搜索

[9285] 2015-08-28_Blackhat专题:WSUS漏洞利用的理论与实践

文档创建者:s7ckTeam
浏览次数:43
最后更新:2025-01-17
2015-08-28_Blackhat专题:WSUS漏洞利用的理论与实践 B l a c k h a t W S U S F r e e B u f   2 0 1 5 - 0 8 - 2 8 P a u l   S t o n e A l e x   C h a p m a n B l a c k h a t 2 0 1 5 W i n d o w s   S e r v e r   U p d a t e   S e r v i c e   ( W S U S )   ( M a n   I n   T h e   M i d d l e ,   M I T M ) W i n d o w s   ( u p d a t e   s e r v i c e ) w u a u c t l . e x e 便 W i n d o w s   S e r v e r   U p d a t e   S e r v i c e   ( W S U S )   W S U S W S U S   I n t e r n e t   w i n d o w s w i n d o w s W S U S I n t e r n e t 1 .   W S U S ,   H K L M S o f t w a r e P o l i c i e s M i c r o s o f t W i n d o w s W i n d o w s U p d a t e A U U s e W U S e r v e r 1   1   0 W S U S H K E Y _ L O C A L _ M A C H I N E S o f t w a r e P o l i c i e s M i c r o s o f t W i n d o w s W i n d o w s U p d a t e W U S e r v e r
h t t p : / / w s u s - s e r v e r . c o m : 8 5 3 0 h t t p w s u s - s e r v e r . c o m W S U S 8 5 3 0 W S U S h t t p s h t t p h t t p h t t p s 2 .   W S U S   W S U S   H T T P S O A P   X M L S y n c U p d a t e s ( S y n c U p d a t e s R e s u l t ) ( G e t E x t e n d e d U p d a t e I n f o ) ( G e t E x t e n d e d U p d a t e I n f o R e s u l t ) S y n c U p d a t e s  
3 .   W S U S h t t p h t t p   ( M a n   I n   T h e   M i d d l e ,   M I T M ) W S U S a r p W S U S S y n c U p d a t e s R e s u l t I D G e t E x t e n d e d U p d a t e I n f o R e s u l t   U R L h t t p : / / w s u s . e v i l . c o m / u p d a t e /   e v i l . e x e :   s y s i n t e r n a l s p s e x e c   b g i n f o c m d . e x e c m d . e x e
p s e x e c b g i n f o 4 .   P r o o f   O f   C o n c e p t   ( P O C ) P a u l   S t o n e A l e x   C h a p m a n P O C b u g , P O C P O C b g i n f o 使 b u r p   s u i t e W S U S 1 S y n c U p d a t e s R e s u l t   < T r u n c a t e d > f a l s e < / T r u n c a t e d >   2 S y n c U p d a t e s R e s u l t   3 G e t E x t e n d e d U p d a t e I n f o   < i n t > 1 9 9 9 9 9 9 2 < / i n t >   < i n t > 1 9 9 9 9 9 9 3 < / i n t > 4 G e t E x t e n d e d U p d a t e I n f o R e s u l t   < U p d a t e s > < / U p d a t e s >
U r l   y o u r u r l  
b g i n f o . e x e * F r e e B u f n i c k c h a n g  

回复

举报

高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

Archiver| 手机版| 小黑屋|
Powered by Discuz! X3.4 Copyright © 2001-2020, Tencent Cloud. 商业源码建议获取授权,如侵犯您的权益,请联系客服处理