在这篇文章中我们发现在Microsoft Active Directory中有一些信息用普通的域用户就可以查看。
In this article we found out some information that ordinary domain users can query for in a Microsoft Active Directory.
如果我想要检查ad,我会用一个普通用户登陆(用默认的域设置)测试环境。
If I wanted to check this out, I would log in as a normal user (with the default domain Settings) in my test environment.
这个 Explore (或者 Discovery) 阶段包括作为一个普通用户穿越这个 Web 应用程序,检查这些页面,表单域,以及其它到这个应用程序的输入。
The Explore (or Discovery) phase includes traversing the Web application as a normal user would, identifying the pages, form fields, and other inputs to the application.
应用推荐