1 抓包工具 burpsuite 使用
手机代理:https://blog.csdn.net/Qton_CSDN/article/details/79494037
这个文章讲的很全
http://www.360doc.com/content/16/0425/10/29967943_553593234.shtml
暴力破解:
https://blog.csdn.net/Qton_CSDN/article/details/79347110
https://www.tuicool.com/articles/IBZrmif
短信/邮件 轰炸
2 端口扫描 安装VM虚拟机 读取打开kali 账户: root 密码:toor
安装:https://blog.csdn.net/meyo_leo/article/details/77918511
nmap kali
nmap -A -T4 192.168.1.35
便民宝:nmap 61.28.113.182
https://linux.cn/article-7960-1.html
3 WVS
https://blog.csdn.net/qq1124794084/article/details/78730390
4 sqlmap
https://blog.csdn.net/Qton_CSDN/article/details/79353368
讲测试报告
5 总结归纳
安全测试--WEB,微信端渗透测试报告
https://blog.csdn.net/Qton_CSDN/article/details/79408181
安全测试-- WEB 实战
https://blog.csdn.net/Qton_CSDN/article/details/79466897
安全测试-- apk 反编译
https://mp.csdn.net/postedit/79485977
app端:看嘉颖app端的测试报告
https://blog.csdn.net/shayuchaor/article/details/60783216