June 2020
Intermediate to advanced
423 pages
7h 58m
Chinese
Content preview from Kali Linux学习手册
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
164
|
第
4
章
oscanner
还附带了几个列表,包括账户,用户和服务。有些文件在其中可能
并没有什么作用,但是它是攻击
Oracle
产品的起点。与你接触的大多数工具
一样,你将收集自己的服务标识符,用户名和潜在密码的集合。你可以添加
这些文件以便更好地测试
Oracle
数据库。当你测试的系统和网络越多,就能
够增量检查所有现存数据。随着时间的推移,这将增加成功的可能性。请记住,
当你运行用户名和密码的单词列表时,只有在系统现存的用户名或密码与单
词列表中的内容完全匹配时才能成功。
识别新的漏洞
软件有
bug
,这是与生俱来的。对于软件,尤其是较大的软件,结构会很复杂。
复杂性越高,出错的可能性就越大。考虑到在程序运行时面临的所有选择。
如果你开始计算通过程序执行的所有潜在路径,你将很快发现其数目很大。
在执行软件测试时,有多少执行路径被完整测试过?答案是只有整个执行路
径集合的一部分。即使所有路径都被测试过,那么其输入的数据类型又如何?
某些软件测试可能侧重于功能测试。其目的主要是验证指定的功能是否正确。
这可以通过主动测试完成,确保预期会发生什么。可能还有一些消极测试。
如果发生意外情况,你希望确保程序能够合理地犯错。这种消极测试很难实现,
因为如果你有一组预期的数据,它们和在运行程序时可能发生的一切相比只
是一部分数据,特别是那些需要用户输入作为参数的程序。
当你追踪预期输入的边界时会发生边界测试。你可以测试最大值或最小值的
边界,并且在最大值或最小值之外检查错误输入并正确处理这些输入。
发送应用程序预期之外的数据是识别程序中错误的一种方法 ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.