forked from tower111/iot
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
2 changed files
with
25 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,17 @@ | ||
| ## 调试 | ||
|
|
||
| 系统模式: | ||
| ``` | ||
| qemu-system-mips -M malta -kernel vmlinux-3.2.0-4-4kc-malta -hda debian_squeeze_mips_standard.qcow2 -nographic -append "root=/dev/sda1 rw console=tty0 init=/linuxrc ignore_loglevel" -net nic,vlan=0 -net tap,vlan=0,ifname=tap0 -redir tcp:2333::2333 -redir tcp:8080::80 | ||
| ``` | ||
| 用户模式 | ||
| ``` | ||
| qemu -L ./ -E LD_PRELOAD=/hook_mips ./usr/bin/httpd | ||
| ``` | ||
| ``` | ||
| -L 指定命令运行的根目录 | ||
| -E 添加环境变量 | ||
| ``` | ||
| 在system模式下还可以用`mount --bind /proc ./proc`减少很多错误 | ||
|
|
||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| ## 漏洞类型总结 | ||
| ### 信息泄露 | ||
| 1、非登录用户直接可读登录界面以外的界面 | ||
|
|
||
| 2、在url里设置字段可以进入登录界面 | ||
|
|
||
| Dlink Dir850L设置AUTHORIZED_GROUP>0字段即可绕过安全检查 | ||
|
|