{"id":73747,"date":"2026-02-08T10:09:40","date_gmt":"2026-02-08T02:09:40","guid":{"rendered":"https:\/\/www.wsisp.com\/helps\/73747.html"},"modified":"2026-02-08T10:09:40","modified_gmt":"2026-02-08T02:09:40","slug":"%e2%93%ab%e2%81%84%e2%82%81%e2%82%82-%e2%9f%a6-oscp-%e2%ac%96-%e7%a0%94%e8%ae%b0-%e2%9f%a7-windows%e6%9d%83%e9%99%90%e6%8f%90%e5%8d%87-%e2%9e%b1-%e6%9c%aa%e5%8a%a0%e5%bc%95%e5%8f%b7%e6%9c%8d%e5%8a%a1","status":"publish","type":"post","link":"https:\/\/www.wsisp.com\/helps\/73747.html","title":{"rendered":"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09"},"content":{"rendered":"

\u00a0\u00a0\u00a0\u00a0 \u00a0 \u00a0 \u00a0\u90d1\u91cd\u58f0\u660e:\u672c\u6587\u6240\u6d89\u5b89\u5168\u6280\u672f\u4ec5\u9650\u7528\u4e8e\u5408\u6cd5\u7814\u7a76\u4e0e\u5b66\u4e60\u76ee\u7684,\u4e25\u7981\u4efb\u4f55\u5f62\u5f0f\u7684\u975e\u6cd5\u5229\u7528\u3002\u56e0\u4e0d\u5f53\u4f7f\u7528\u6240\u5bfc\u81f4\u7684\u4e00\u5207\u6cd5\u5f8b\u4e0e\u7ecf\u6d4e\u8d23\u4efb,\u672c\u4eba\u6982\u4e0d\u8d1f\u8d23\u3002\u4efb\u4f55\u5f62\u5f0f\u7684\u8f6c\u8f7d\u5747\u987b\u660e\u786e\u6807\u6ce8\u539f\u6587\u51fa\u5904,\u4e14\u4e0d\u5f97\u7528\u4e8e\u5546\u4e1a\u76ee\u7684\u3002<\/p>\n

🔋 \u70b9\u8d5e | \u80fd\u91cf\u6ce8\u5165 \u2764\ufe0f\u00a0\u5173\u6ce8 | \u4fe1\u53f7\u9501\u5b9a 🔔\u00a0\u6536\u85cf | \u6570\u636e\u5f52\u6863\u00a0\u2b50\ufe0f\u00a0\u8bc4\u8bba | \u4fdd\u6301\u8fde\u63a5💬<\/p>\n

🌌\u00a0\u7acb\u5373\u524d\u5f80\u00a0👉\u6656\u5ea6\u4e28\u5b89\u5168\u89c6\u754c<\/span>🚀\u200b<\/p>\n

\"\"\u200b<\/span><\/span>\u200b\u200b\u200b\u200b\u200b<\/p>\n

\u25b6 \u4fe1\u606f\u6536\u96c6\u00a0 \u25b6 \u6f0f\u6d1e\u68c0\u6d4b \u25b6 \u521d\u59cb\u7acb\u8db3\u70b9\u00a0 \u25b6 \u6743\u9650\u63d0\u5347\u00a0\u27a2 Windows\u6743\u9650\u63d0\u5347\u00a0\u27a2\u00a0\u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528(\u4e0b)🔥🔥🔥 \u25b6 \u6a2a\u5411\u79fb\u52a8 \u25b6 \u62a5\u544a\/\u5206\u6790 \u25b6 \u6559\u8bad\/\u4fee\u590d<\/p>\n

\u76ee\u5f55<\/p>\n

1.Windows\u6743\u9650\u63d0\u5347<\/p>\n

1.1 Windows\u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528<\/p>\n

1.1.2 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5b9e\u8df5<\/p>\n

1.1.2.1 \u679a\u4e3e\u6f0f\u6d1e\u670d\u52a1<\/p>\n

1. \u670d\u52a1\u679a\u4e3e<\/p>\n

2.\u9a8c\u8bc1\u542f\u52a8\/\u505c\u6b62\u8be5\u670d\u52a1\u7684\u6743\u9650<\/p>\n

1.1.2.2 \u8def\u5f84\u6743\u9650\u68c0\u67e5<\/p>\n

1.1.2.3\u00a0\u6784\u5efa\u4e0e\u90e8\u7f72\u6076\u610f\u7a0b\u5e8f<\/p>\n

1.1.2.4\u00a0\u670d\u52a1\u542f\u52a8\u4e0e\u653b\u51fb\u9a8c\u8bc1<\/p>\n

1.1.3\u00a0\u4f7f\u7528\u81ea\u52a8\u5316\u5de5\u5177PowerUp.ps1\u5229\u7528\u6f0f\u6d1e<\/p>\n

1.1.3.1 \u6062\u590d\u539f\u59cb\u670d\u52a1\u529f\u80fd<\/p>\n

1.1.3.2 \u4f7f\u7528\u81ea\u52a8\u5316\u5de5\u5177 PowerUp.ps1 \u8bc6\u522b\u4e0e\u5229\u7528\u6f0f\u6d1e<\/p>\n

1.1.4 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\u5168\u6d41\u7a0b\u603b\u7ed3<\/p>\n

\u6b22\u8fce\u2764\ufe0f \u70b9\u8d5e | 🔔 \u5173\u6ce8 | \u2b50\ufe0f \u6536\u85cf | 💬 \u8bc4\u8bba<\/p>\n

\n

1.Windows\u6743\u9650\u63d0\u5347<\/h2>\n

\u00a0 \u00a0 \u00a0 \u5728\u6e17\u900f\u6d4b\u8bd5\u4e2d,\u6211\u4eec\u901a\u5e38\u4ee5\u975e\u7279\u6743\u7528\u6237\u8eab\u4efd\u83b7\u5f97\u521d\u59cb\u7acb\u8db3\u70b9\u3002\u4f46\u4e3a\u4e86\u6df1\u5165\u63a2\u6d4b(\u5982\u641c\u7d22\u654f\u611f\u4fe1\u606f\u3001\u63d0\u53d6\u5bc6\u7801\u54c8\u5e0c\u7b49),\u5f80\u5f80\u9700\u8981\u63d0\u5347\u81f3\u7ba1\u7406\u5458\u6743\u9650(\u6bd4\u5982:\u4f7f\u7528Mimikatz\u63d0\u53d6\u5bc6\u7801\u54c8\u5e0c),\u8fd9\u4e2a\u8fc7\u7a0b\u5c31\u662f\u7279\u6743\u63d0\u5347\u3002<\/p>\n

📊 \u6743\u9650\u63d0\u5347\u4e09\u5927\u8def\u5f84:\u672c\u6587\u5f00\u59cb\u4ecb\u7ecd:Windows\u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\u3002<\/p>\n\n\u9636\u6bb5\u76ee\u6807\u5173\u952e\u65b9\u6cd5<\/tr>\n\n\n\n\n
1. \u679a\u4e3eWindows<\/td>\n\u83b7\u53d6\u7cfb\u7edf\u60c5\u62a5<\/td>\n\u624b\u52a8\u641c\u7d22 + \u81ea\u52a8\u5316\u5de5\u5177<\/td>\n<\/tr>\n
2. \u6ee5\u7528Windows\u670d\u52a1<\/td>\n\u653b\u51fb\u670d\u52a1\u6f0f\u6d1e<\/td>\n\u670d\u52a1\u914d\u7f6e\u7f3a\u9677\u3001\u6743\u9650\u6ee5\u7528<\/td>\n<\/tr>\n
3. \u5229\u7528\u5176\u4ed6\u7ec4\u4ef6<\/td>\n\u6269\u5927\u653b\u51fb\u9762<\/td>\n\u8ba1\u5212\u4efb\u52a1\u3001\u7cfb\u7edf\u6f0f\u6d1e\u5229\u7528<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n
\n

1.1 Windows\u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528<\/h3>\n

1.1.2 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5b9e\u8df5<\/h4>\n

1.1.2.1 \u679a\u4e3e\u6f0f\u6d1e\u670d\u52a1<\/h5>\n

\u00a0 \u00a0 \u00a0 \u73b0\u5728\u5bf9\u8fd9\u4e2a\u6f0f\u6d1e\u539f\u7406\u6709\u57fa\u672c\u4e86\u89e3,\u8ba9\u6211\u4eec\u5b9e\u8df5\u4e00\u4e0b\u3002\u4ee5RDP\u8fde\u63a5\u5230CLIENTWK220(\u7528\u6237\u540dsteve ;\u5bc6\u7801securityIsNotAnOption++++++),\u7136\u540e\u5f00\u59cb\u679a\u4e3e\u6b63\u5728\u8fd0\u884c\u548c\u505c\u6b62\u7684\u670d\u52a1\u3002<\/p>\n

1. \u670d\u52a1\u679a\u4e3e<\/h6>\n

\u00a0 \u00a0 \u00a0 \u4f7f\u7528PowerShell\u6216WMIC\u5de5\u5177\u5217\u4e3e\u7cfb\u7edf\u670d\u52a1,\u91cd\u70b9\u5173\u6ce8:<\/p>\n

    \n
  • \u975eWindows\u76ee\u5f55(\u56e0\u4e3a\u666e\u901a\u7528\u6237\u6ca1\u6709\u6743\u9650\u5199\u5165)<\/li>\n
  • \u8def\u5f84\u5305\u542b\u7a7a\u683c\u672a\u52a0\u5f15\u53f7\u7684\u670d\u52a1(\u53ef\u505a\u6f0f\u6d1e\u5229\u7528)<\/li>\n<\/ul>\n

    \u2460PowerShell:<\/p>\n

    \"\"\u200b<\/span><\/span><\/p>\n

    \u00a0 \u00a0 \u00a0 \u4e0a\u56fe\u663e\u793a:\u4e00\u4e2a\u540d\u4e3aGammaService\u7684\u505c\u6b62\u670d\u52a1\u3002\u5b83\u672a\u52a0\u5f15\u53f7\u7684\u670d\u52a1\u4e8c\u8fdb\u5236\u8def\u5f84\u5305\u542b\u591a\u4e2a\u7a7a\u683c,\u56e0\u6b64\u53ef\u80fd\u5bb9\u6613\u53d7\u5230\u6b64\u653b\u51fb\u5411\u91cf\u7684\u5f71\u54cd\u3002<\/p>\n

    \u6216\u2461WMIC\u5de5\u5177:(cmd\u73af\u5883)<\/p>\n

    wmic service get name,pathname | findstr \/i \/v "C:\\\\Windows\\\\\\\\"<\/span> | findstr \/i \/v ""<\/span>"<\/span> <\/p>\n

    \"\"\u200b<\/span><\/span><\/p>\n\n\u547d\u4ee4\u90e8\u5206\u529f\u80fd\u8bf4\u660e<\/tr>\n\n\n\n\n\n\n
    wmic service get name,pathname<\/td>\n\u67e5\u8be2\u6240\u6709Windows\u670d\u52a1\u7684\u540d\u79f0\u548c\u53ef\u6267\u884c\u6587\u4ef6\u8def\u5f84<\/td>\n<\/tr>\n
    findstr \/i \/v "C:\\\\Windows\\\\"<\/td>\n\n

    \u7b2c\u4e00\u6b21\u8fc7\u6ee4:\u6392\u9664\u7cfb\u7edf\u76ee\u5f55(C:\\\\Windows\\\\)\u4e0b\u7684\u670d\u52a1,\u805a\u7126\u4e8e\u7b2c\u4e09\u65b9\u670d\u52a1<\/p>\n<\/td>\n<\/tr>\n

    findstr \/i \/v """<\/td>\n\u7b2c\u4e8c\u6b21\u8fc7\u6ee4:\u7b5b\u9009\u51fa\u8def\u5f84\u672a\u52a0\u5f15\u53f7\u5305\u88f9\u7684\u670d\u52a1("""\u5339\u914d\u5e26\u5f15\u53f7\u7684\u8def\u5f84)<\/td>\n<\/tr>\n
    \/i<\/td>\n\u5ffd\u7565\u5927\u5c0f\u5199<\/td>\n<\/tr>\n
    \/v<\/td>\n\u53cd\u5411\u5339\u914d(\u663e\u793a\u4e0d\u5305\u542b\u6307\u5b9a\u5b57\u7b26\u4e32\u7684\u884c)<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

    \u00a0 \u00a0 \u00a0 \u6b64\u547d\u4ee4\u4ec5\u5217\u51fa\u53ef\u80fd\u53d7\u5230\u653b\u51fb\u5411\u91cf\u5f71\u54cd\u7684\u670d\u52a1:GammaService,\u53ca\u5176\u8def\u5f84\u3002<\/p>\n<\/p>\n

    \u6ce8\u610f:wmic\u5de5\u5177(Windows Management Instrumentation Command-line)\u5728\u67d0\u4e9b\u8f83\u65b0\u7684Windows\u7248\u672c\u4e2d\u5df2\u7ecf\u4e0d\u518d\u9ed8\u8ba4\u5b89\u88c5\u6216\u88ab\u5f03\u7528\u3002\u5982\u679c\u9700\u4f7f\u7528\u5b83,\u9700\u8981\u989d\u5916\u5b89\u88c5\u5b83\u3002<\/p>\n

    2.\u9a8c\u8bc1\u542f\u52a8\/\u505c\u6b62\u8be5\u670d\u52a1\u7684\u6743\u9650<\/h6>\n

    \u00a0 \u00a0 \u00a0 \u76ee\u524d,\u662f\u4ee5\u7528\u6237steve\u7684\u8eab\u4efd\u767b\u5f55\u7684\u3002\u5728\u7ee7\u7eed\u4e4b\u524d,\u68c0\u67e5\u662f\u5426\u53ef\u4ee5\u4ee5steve\u7684\u8eab\u4efd\u4f7f\u7528Start-Service\u548cStop-Service\u542f\u52a8\u548c\u505c\u6b62\u5df2\u8bc6\u522b\u7684\u670d\u52a1GammaService,\u4ee5\u786e\u8ba4\u653b\u51fb\u53ef\u884c\u6027\u3002<\/p>\n

    \"\"\u200b<\/span><\/span><\/p>\n

    \u00a0 \u00a0 \u00a0 \u4ece\u4ee5\u4e0a\u7684\u8f93\u51fa\u53ef\u770b\u51fa,\u7528\u6237steve\u5177\u6709\u542f\u52a8\u548c\u505c\u6b62GammaService\u7684\u6743\u9650\u3002\u7531\u4e8e\u53ef\u4ee5\u81ea\u5df1\u91cd\u65b0\u542f\u52a8\u8fd9\u4e2a\u670d\u52a1,\u6240\u4ee5\u4e0d\u9700\u8981\u53d1\u51fa\u91cd\u542f\u547d\u4ee4\u6765\u91cd\u65b0\u542f\u52a8\u670d\u52a1\u3002<\/p>\n

    \n
    1.1.2.2 \u8def\u5f84\u6743\u9650\u68c0\u67e5<\/h5>\n

    \"\"\u200b<\/span><\/span><\/p>\n

    \u00a0 \u00a0 \u00a0 \u63a5\u4e0b\u6765,\u5217\u51faWindows\u7528\u4e8e\u5c1d\u8bd5\u5b9a\u4f4d\u670d\u52a1\u53ef\u6267\u884c\u6587\u4ef6\u7684\u8def\u5f84(\u7ea2\u6846\u90e8\u5206)\u3002<\/p>\n

    \"\"\u200b<\/span><\/span><\/p>\n

    \u00a0 \u00a0 \u00a0 \u4f7f\u7528icacls\u5206\u522b\u68c0\u67e5\u8fd9\u4e9b\u8def\u5f84\u7684\u8bbf\u95ee\u6743\u9650,\u4ece\u524d\u4e24\u4e2a\u8def\u5f84\u5f00\u59cb:<\/p>\n

    \"\"\u200b<\/span><\/span><\/p>\n

    \u6743\u9650\u68c0\u67e5:\u7528\u6237\u00a0steve(\u5c5e\u4e8e\u00a0BUILTIN\\\\Users\u3001NT AUTHORITY\\\\AUTHENTICATED Users\u7ec4)\u65e0\u5199\u5165(W)\u6743\u9650\u3002\u63a5\u4e0b\u6765,\u5f00\u59cb\u68c0\u67e5\u7b2c\u4e09\u4e2a\u9009\u9879\u7684\u8def\u5f84(C:\\\\Program Files\\\\Enterprise Apps):<\/p>\n

    \"\"\u200b<\/span><\/span>\u6743\u9650\u68c0\u67e5:\u7528\u6237\u00a0steve \u5bf9\u8be5\u8def\u5f84\u62e5\u6709\u5199\u5165(W)\u6743\u9650!<\/p>\n

    \u7b2c\u56db\u4e2a\u8def\u5f84\u4e0d\u7528\u68c0\u67e5,\u56e0\u4e3a\u5b83\u4ee3\u8868\u4e86\u670d\u52a1\u4e8c\u8fdb\u5236\u6587\u4ef6\u672c\u8eab\u3002<\/p>\n

    \u653b\u51fb\u90e8\u7f72:<\/p>\n

      \n
    • \u5c06\u6076\u610f\u53ef\u6267\u884c\u6587\u4ef6\u547d\u540d\u4e3a\u00a0Current.exe<\/li>\n
    • \u653e\u7f6e\u4e8e\u5177\u6709\u5199\u5165\u6743\u9650\u7684\u76ee\u5f55:C:\\\\Program Files\\\\Enterprise Apps\\\\<\/li>\n
    • \u5f53\u670d\u52a1\u542f\u52a8\u65f6,\u7cfb\u7edf\u4f1a\u4f18\u5148\u6267\u884c\u6b64\u6076\u610f\u6587\u4ef6(\u56e0\u8def\u5f84\u89e3\u6790\u987a\u5e8f),\u4ece\u800c\u89e6\u53d1\u6743\u9650\u63d0\u5347\u3002<\/li>\n<\/ul>\n
      \n
      1.1.2.3\u00a0\u6784\u5efa\u4e0e\u90e8\u7f72\u6076\u610f\u7a0b\u5e8f<\/h5>\n

      \u00a0 \u00a0 \u00a0 \u6211\u4eec\u53ef\u901a\u8fc7\u524d\u6587\u4e2d\u7f16\u8bd1\u201c\u670d\u52a1\u4e8c\u8fdb\u5236\u52ab\u6301\u201d\u90e8\u5206\u7684C\u4ee3\u7801\u7f16\u8bd1\u7684adduser.exe\u6587\u4ef6\u4f5c\u4e3a\u6076\u610f\u7a0b\u5e8f\u3002<\/p>\n

      \u7b80\u8981\u56de\u987e\u4e0b,adduser.c\u6e90\u4ee3\u7801:<\/p>\n

      \"\"\u200b<\/span><\/span><\/p>\n

      \u7f16\u8bd1\u540e\u53d8\u6210adduser.exe:<\/p>\n

      \"\"\u200b<\/span><\/span><\/p>\n

      \u5728Kali\u4e0a,\u5728\u53ef\u6267\u884c\u6587\u4ef6\u7684\u76ee\u5f55\u4e2d\u542f\u52a8Python3 Web\u670d\u52a1\u5668\u4ee5\u4fbf\u63d0\u4f9b\u5b83\u3002<\/p>\n

      \u8be6\u7ec6\u6b65\u9aa4\u5982\u4e0b:<\/p>\n

      \u2460\u67b6\u8bbe\u4f20\u8f93\u670d\u52a1\u5668<\/p>\n

        \n
      • \n

        \u5728Kali\u653b\u51fb\u673a\u4e0a\u542f\u52a8\u00a0Python3 HTTP\u670d\u52a1\u5668,\u4e3a\u6076\u610f\u7a0b\u5e8f\u63d0\u4f9b\u4e0b\u8f7d\u3002<\/p>\n<\/li>\n<\/ul>\n

        \u2461\u4e0b\u8f7d\u81f3\u76ee\u6807\u673a<\/p>\n

          \n
        • \n

          \u5728\u76ee\u6807Windows\u673a\u5668\u4e0a,\u4ee5steve\u7528\u6237\u8eab\u4efd\u4f7f\u7528\u7c7b\u4f3c\u4ee5\u4e0b\u547d\u4ee4\u4e0b\u8f7d\u6587\u4ef6,\u5e76\u76f4\u63a5\u4fdd\u5b58\u4e3a\u653b\u51fb\u6240\u9700\u7684\u540d\u79f0\u00a0Current.exe:<\/p>\n<\/li>\n<\/ul>\n

          \u2462\u653e\u7f6e\u5230\u6f0f\u6d1e\u8def\u5f84<\/p>\n

            \n
          • \n

            \u5c06Current.exe\u590d\u5236\u5230\u5df2\u786e\u8ba4\u5177\u6709\u5199\u5165\u6743\u9650\u7684\u76ee\u5f55:C:\\\\Program Files\\\\Enterprise Apps\\\\\u3002<\/p>\n<\/li>\n<\/ul>\n

            \"\"\u200b<\/span><\/span><\/p>\n

            \u81f3\u6b64,\u5f53\u76ee\u6807\u670d\u52a1\u91cd\u542f\u65f6,\u7cfb\u7edf\u5c06\u4f18\u5148\u6267\u884c\u6076\u610fCurrent.exe,\u4ece\u800c\u5b8c\u6210\u6743\u9650\u63d0\u5347\u653b\u51fb\u3002<\/p>\n<\/p>\n

            \n
            1.1.2.4\u00a0\u670d\u52a1\u542f\u52a8\u4e0e\u653b\u51fb\u9a8c\u8bc1<\/h5>\n

            \u542f\u52a8\u670d\u52a1\u89e6\u53d1\u653b\u51fb:<\/p>\n

              \n
            • \n

              \u4f7f\u7528\u547d\u4ee4\u542f\u52a8\u76ee\u6807\u670d\u52a1:<\/p>\n

              > Start-Service GammaService\n <\/li>\n

            • \n

              \u7cfb\u7edf\u6309\u89e3\u6790\u987a\u5e8f\u4f18\u5148\u6267\u884c\u6076\u610f\u7a0b\u5e8f\u00a0C:\\\\Program Files\\\\Enterprise Apps\\\\Current.exe,\u5e76\u5c06\u5269\u4f59\u8def\u5f84\u90e8\u5206\u00a0Version\\\\GammaServ.exe\u00a0\u4f5c\u4e3a\u53c2\u6570\u4f20\u9012\u3002<\/p>\n<\/li>\n

            • \n

              \u518d\u6b21\u5f3a\u8c03:\u4e00\u65e6\u670d\u52a1\u542f\u52a8,\u6211\u4eec\u7684\u6587\u4ef6Current.exe\u5c06\u4ee5\u4e0e\u670d\u52a1\u542f\u52a8\u76f8\u540c\u7684\u6743\u9650\u6267\u884c\u3002\u901a\u5e38,\u4ee5LocalSystem\u670d\u52a1\u8d26\u6237\u6743\u9650\u6765\u6267\u884cCurrent.exe\u3002<\/p>\n<\/li>\n<\/ul>\n

              \"\"\u200b<\/span><\/span><\/p>\n

              \u7ed3\u679c\u5206\u6790:<\/p>\n

                \n
              • \n

                \u670d\u52a1\u542f\u52a8\u62a5\u9519<\/p>\n

                \u7531\u4e8e\u6076\u610f\u7a0b\u5e8f\u00a0Current.exe\u00a0\u65e0\u6cd5\u6b63\u786e\u5904\u7406\u539f\u59cb\u670d\u52a1\u7684\u53c2\u6570:Version\\\\GammaServ.exe\u662f\u5269\u4f59\u53c2\u6570\u3002\u8fd9\u4e2a\u9519\u8bef\u6e90\u4e8e\u4ea4\u53c9\u7f16\u8bd1\u7684C\u4ee3\u7801\u4e0d\u63a5\u53d7\u539f\u59cb\u670d\u52a1\u4e8c\u8fdb\u5236\u8def\u5f84\u7684\u5269\u4f59\u53c2\u6570,\u5bfc\u81f4Windows\u62a5\u544a\u670d\u52a1\u542f\u52a8\u5931\u8d25\u3002<\/p>\n<\/li>\n

              • \n

                \u653b\u51fb\u6210\u529f\u6267\u884c<\/p>\n

                \u5c3d\u7ba1\u670d\u52a1\u72b6\u6001\u5f02\u5e38,\u4f46\u6076\u610f\u7a0b\u5e8f\u5df2\u4ee5LocalSystem\u6743\u9650\u5b8c\u6210\u6267\u884c,\u6210\u529f\u521b\u5efa\u4e86\u7ba1\u7406\u5458\u8d26\u6237\u00a0dave2,\u5e76\u52a0\u5165\u4e86\u7ba1\u7406\u5458\u7ec4administrators,\u5b9e\u73b0\u63d0\u6743!!!<\/p>\n<\/li>\n<\/ul>\n

                \n

                1.1.3\u00a0\u4f7f\u7528\u81ea\u52a8\u5316\u5de5\u5177PowerUp.ps1\u5229\u7528\u6f0f\u6d1e<\/h4>\n

                \u00a0 \u00a0 \u00a0 \u4ee5\u4e0a\u662f\u624b\u52a8\u5229\u7528\u7684\u65b9\u5f0f\u3002\u63a5\u4e0b\u6765,\u5c1d\u8bd5\u4f7f\u7528\u81ea\u52a8\u5316\u5de5\u5177PowerUp.ps1\u8bc6\u522b\u672a\u52a0\u5f15\u53f7\u670d\u52a1\u542f\u52a8\u8def\u5f84\u6f0f\u6d1e\u5b9e\u73b0\u63d0\u53d6\u3002<\/p>\n

                1.1.3.1 \u6062\u590d\u539f\u59cb\u670d\u52a1\u529f\u80fd<\/h5>\n

                \u6062\u590d\u6b65\u9aa4:<\/p>\n

                  \n
                • \n

                  \u505c\u6b62\u670d\u52a1:\u4f7f\u7528\u00a0Stop-Service\u00a0\u547d\u4ee4\u505c\u6b62\u76ee\u6807\u670d\u52a1\u3002<\/p>\n<\/li>\n

                • \n

                  \u5220\u9664\u6076\u610f\u6587\u4ef6:\u79fb\u9664\u653e\u7f6e\u5728\u6f0f\u6d1e\u8def\u5f84\u4e0b\u7684\u6076\u610f\u7a0b\u5e8f\u00a0Current.exe\u3002<\/p>\n<\/li>\n

                • \n

                  \u670d\u52a1\u6062\u590d:\u6b64\u540e\u542f\u52a8\u670d\u52a1\u65f6,\u7cfb\u7edf\u5c06\u91cd\u65b0\u6b63\u5e38\u6267\u884c\u539f\u59cb\u670d\u52a1\u4e8c\u8fdb\u5236\u6587\u4ef6\u00a0GammaServ.exe,\u6062\u590d\u539f\u6709\u529f\u80fd\u3002<\/p>\n<\/li>\n<\/ul>\n

                  \n
                  1.1.3.2 \u4f7f\u7528\u81ea\u52a8\u5316\u5de5\u5177 PowerUp.ps1 \u8bc6\u522b\u4e0e\u5229\u7528\u6f0f\u6d1e<\/h5>\n

                  \u5229\u7528\u6b65\u9aa4:<\/p>\n

                • \n

                  \u4e0b\u8f7d\u5e76\u5bfc\u5165\u00a0PowerUp.ps1 \u811a\u672c\u3002(\u4f7f\u7528iwr\u4e0b\u8f7dPowerUp.ps1,\u5c06\u5176\u5bfc\u5165\u5230PowerShell\u4f1a\u8bdd\u4e2d\u3002\u7136\u540e,\u5c06ExecutionPolicy\u8bbe\u7f6e\u4e3aBypass,\u6267\u884c\u8be5\u5de5\u5177\u3002) \"\"\u200b<\/span><\/span><\/p>\n<\/li>\n

                • \n

                  \u68c0\u6d4b\u6f0f\u6d1e:\u8fd0\u884c\u00a0Get-UnquotedService\u00a0\u547d\u4ee4,\u81ea\u52a8\u8bc6\u522b\u7cfb\u7edf\u4e2d\u5b58\u5728\u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u7684\u670d\u52a1(\u5982 GammaService)\u3002 \"\"\u200b<\/span><\/span><\/p>\n<\/li>\n

                • \n

                  \u81ea\u52a8\u5316\u5229\u7528:\u4f7f\u7528\u00a0Write-ServiceBinary\u00a0\u547d\u4ee4\u81ea\u52a8\u521b\u5efa\u5e76\u653e\u7f6e\u6076\u610f\u4e8c\u8fdb\u5236\u6587\u4ef6\u5230\u76f8\u5e94\u76ee\u5f55,\u9ed8\u8ba4\u6dfb\u52a0\u672c\u5730\u7ba1\u7406\u5458\u7528\u6237(\u5982 john)\u3002\u7136\u540e\u91cd\u542f\u670d\u52a1GammaService,\u5b8c\u6210\u6743\u9650\u63d0\u5347\u3002<\/p>\n

                  > Write-ServiceBinary -Name 'GammaService'<\/span> -Path "C:\\\\Program Files\\\\Enterprise Apps\\\\Current.exe"<\/span> <\/p>\n

                  \"\"\u200b<\/span><\/span><\/p>\n<\/li>\n

                • \n

                  \u9a8c\u8bc1\u653b\u51fb\u7ed3\u679c:PowerUp.ps1\u81ea\u52a8\u5316\u5de5\u5177\u7684\u9ed8\u8ba4\u884c\u4e3a\u662f\u521b\u5efa\u540d\u4e3ajohn\u7684\u65b0\u672c\u5730\u7528\u6237,\u5bc6\u7801\u4e3aPassword123!\u3002\u6b64\u5916,\u8be5\u7528\u6237\u88ab\u6dfb\u52a0\u5230\u672c\u5730Administrators\u7ec4\u3002 \"\"\u200b<\/span><\/span><\/p>\n<\/li>\n

                  \n

                  1.1.4 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\u5168\u6d41\u7a0b\u603b\u7ed3<\/h4>\n

                  1. \u6f0f\u6d1e\u8bc6\u522b<\/p>\n

                    \n
                  • \n

                    \u53d1\u73b0\u670d\u52a1\u53ef\u6267\u884c\u6587\u4ef6\u7684\u00a0\u8def\u5f84\u5305\u542b\u7a7a\u683c\u4e14\u672a\u7528\u5f15\u53f7\u5305\u88f9\u3002<\/p>\n<\/li>\n

                  • \n

                    \u7406\u89e3 Windows \u4f1a\u6309\u7a7a\u683c\u5206\u6bb5\u3001\u4ece\u5de6\u81f3\u53f3\u5c1d\u8bd5\u6267\u884c\u7684\u89e3\u6790\u903b\u8f91\u3002<\/p>\n<\/li>\n<\/ul>\n

                    2. \u6761\u4ef6\u5206\u6790\u4e0e\u51c6\u5907<\/p>\n

                      \n
                    • \n

                      \u68c0\u67e5\u8def\u5f84\u4e2d\u5404\u524d\u7f6e\u76ee\u5f55\u7684\u5199\u5165\u6743\u9650,\u627e\u5230\u53ef\u653e\u7f6e\u6076\u610f\u6587\u4ef6\u7684\u4f4d\u7f6e\u3002<\/p>\n<\/li>\n

                    • \n

                      \u786e\u8ba4\u5f53\u524d\u7528\u6237\u5177\u6709\u91cd\u542f\u76ee\u6807\u670d\u52a1\u7684\u6743\u9650\u3002<\/p>\n<\/li>\n<\/ul>\n

                      3. \u653b\u51fb\u5b9e\u65bd<\/p>\n

                        \n
                      • \n

                        \u5c06\u6076\u610f\u53ef\u6267\u884c\u6587\u4ef6\u547d\u540d\u5e76\u653e\u7f6e\u5230\u6743\u9650\u5141\u8bb8\u7684\u5bf9\u5e94\u76ee\u5f55\u4e2d\u3002<\/p>\n<\/li>\n

                      • \n

                        \u91cd\u542f\u670d\u52a1,\u89e6\u53d1\u6076\u610f\u7a0b\u5e8f\u4ee5\u00a0LocalSystem\u00a0\u7b49\u9ad8\u6743\u9650\u8eab\u4efd\u6267\u884c\u3002<\/p>\n<\/li>\n<\/ul>\n

                        4. \u81ea\u52a8\u5316\u5229\u7528(PowerUp.ps1)<\/p>\n

                          \n
                        • \n

                          Get-UnquotedService:\u81ea\u52a8\u626b\u63cf\u5e76\u5217\u51fa\u5b58\u5728\u6f0f\u6d1e\u7684\u670d\u52a1\u3002<\/p>\n<\/li>\n

                        • \n

                          Write-ServiceBinary:\u81ea\u52a8\u751f\u6210\u5e76\u90e8\u7f72\u6076\u610f\u7a0b\u5e8f,\u5b8c\u6210\u6743\u9650\u63d0\u5347\u3002<\/p>\n<\/li>\n<\/ul>\n

                          5. \u6062\u590d\u4e0e\u6e05\u7406<\/p>\n

                            \n
                          • \n

                            \u505c\u6b62\u670d\u52a1\u3001\u5220\u9664\u6076\u610f\u6587\u4ef6,\u5373\u53ef\u6062\u590d\u670d\u52a1\u7684\u539f\u59cb\u529f\u80fd\u3002<\/p>\n<\/li>\n<\/ul>\n

                            \u6838\u5fc3\u8981\u70b9:\u8be5\u6f0f\u6d1e\u5229\u7528\u4f9d\u8d56\u4e8e\u00a0\u8def\u5f84\u89e3\u6790\u7f3a\u9677\u00a0\u4e0e\u00a0\u4e0d\u5f53\u7684\u76ee\u5f55\u6743\u9650\u914d\u7f6e\u00a0\u5171\u540c\u4f5c\u7528,\u901a\u8fc7\u201c\u8def\u5f84\u52ab\u6301\u201d\u5b9e\u73b0\u6743\u9650\u63d0\u5347\u3002<\/p>\n

                            \n

                            \u6b22\u8fce\u2764\ufe0f \u70b9\u8d5e | 🔔 \u5173\u6ce8 | \u2b50\ufe0f \u6536\u85cf | 💬 \u8bc4\u8bba<\/h2>\n

                            \u6bcf\u4e00\u4efd\u652f\u6301,\u90fd\u662f\u6211\u6301\u7eed\u8f93\u51fa\u7684\u5149\u3002<\/p>\n

                            \"\"<\/p>\n","protected":false},"excerpt":{"rendered":"

                            \u90d1\u91cd\u58f0\u660e:\u672c\u6587\u6240\u6d89\u5b89\u5168\u6280\u672f\u4ec5\u9650\u7528\u4e8e\u5408\u6cd5\u7814\u7a76\u4e0e\u5b66\u4e60\u76ee\u7684,\u4e25\u7981\u4efb\u4f55\u5f62\u5f0f\u7684\u975e\u6cd5\u5229\u7528\u3002\u56e0\u4e0d\u5f53\u4f7f\u7528\u6240\u5bfc\u81f4\u7684\u4e00\u5207\u6cd5\u5f8b\u4e0e\u7ecf\u6d4e\u8d23\u4efb,\u672c\u4eba\u6982\u4e0d\u8d1f\u8d23\u3002\u4efb\u4f55\u5f62\u5f0f\u7684\u8f6c\u8f7d\u5747\u987b\u660e\u786e\u6807\u6ce8\u539f\u6587\u51fa\u5904,\u4e14\u4e0d\u5f97\u7528\u4e8e\u5546\u4e1a\u76ee\u7684\u3002 🔋 \u70b9\u8d5e | \u80fd\u91cf\u6ce8\u5165 \u2764\ufe0f\u00a0\u5173\u6ce8 | \u4fe1\u53f7\u9501\u5b9a 🔔\u00a0\u6536\u85cf | \u6570\u636e\u5f52\u6863\u00a0\u2b50\ufe0f\u00a0\u8bc4\u8bba | \u4fdd\u6301\u8fde\u63a5💬 🌌\u00a0\u7acb\u5373\u524d\u5f80\u00a0👉\u6656\u5ea6\u4e28\u5b89\u5168\u89c6\u754c🚀\u200b \u200b<\/p>\n","protected":false},"author":2,"featured_media":73730,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[7762,7763,1870,122],"topic":[],"class_list":["post-73747","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-server","tag-windows","tag-7763","tag-1870","tag-122"],"yoast_head":"\n\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09 - \u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.wsisp.com\/helps\/73747.html\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09 - \u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3\" \/>\n<meta property=\"og:description\" content=\"\u90d1\u91cd\u58f0\u660e:\u672c\u6587\u6240\u6d89\u5b89\u5168\u6280\u672f\u4ec5\u9650\u7528\u4e8e\u5408\u6cd5\u7814\u7a76\u4e0e\u5b66\u4e60\u76ee\u7684,\u4e25\u7981\u4efb\u4f55\u5f62\u5f0f\u7684\u975e\u6cd5\u5229\u7528\u3002\u56e0\u4e0d\u5f53\u4f7f\u7528\u6240\u5bfc\u81f4\u7684\u4e00\u5207\u6cd5\u5f8b\u4e0e\u7ecf\u6d4e\u8d23\u4efb,\u672c\u4eba\u6982\u4e0d\u8d1f\u8d23\u3002\u4efb\u4f55\u5f62\u5f0f\u7684\u8f6c\u8f7d\u5747\u987b\u660e\u786e\u6807\u6ce8\u539f\u6587\u51fa\u5904,\u4e14\u4e0d\u5f97\u7528\u4e8e\u5546\u4e1a\u76ee\u7684\u3002 🔋 \u70b9\u8d5e | \u80fd\u91cf\u6ce8\u5165 \u2764\ufe0f\u00a0\u5173\u6ce8 | \u4fe1\u53f7\u9501\u5b9a 🔔\u00a0\u6536\u85cf | \u6570\u636e\u5f52\u6863\u00a0\u2b50\ufe0f\u00a0\u8bc4\u8bba | \u4fdd\u6301\u8fde\u63a5💬 🌌\u00a0\u7acb\u5373\u524d\u5f80\u00a0👉\u6656\u5ea6\u4e28\u5b89\u5168\u89c6\u754c🚀\u200b \u200b\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.wsisp.com\/helps\/73747.html\" \/>\n<meta property=\"og:site_name\" content=\"\u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3\" \/>\n<meta property=\"article:published_time\" content=\"2026-02-08T02:09:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.wsisp.com\/helps\/wp-content\/uploads\/2026\/02\/20260208020934-6987f05ebfcdf.png\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.wsisp.com\/helps\/73747.html\",\"url\":\"https:\/\/www.wsisp.com\/helps\/73747.html\",\"name\":\"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09 - \u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3\",\"isPartOf\":{\"@id\":\"https:\/\/www.wsisp.com\/helps\/#website\"},\"datePublished\":\"2026-02-08T02:09:40+00:00\",\"dateModified\":\"2026-02-08T02:09:40+00:00\",\"author\":{\"@id\":\"https:\/\/www.wsisp.com\/helps\/#\/schema\/person\/358e386c577a3ab51c4493330a20ad41\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.wsisp.com\/helps\/73747.html#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.wsisp.com\/helps\/73747.html\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.wsisp.com\/helps\/73747.html#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9875\",\"item\":\"https:\/\/www.wsisp.com\/helps\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.wsisp.com\/helps\/#website\",\"url\":\"https:\/\/www.wsisp.com\/helps\/\",\"name\":\"\u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3\",\"description\":\"\u9999\u6e2f\u670d\u52a1\u5668_\u9999\u6e2f\u4e91\u670d\u52a1\u5668\u8d44\u8baf_\u670d\u52a1\u5668\u5e2e\u52a9\u6587\u6863_\u670d\u52a1\u5668\u6559\u7a0b\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.wsisp.com\/helps\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.wsisp.com\/helps\/#\/schema\/person\/358e386c577a3ab51c4493330a20ad41\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.wsisp.com\/helps\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/gravatar.wp-china-yes.net\/avatar\/?s=96&d=mystery\",\"contentUrl\":\"https:\/\/gravatar.wp-china-yes.net\/avatar\/?s=96&d=mystery\",\"caption\":\"admin\"},\"sameAs\":[\"http:\/\/wp.wsisp.com\"],\"url\":\"https:\/\/www.wsisp.com\/helps\/author\/admin\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09 - \u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.wsisp.com\/helps\/73747.html","og_locale":"zh_CN","og_type":"article","og_title":"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09 - \u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3","og_description":"\u90d1\u91cd\u58f0\u660e:\u672c\u6587\u6240\u6d89\u5b89\u5168\u6280\u672f\u4ec5\u9650\u7528\u4e8e\u5408\u6cd5\u7814\u7a76\u4e0e\u5b66\u4e60\u76ee\u7684,\u4e25\u7981\u4efb\u4f55\u5f62\u5f0f\u7684\u975e\u6cd5\u5229\u7528\u3002\u56e0\u4e0d\u5f53\u4f7f\u7528\u6240\u5bfc\u81f4\u7684\u4e00\u5207\u6cd5\u5f8b\u4e0e\u7ecf\u6d4e\u8d23\u4efb,\u672c\u4eba\u6982\u4e0d\u8d1f\u8d23\u3002\u4efb\u4f55\u5f62\u5f0f\u7684\u8f6c\u8f7d\u5747\u987b\u660e\u786e\u6807\u6ce8\u539f\u6587\u51fa\u5904,\u4e14\u4e0d\u5f97\u7528\u4e8e\u5546\u4e1a\u76ee\u7684\u3002 🔋 \u70b9\u8d5e | \u80fd\u91cf\u6ce8\u5165 \u2764\ufe0f\u00a0\u5173\u6ce8 | \u4fe1\u53f7\u9501\u5b9a 🔔\u00a0\u6536\u85cf | \u6570\u636e\u5f52\u6863\u00a0\u2b50\ufe0f\u00a0\u8bc4\u8bba | \u4fdd\u6301\u8fde\u63a5💬 🌌\u00a0\u7acb\u5373\u524d\u5f80\u00a0👉\u6656\u5ea6\u4e28\u5b89\u5168\u89c6\u754c🚀\u200b \u200b","og_url":"https:\/\/www.wsisp.com\/helps\/73747.html","og_site_name":"\u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3","article_published_time":"2026-02-08T02:09:40+00:00","og_image":[{"url":"https:\/\/www.wsisp.com\/helps\/wp-content\/uploads\/2026\/02\/20260208020934-6987f05ebfcdf.png"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"admin","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"2 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.wsisp.com\/helps\/73747.html","url":"https:\/\/www.wsisp.com\/helps\/73747.html","name":"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09 - \u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3","isPartOf":{"@id":"https:\/\/www.wsisp.com\/helps\/#website"},"datePublished":"2026-02-08T02:09:40+00:00","dateModified":"2026-02-08T02:09:40+00:00","author":{"@id":"https:\/\/www.wsisp.com\/helps\/#\/schema\/person\/358e386c577a3ab51c4493330a20ad41"},"breadcrumb":{"@id":"https:\/\/www.wsisp.com\/helps\/73747.html#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.wsisp.com\/helps\/73747.html"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.wsisp.com\/helps\/73747.html#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9875","item":"https:\/\/www.wsisp.com\/helps"},{"@type":"ListItem","position":2,"name":"\u24eb\u2044\u2081\u2082 \u27e6 OSCP \u2b16 \u7814\u8bb0 \u27e7 Windows\u6743\u9650\u63d0\u5347 \u27b1 \u672a\u52a0\u5f15\u53f7\u670d\u52a1\u8def\u5f84\u6f0f\u6d1e\u5229\u7528\uff08\u4e0b\uff09"}]},{"@type":"WebSite","@id":"https:\/\/www.wsisp.com\/helps\/#website","url":"https:\/\/www.wsisp.com\/helps\/","name":"\u7f51\u7855\u4e92\u8054\u5e2e\u52a9\u4e2d\u5fc3","description":"\u9999\u6e2f\u670d\u52a1\u5668_\u9999\u6e2f\u4e91\u670d\u52a1\u5668\u8d44\u8baf_\u670d\u52a1\u5668\u5e2e\u52a9\u6587\u6863_\u670d\u52a1\u5668\u6559\u7a0b","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.wsisp.com\/helps\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"zh-Hans"},{"@type":"Person","@id":"https:\/\/www.wsisp.com\/helps\/#\/schema\/person\/358e386c577a3ab51c4493330a20ad41","name":"admin","image":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.wsisp.com\/helps\/#\/schema\/person\/image\/","url":"https:\/\/gravatar.wp-china-yes.net\/avatar\/?s=96&d=mystery","contentUrl":"https:\/\/gravatar.wp-china-yes.net\/avatar\/?s=96&d=mystery","caption":"admin"},"sameAs":["http:\/\/wp.wsisp.com"],"url":"https:\/\/www.wsisp.com\/helps\/author\/admin"}]}},"_links":{"self":[{"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/posts\/73747","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/comments?post=73747"}],"version-history":[{"count":0,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/posts\/73747\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/media\/73730"}],"wp:attachment":[{"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/media?parent=73747"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/categories?post=73747"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/tags?post=73747"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.wsisp.com\/helps\/wp-json\/wp\/v2\/topic?post=73747"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}