Docker 配置 kali
小于 1 分钟
前提
- 安装 Docker
- https://hub.docker.com/r/kalilinux/kali-rolling
拉取镜像,查看镜像
docker pull kalilinux/kali-rolling
docker images
运行+挂载:
docker run -it kalilinux/kali-rolling /bin/bash
docker start kali && docker exec -it kali /bin/bash
docker start kali && docker exec -it kali /bin/zsh
挂代理,在clash里直接复制环境变量选择bash,再修改ip和端口
export https_proxy=http://{your_WLAN_IP}:{YOUR_PORT} http_proxy=http://{your_WLAN_IP}:{YOUR_PORT} all_proxy=socks5://{your_WLAN_IP}:{YOUR_PORT}
安装zsh
apt update
sh -c "$(curl -fsSL https://raw.githubusercontent.com/ohmyzsh/ohmyzsh/master/tools/install.sh)"
安装 kali-tools
apt update && apt -y install kali-linux-headless
apt update && apt -y install kali-linux-large
工具及使用:
Koh
信息收集
扫描工具
扫端口
- nmap
namp -sV -sC 10.10.xx.xxx
- rustscan
./rustscan -a 10.10.xx.xxx -- -A
扫目录
- dirsearch
dirsearch -u http://10.10.xx.xxx -e php,html,js,css
dirsearch -u http://10.10.xx.xxx -x 403,404,500
- gobuster
gobuster dir -u http://10.10.xx.xxx -w ~tools\dictionary\directory-list-2.3-medium.txt
监听工具 -nc
nc -lvnp 1234
bash -p
反弹shell脚本
backup.sh use it
- https://www.revshells.com/
python3 监听 8080
php脚本
- php-reverse-shell