摘要
Meterpreter会话是使用Metasploit渗透框架溢出目标Windows主机后,对侵入的Windows主机进行进一步渗透利用,全面掌控侵入的Windows主机,获得目标主机进程注入型连接。全面掌握、灵活使用Meterpreter会话的利用技术,对使用Metasploit渗透框架进行信息安全渗透测试具有重要意义。笔者在使用Metasploit进行大量渗透测试实验的基础上,梳理Meterpreter会话利用的操作方法,分析Meterpreter会话利用的技巧思路。
Meterpreter session is to use Metasploit penetration framework to overflow the target Windows host, and then make further penetration of the intruded Windows host, fully control the intruded Windows host, and obtain the process injection connection of the target host. Mastering and flexibly using the technology of Meterpreter session is of great significance to the use of Metasploit penetration framework for information security penetration testing. On the basis of a lot of penetration test experiments with Metasploit, the author combs the operation methods of Meterpreter session utilization and analyses the skills and ideas of Meterpreter session utilization.
作者
沈艺敏
朱宗宝
徐家丽
Shen Yimin;Zhu Zongbao;Xu Jiali(Nanning University, Nanning Guangxi 530200, China)
出处
《信息与电脑》
2019年第13期191-192,共2页
Information & Computer
