\u84dd<\/td><\/tr>
2049<\/td>TCP\/UDP<\/td>NFS<\/td>\u7f51\u7edc\u6587\u4ef6\u7cfb\u7edf<\/td>\u672a\u6388\u6743\u6302\u8f7d<\/td><\/tr>
873<\/td>TCP<\/td>Rsync<\/td>\u6587\u4ef6\u540c\u6b65<\/td>\u672a\u6388\u6743\u8bbf\u95ee<\/td><\/tr>
139<\/td>TCP<\/td>NetBIOS<\/td>\u7f51\u7edc\u57fa\u672c\u8f93\u5165\u8f93\u51fa<\/td>\u4fe1\u606f\u679a\u4e3e<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

5. \u90ae\u4ef6\u670d\u52a1\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u670d\u52a1<\/th>\u529f\u80fd<\/th>\u5b89\u5168\u95ee\u9898<\/th><\/tr><\/thead>
25<\/td>TCP<\/td>SMTP<\/td>\u90ae\u4ef6\u53d1\u9001<\/td>\u5f00\u653e\u4e2d\u7ee7\u3001\u5783\u573e\u90ae\u4ef6<\/td><\/tr>
110<\/td>TCP<\/td>POP3<\/td>\u90ae\u4ef6\u63a5\u6536<\/td>\u660e\u6587\u8ba4\u8bc1<\/td><\/tr>
143<\/td>TCP<\/td>IMAP<\/td>\u90ae\u4ef6\u8bbf\u95ee<\/td>\u660e\u6587\u4f20\u8f93<\/td><\/tr>
465<\/td>TCP<\/td>SMTPS<\/td>\u52a0\u5bc6SMTP<\/td>\u8bc1\u4e66\u914d\u7f6e\u9519\u8bef<\/td><\/tr>
993<\/td>TCP<\/td>IMAPS<\/td>\u52a0\u5bc6IMAP<\/td>\u4e2d\u95f4\u4eba\u653b\u51fb<\/td><\/tr>
995<\/td>TCP<\/td>POP3S<\/td>\u52a0\u5bc6POP3<\/td>\u914d\u7f6e\u9519\u8bef<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

6. \u8fdc\u7a0b\u7ba1\u7406\u4e0e\u76d1\u63a7\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u670d\u52a1<\/th>\u7528\u9014<\/th>\u653b\u51fb\u5411\u91cf<\/th><\/tr><\/thead>
22<\/td>TCP<\/td>SSH<\/td>\u5b89\u5168\u5916\u58f3<\/td>\u66b4\u529b\u7834\u89e3\u3001\u5bc6\u94a5\u6cc4\u9732<\/td><\/tr>
23<\/td>TCP<\/td>Telnet<\/td>\u8fdc\u7a0b\u767b\u5f55<\/td>\u660e\u6587\u4f20\u8f93<\/td><\/tr>
3389<\/td>TCP<\/td>RDP<\/td>\u8fdc\u7a0b\u684c\u9762<\/td>BlueKeep\u3001\u66b4\u529b\u7834\u89e3<\/td><\/tr>
5900+<\/td>TCP<\/td>VNC<\/td>\u865a\u62df\u7f51\u7edc\u8ba1\u7b97<\/td>\u5f31\u53e3\u4ee4<\/td><\/tr>
5985\/5986<\/td>TCP<\/td>WinRM<\/td>Windows\u8fdc\u7a0b\u7ba1\u7406<\/td>\u51ed\u8bc1\u7a83\u53d6<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

7. \u7279\u6b8a\u670d\u52a1\u4e0e\u534f\u8bae\u7aef\u53e3<\/h4>\n\n\n\n
\u7aef\u53e3\u53f7<\/th>\u534f\u8bae<\/th>\u670d\u52a1<\/th>\u4f5c\u7528<\/th>\u5b89\u5168\u9690\u60a3<\/th><\/tr><\/thead>
53<\/td>TCP\/UDP<\/td>DNS<\/td>\u57df\u540d\u89e3\u6790<\/td>DNS\u52ab\u6301\u3001DDoS<\/td><\/tr>
161\/162<\/td>UDP<\/td>SNMP<\/td>\u7b80\u5355\u7f51\u7edc\u7ba1\u7406\u534f\u8bae<\/td>\u9ed8\u8ba4\u793e\u533a\u5b57\u7b26\u4e32<\/td><\/tr>
389<\/td>TCP<\/td>LDAP<\/td>\u8f7b\u91cf\u76ee\u5f55\u8bbf\u95ee<\/td>\u4fe1\u606f\u6cc4\u9732<\/td><\/tr>
636<\/td>TCP<\/td>LDAPS<\/td>\u52a0\u5bc6LDAP<\/td>\u8bc1\u4e66\u95ee\u9898<\/td><\/tr>
514<\/td>UDP<\/td>Syslog<\/td>\u7cfb\u7edf\u65e5\u5fd7<\/td>\u65e5\u5fd7\u4f2a\u9020<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

\u4e8c\u3001\u7aef\u53e3\u626b\u63cf\u6280\u672f\u8fdb\u9636<\/h3>\n\n\n\n

1. \u626b\u63cf\u65b9\u6cd5\u5bf9\u6bd4<\/h4>\n\n\n\n
\u626b\u63cf\u7c7b\u578b<\/th>\u547d\u4ee4\u793a\u4f8b<\/th>\u7279\u70b9<\/th>\u9690\u853d\u6027<\/th><\/tr><\/thead>
TCP\u5168\u8fde\u63a5<\/td>nc -zv \u76ee\u6807 \u7aef\u53e3<\/code><\/td>\u6613\u88ab\u65e5\u5fd7\u8bb0\u5f55<\/td>\u4f4e<\/td><\/tr>
SYN\u534a\u5f00<\/td>nmap -sS \u76ee\u6807<\/code><\/td>\u4e0d\u5efa\u7acb\u5b8c\u6574\u8fde\u63a5<\/td>\u4e2d<\/td><\/tr>
FIN\u626b\u63cf<\/td>nmap -sF \u76ee\u6807<\/code><\/td>\u7ed5\u8fc7\u7b80\u5355\u9632\u706b\u5899<\/td>\u4e2d\u9ad8<\/td><\/tr>
NULL\u626b\u63cf<\/td>nmap -sN \u76ee\u6807<\/code><\/td>\u6240\u6709\u6807\u5fd7\u4f4d\u4e3a0<\/td>\u4e2d\u9ad8<\/td><\/tr>
XMAS\u626b\u63cf<\/td>nmap -sX \u76ee\u6807<\/code><\/td>FIN\/URG\/PSH\u7f6e\u4f4d<\/td>\u4e2d\u9ad8<\/td><\/tr>
UDP\u626b\u63cf<\/td>nmap -sU \u76ee\u6807<\/code><\/td>\u626b\u63cfUDP\u670d\u52a1<\/td>\u8017\u65f6\u8f83\u957f<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

2. \u670d\u52a1\u6307\u7eb9\u8bc6\u522b\u547d\u4ee4<\/h4>\n\n\n\n
# Nmap\u670d\u52a1\u7248\u672c\u63a2\u6d4b\nnmap -sV -p 1-65535 \u76ee\u6807IP\n\n# \u6df1\u5ea6\u670d\u52a1\u8bc6\u522b\nnmap -sV --version-intensity 9 -p \u76ee\u6807\u7aef\u53e3 \u76ee\u6807IP\n\n# \u811a\u672c\u626b\u63cf\uff08\u7279\u5b9a\u670d\u52a1\uff09\nnmap --script=banner \u76ee\u6807IP\nnmap --script=mysql-info \u76ee\u6807IP -p 3306\n\n# \u64cd\u4f5c\u7cfb\u7edf\u8bc6\u522b\nnmap -O \u76ee\u6807IP<\/code><\/pre>\n\n\n\n
3. \u534f\u8bae\u63a2\u9488\u6280\u5de7<\/h4>\n\n\n\n
# HTTP\/HTTPS\u670d\u52a1\u8bc6\u522b\ncurl -I http:\/\/\u76ee\u6807:\u7aef\u53e3\nopenssl s_client -connect \u76ee\u6807:443 -tls1_2\n\n# \u6570\u636e\u5e93\u670d\u52a1\u63a2\u9488\nmysql -h \u76ee\u6807IP -P 3306 -u root\nredis-cli -h \u76ee\u6807IP -p 6379 info\n\n# \u81ea\u5b9a\u4e49\u534f\u8bae\u63a2\u9488\necho \"INFO\" | nc \u76ee\u6807IP 6379  # Redis\necho \"HELP\" | nc \u76ee\u6807IP 21    # FTP<\/code><\/pre>\n\n\n\n
\u4e09\u3001\u89d2\u8272\u5b9a\u6027\u5206\u6790\u6846\u67b6<\/h3>\n\n\n\n
1. \u670d\u52a1\u5668\u89d2\u8272\u5224\u65ad\u77e9\u9635<\/h4>\n\n\n\n
\u5f00\u653e\u7aef\u53e3\u7ec4\u5408<\/th>\u53ef\u80fd\u89d2\u8272<\/th>\u9a8c\u8bc1\u65b9\u6cd5<\/th><\/tr><\/thead>
80\/443 + 3306<\/td>Web+\u6570\u636e\u5e93\u670d\u52a1\u5668<\/td>\u68c0\u67e5\u662f\u5426\u5728\u540c\u4e00\u4e3b\u673a<\/td><\/tr>
22 + 80\/443 + 9000<\/td>\u5f00\u53d1\/\u6d4b\u8bd5\u670d\u52a1\u5668<\/td>\u67e5\u770b\u76ee\u5f55\u7ed3\u6784\u3001\u7248\u672c\u4fe1\u606f<\/td><\/tr>
3389 + 445 + 135<\/td>Windows\u57df\u63a7\u5236\u5668<\/td>\u68c0\u67e5AD\u76f8\u5173\u670d\u52a1<\/td><\/tr>
53 + 25 + 110<\/td>\u90ae\u4ef6\/DNS\u670d\u52a1\u5668<\/td>\u68c0\u67e5\u90ae\u4ef6\u961f\u5217\u3001DNS\u89e3\u6790<\/td><\/tr>
9200 + 5601 + 9300<\/td>ELK\u65e5\u5fd7\u670d\u52a1\u5668<\/td>\u68c0\u67e5Kibana\u754c\u9762<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
2. \u670d\u52a1\u5173\u8054\u6027\u5206\u6790<\/h4>\n\n\n\n
Web\u670d\u52a1\u5668\u96c6\u7fa4:\n  - 80\/443 (\u8d1f\u8f7d\u5747\u8861\u5668)\n  - 8080\/8443 (\u5e94\u7528\u670d\u52a1\u5668)\n  - 3306\/5432 (\u6570\u636e\u5e93\uff0c\u901a\u5e38\u4e0d\u5728\u540c\u4e00\u4e3b\u673a)\n\n\u5fae\u670d\u52a1\u67b6\u6784:\n  - 9000-9010 (\u591a\u4e2a\u5fae\u670d\u52a1)\n  - 8761 (\u670d\u52a1\u6ce8\u518c\u4e2d\u5fc3)\n  - 15672 (\u6d88\u606f\u961f\u5217\u7ba1\u7406)\n\n\u5bb9\u5668\u5316\u73af\u5883:\n  - 2375\/2376 (Docker API)\n  - 8080 (Kubernetes Dashboard)\n  - 10250 (Kubelet API)<\/code><\/pre>\n\n\n\n
\u56db\u3001\u5b9e\u6218\u811a\u672c\u793a\u4f8b<\/h3>\n\n\n\n
1. Python\u7aef\u53e3\u626b\u63cf\u5668<\/h4>\n\n\n\n
import socket\nimport concurrent.futures\n\ndef scan_port(ip, port):\n    try:\n        sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)\n        sock.settimeout(1)\n        result = sock.connect_ex((ip, port))\n        sock.close()\n        if result == 0:\n            return port\n    except:\n        pass\n    return None\n\ndef banner_grab(ip, port):\n    try:\n        sock = socket.socket()\n        sock.settimeout(2)\n        sock.connect((ip, port))\n        sock.send(b'HEAD \/ HTTP\/1.0\\r\\n\\r\\n')\n        banner = sock.recv(1024).decode('utf-8', errors='ignore')\n        sock.close()\n        return banner[:100] if banner else \"\"\n    except:\n        return \"\"\n\n# \u591a\u7ebf\u7a0b\u626b\u63cf\u5e38\u7528\u7aef\u53e3\ncommon_ports = [21,22,23,25,53,80,110,111,135,139,143,443,445,993,995,1723,3306,3389,5900,8080]\n\nwith concurrent.futures.ThreadPoolExecutor(max_workers=100) as executor:\n    futures = {executor.submit(scan_port, \"\u76ee\u6807IP\", port): port for port in common_ports}\n    for future in concurrent.futures.as_completed(futures):\n        port = futures[future]\n        result = future.result()\n        if result:\n            banner = banner_grab(\"\u76ee\u6807IP\", port)\n            print(f\"[+] \u7aef\u53e3 {port} \u5f00\u653e - {banner}\")<\/code><\/pre>\n\n\n\n
2. Nmap\u81ea\u52a8\u5316\u811a\u672c<\/h4>\n\n\n\n
#!\/bin\/bash\n# \u81ea\u52a8\u5316\u4fe1\u606f\u6536\u96c6\u811a\u672c\n\nTARGET=$1\nOUTPUT_DIR=\"scan_results_$(date +%Y%m%d_%H%M%S)\"\n\nmkdir -p $OUTPUT_DIR\n\necho \"[*] \u5f00\u59cb\u5bf9 $TARGET \u8fdb\u884c\u7efc\u5408\u626b\u63cf\"\n\n# 1. \u5feb\u901f\u7aef\u53e3\u626b\u63cf\necho \"[1\/6] \u5feb\u901f\u7aef\u53e3\u626b\u63cf...\"\nnmap -T4 -F $TARGET -oN $OUTPUT_DIR\/quick_scan.txt\n\n# 2. \u5168\u7aef\u53e3\u626b\u63cf\necho \"[2\/6] \u5168\u7aef\u53e3\u626b\u63cf...\"\nnmap -T4 -p- $TARGET -oN $OUTPUT_DIR\/full_ports.txt\n\n# 3. \u670d\u52a1\u7248\u672c\u63a2\u6d4b\necho \"[3\/6] \u670d\u52a1\u7248\u672c\u63a2\u6d4b...\"\nopen_ports=$(grep -oP '\\d+\/open' $OUTPUT_DIR\/full_ports.txt | cut -d'\/' -f1 | tr '\\n' ',')\nnmap -T4 -sV -p $open_ports $TARGET -oN $OUTPUT_DIR\/service_versions.txt\n\n# 4. \u6f0f\u6d1e\u811a\u672c\u626b\u63cf\necho \"[4\/6] \u6f0f\u6d1e\u811a\u672c\u626b\u63cf...\"\nnmap -T4 --script=vuln -p $open_ports $TARGET -oN $OUTPUT_DIR\/vuln_scan.txt\n\n# 5. \u64cd\u4f5c\u7cfb\u7edf\u8bc6\u522b\necho \"[5\/6] \u64cd\u4f5c\u7cfb\u7edf\u8bc6\u522b...\"\nnmap -T4 -O $TARGET -oN $OUTPUT_DIR\/os_detection.txt\n\n# 6. \u8f93\u51fa\u603b\u7ed3\u62a5\u544a\necho \"[6\/6] \u751f\u6210\u62a5\u544a...\"\ncat $OUTPUT_DIR\/*.txt > $OUTPUT_DIR\/full_report.txt\necho \"\u626b\u63cf\u5b8c\u6210\uff01\u7ed3\u679c\u4fdd\u5b58\u5728 $OUTPUT_DIR\/\"<\/code><\/pre>\n\n\n\n
\u4e94\u3001\u9632\u5fa1\u4e0e\u5bf9\u6297\u7b56\u7565<\/h3>\n\n\n\n
1. \u7aef\u53e3\u9690\u85cf\u6280\u672f<\/h4>\n\n\n\n
    \n
  • \u7aef\u53e3\u6572\u95e8<\/strong> (Port Knocking)\uff1a\u53ea\u6709\u7279\u5b9a\u5e8f\u5217\u624d\u5f00\u653e\u7aef\u53e3<\/li>\n\n\n\n
  • \u5355\u5305\u6388\u6743<\/strong> (SPA)\uff1a\u7c7b\u4f3c\u7aef\u53e3\u6572\u95e8\u7684\u52a0\u5bc6\u7248\u672c<\/li>\n\n\n\n
  • \u975e\u6807\u51c6\u7aef\u53e3<\/strong>\uff1a\u5c06\u670d\u52a1\u90e8\u7f72\u5728\u975e\u5e38\u89c4\u7aef\u53e3<\/li>\n<\/ul>\n\n\n\n
    2. \u670d\u52a1\u4f2a\u88c5\u6280\u672f<\/h4>\n\n\n\n
    # Nginx \u4f2a\u88c5\u793a\u4f8b\nserver {\n    listen 80;\n    server_name _;\n\n    # \u5bf9\u626b\u63cf\u5668\u8fd4\u56de\u5047\u9875\u9762\n    if ($http_user_agent ~* (nmap|nikto|sqlmap)) {\n        return 444;\n    }\n\n    # \u9ed8\u8ba4\u8fd4\u56de\u5047\u670d\u52a1\u4fe1\u606f\n    location \/ {\n        add_header Server \"Microsoft-IIS\/8.5\";\n        return 200 \"Service Unavailable\";\n    }\n}<\/code><\/pre>\n\n\n\n
    3. \u76d1\u63a7\u4e0e\u544a\u8b66<\/h4>\n\n\n\n
    IDS\u89c4\u5219\u793a\u4f8b:\n  - \u89c4\u5219: \u68c0\u6d4b\u7aef\u53e3\u626b\u63cf\n  - \u6761\u4ef6: \u540c\u4e00\u6e90IP\u572810\u79d2\u5185\u8bbf\u95ee\u8d85\u8fc720\u4e2a\u4e0d\u540c\u7aef\u53e3\n  - \u52a8\u4f5c: \u89e6\u53d1\u544a\u8b66\u5e76\u4e34\u65f6\u5c01\u7981\n\nSIEM\u914d\u7f6e:\n  - \u65e5\u5fd7\u6e90: \u9632\u706b\u5899\u3001\u7cfb\u7edf\u65e5\u5fd7\u3001Web\u670d\u52a1\u5668\n  - \u544a\u8b66\u9608\u503c: \u975e\u5e38\u89c4\u65f6\u95f4\u6bb5\u7684\u7aef\u53e3\u8bbf\u95ee\n  - \u54cd\u5e94\u6d41\u7a0b: \u81ea\u52a8\u5206\u6790->\u4eba\u5de5\u786e\u8ba4->\u5904\u7f6e<\/code><\/pre>\n\n\n\n
    \n\n\n\n
    <\/p>\n","protected":false},"excerpt":{"rendered":"
    \ud83d\udd0d \u7aef\u53e3\u626b\u63cf\u4e0e\u670d\u52a1\u8bc6\u522b\u6df1\u5ea6\u8865\u5145 \u4e00\u3001\u7f51\u7edc\u7aef\u53e3\u670d\u52a1\u5206\u7c7b\u8be6\u89e3 1. Web\u670d\u52a1\u7aef\u53e3 \u7aef\u53e3\u53f7 \u534f\u8bae \u670d\u52a1\/\u5e94\u7528 \u7528\u9014 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[54],"tags":[],"class_list":["post-1464","post","type-post","status-publish","format-standard","hentry","category-text"],"_links":{"self":[{"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/posts\/1464","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/comments?post=1464"}],"version-history":[{"count":1,"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/posts\/1464\/revisions"}],"predecessor-version":[{"id":1465,"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/posts\/1464\/revisions\/1465"}],"wp:attachment":[{"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/media?parent=1464"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/categories?post=1464"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.preluna.xyz\/index.php\/wp-json\/wp\/v2\/tags?post=1464"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}