信息收集常见检测：

1、脚本或工具速度流量快
2、脚本或工具的指纹被识别
3、脚本或工具的检测Payload

信息收集常见方法：

1、延迟：解决请求过快封IP的情况
2、代理池：在确保速度的情况下解决请求过快封IP的拦截
3、白名单：模拟白名单模拟WAF授权测试，解决速度及测试拦截
4、模拟用户：模拟真实用户数据包请求探针，解决WAF指纹识别

信息收集-被动扫描-黑暗引擎&三方接口

黑暗引擎：Fofa Quake Shodan zoomeye 0.zone等
其他接口：https://forum.ywhack.com/bountytips.php?getinfo

#信息收集-目录扫描-Python代理加载脚本

import requests
import timeheaders={'Connection': 'keep-alive','Cache-Control': 'max-age=0','Upgrade-Insecure-Requests': '1','User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36','Sec-Fetch-Dest': 'document','Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9','Sec-Fetch-Site': 'none','Sec-Fetch-Mode': 'navigate','Sec-Fetch-User': '?1','Accept-Encoding': 'gzip, deflate, br','Accept-Language': 'zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7','Cookie': 'bdshare_firstime=1581597934650; PHPSESSID=ncsajdvh39qse0qlsgqokshuc4; yx_auth=dc4fq8FAEkyiAUZ54b5zl9GGStCxXoRb1TFaAaozygMiSc5uZYHjR3gCQm%2BtKNz3bcjbTi8BRgcd%2F7LvR0lHN1j319CI6x29Z2QDI38',
}for paths in open('php_b.txt',encoding='utf-8'):url='http://www.testxiaodi.fun/'paths=paths.replace('\\n','')urls=url+pathsproxy = {'http': 'tps686.kdlapi.com:15818',}try:code=requests.get(urls,headers=headers,proxies=proxy).status_code#req=requests.get(urls, headers=headers, proxies=proxy)#print(urls)#print(req.text)#time.sleep()print(urls+'|'+str(code))if code==200 or code==403:print(urls+'|'+str(code))except Exception as err:print('connecting error')time.sleep(3)

信息收集-工具扫描-Awvs&Xray&Goby内置

Awvs-设置速度&加入代理
Xray-配置修改&进程转发 Proxifier
Goby-配置加入Socket代理