A qualified hackers, first of all know to break this site is for information gathering to learn about this site! There are a lot of information gathering way, such as a query by baidu! Look at the site have a log in the background, have the login background, hackers can make network attacks for the administrator account and password, if any can through various ways to access to the administrator account and password, for example through SQL injection XSS injection and so on methods to get, injection would not be in the process of the fine,
Hackers the second step to do is the search for a sub domain name! Because of possible host WAF is demolished, and how the site is not demolished, then can through the sub site to obtain an administrator account and password. Hackers after these, of course, also the one of your internal network IP is easy,
ip

CodePudding user response:

Should be classified, and then introduce the basic process of each type, technology and difficulty, application fields, preventive measures, etc

CodePudding user response:

reference 1/f, the late reply:

should be classified, and then introduce the basic process of each type, the technology and difficulty, application fields, preventive measures such as

Good?? Thank you for your advice

CodePudding user response:

And the corresponding defensive measures, also listed some

CodePudding user response:

reference sh521 reply: 3/f

and the corresponding defensive measures, also listed some

Well, after defense in the post will be out of the
Thank you for your advice