渗透测试小技巧

Posted on 2018-07-30 Edited on 2022-08-08 In pentest

[TOC]

非交互式添加用户并创建密码

$ useradd test
$ echo "test:123" | sudo chpasswd

$ useradd test2
$ echo "123" | passwd --stdin test2

$ passwd -d test2 #（设置密码之后）删除密码，即可以空密码登录

获取Windows机器上保存的WIFI密码

Powershell

(netsh wlan show profiles) | Select-String "\:(.+)$" | %{$name=$_.Matches.Groups[1].Value.Trim(); $_} | %{(netsh wlan show profile name="$name" key=clear)} | Select-String "Key Content\W+\:(.+)$" | %{$pass=$_.Matches.Groups[1].Value.Trim(); $_} | %{[PSCustomObject]@{ PROFILE_NAME=$name;PASSWORD=$pass }} | Format-Table -AutoSize

命令行

netsh wlan show profiles "NETWORK-SSID" key=clear