https://x7peeps.com/tags/%E4%BE%9B%E5%BA%94%E9%93%BE%E5%AE%89%E5%85%A8/index.htmlHugozh-CNSun, 21 Jun 2026 14:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/CI-CD-%E4%B8%8E%E6%9E%84%E5%BB%BA%E5%8F%91%E5%B8%83%E5%B9%B3%E5%8F%B0/CI-CD%E4%B8%8E%E6%9E%84%E5%BB%BA%E5%8F%91%E5%B8%83%E5%B9%B3%E5%8F%B0%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlSun, 21 Jun 2026 14:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/CI-CD-%E4%B8%8E%E6%9E%84%E5%BB%BA%E5%8F%91%E5%B8%83%E5%B9%B3%E5%8F%B0/CI-CD%E4%B8%8E%E6%9E%84%E5%BB%BA%E5%8F%91%E5%B8%83%E5%B9%B3%E5%8F%B0%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlCI/CD 与构建发布平台高危攻击链专题：TeamCity / Jenkins / GitLab 未授权 RCE 全解析 0x00 专题概述 CI/CD（持续集成/持续交付）平台是现代软件供应链的核心基础设施，承载着从代码提交到生产部署的全流程。一旦 CI/CD 平台被攻破，攻击者不仅可以窃取所有源代码和凭据，还能通过注入恶意构建步骤影响下游数千个用户——这正是供应链攻击的核心路径。https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/IT-%E8%BF%90%E7%BB%B4%E4%B8%8E%E7%B3%BB%E7%BB%9F%E7%AE%A1%E7%90%86%E5%B9%B3%E5%8F%B0/IT%E8%BF%90%E7%BB%B4%E4%B8%8E%E7%B3%BB%E7%BB%9F%E7%AE%A1%E7%90%86%E5%B9%B3%E5%8F%B0%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlSun, 21 Jun 2026 14:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/IT-%E8%BF%90%E7%BB%B4%E4%B8%8E%E7%B3%BB%E7%BB%9F%E7%AE%A1%E7%90%86%E5%B9%B3%E5%8F%B0/IT%E8%BF%90%E7%BB%B4%E4%B8%8E%E7%B3%BB%E7%BB%9F%E7%AE%A1%E7%90%86%E5%B9%B3%E5%8F%B0%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlIT 运维与系统管理平台高危攻击链专题：ManageEngine / PaperCut / ScreenConnect / Kaseya 未授权 RCE 全解析 0x00 专题概述 IT 运维与系统管理平台是企业 IT 基础设施的"神经中枢"，承担着终端管理、打印管理、远程支持、资产管理等核心职能。这些平台通常拥有极高的系统权限，且大量实例直接暴露在互联网上——一旦被攻破，攻击者即可获得对整个企业 IT 环境的全面控制。