首先,你需要確定你要找什麼,通常是通過公布漏洞來確定Exploit,Oday的Exploit暫時不討論。
接著,去一些收集Exploit的網站搜尋,常見網站有:
Securityfocus: http://www.securityfocus.com/vulnerabilities
milw0rm:http://www.milw0rm.com/
http://packetstormsecurity.nl/
http://hack.com.ru/
http://www.hackcoza.tk/
http://www.web-hack.ru/
http://www.securiteam.com/
http://www.security.nnov.ru/
http://www.hackerzhell.co.uk/indexmain.php
http://hacktheb0x.tk/
http://neworder.box.sk/
http://www.k-otik.com/
http://www.security-corporation.com/
http://www.hackcoza.com/lynx.html
http://www.anyside.com/
http://www.cnids.com
http://www.addict3d.org/index.php?page=security
http://www.frsirt.com
http://www.securitydot.net/
http://blog.csdn.net/group/ExploiT/
http://seclists.org
等等
最後,就是編譯,一般在步驟二中找到的都是Exploit未編譯版本,找到後就需要你來編譯完成,這是整個過程中最重要也是最複雜的一步。大部分的Exploit代碼中都註明了編譯環境和注意事項,但也有部分代碼中註明的資訊很模糊,或者是那種Windows/unix通用的Shellcode,編譯時間可能需要修改某些東西。
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
