参考资料:https://www.youtube.com/watch?v=ZBi8Qa9m5c0
参考资料:https://github.com/redhuntlabs/Awesome-Asset-Discovery
参考资料:https://portswigger.net/web-security/all-materials
locate sublist3r
git clone
apt install sublist3r
python sublist3r.py -d irobot.com 【测试目标为,bug大学准许范围】
sublist3r
sublist3r --help
sublist3r -d irobot.com
https://crt.sh %.irobot.com 【%是通配符】
burp suite Pro专业版 2.0.19beta
谷歌:foxy proxy
访问 https:www.irobot.com burp Traget site map自动爬取
securityheaders.com
builtwith.com 指纹识别
weleakinfo.com 信息泄漏
hunter.io
nikto -h https://www.irobot.com
nmap -p 80,443 -A -T4 IP地址
