- 1IOS 4.2 编写真机和模拟器通用的framework(静态库)_framework 怎么支持模拟器器
- 2如何测试websocket接口_websocket请求的接口测试用例设计
- 3LeetCode 73. 矩阵置零_矩阵置零 c语言leetcode
- 4Elasticsearch:生成 AI 中的微调与 RAG_微调rag
- 5深度学习网络学习记录 SRI-Net、改进Unet_基于unet网络的改进
- 6oracleJava.sql.SQLException: 无效的列索引_flinkcdc oracle java.sql.sqlexception: 无效的列索引
- 7android studio的安装和gradle配置_android studio gradle安装与配置
- 85、PageAbility的生命周期_下面哪些是ability的生命周期
- 9【Bug解决】curl: (77) error setting certificate verify locations: CAfile: ..ssl/cacert.pem
- 10ChatGLM2部署实战体验
metasploit中Payload的reverse_tcp和bind_tcp的区别
赞
踩
reverse_tcp和bind_tcp这两者的执行过程可以大致理解为以下内容:
[reverse_tcp]
attacker -> [contact me at the port 4444] -> victim
after the payload is executed
attacker <-> [port 4444] <-> victim
[bind_tcp]
attacker -> [open the way for me in the port 4444] -> victim
after execution
attacker <-> [port 4444] <-> victim
bind_tcp:攻击机设置一个端口(LPORT),Payload在测试机执行打开该端口,以便攻击机可以接入。
采用reverse的方法一般较为安全,因为是在测试机连接攻击机,所以一般不会被防火墙发现;而bind在测试机打开端口时很容易被安全软件和防火墙发现。
官方文档对bind_tcp和reverse_tcp的说明:
Reverse TCP
The reverse TCP handler is provided by the Msf::Handler::ReverseTcp class. It will listen on a port for incoming connections and will make a call into handle connection with the client sockets as they do.
Bind TCP
The bind TCP handler is provided through Msf::Handler::BindTcp. It will attempt to establish a connection to a target machine on a given port (specified in LPORT). If a connection is established, a call is made into handle connection passing along the socket associated with the connection.
未完待补充……
