https://www.cyberciti.biz/networking/nmap-command-examples-tutorials/
https://hackertarget.com/nmap-cheatsheet-a-quick-reference-guide/
http://bencane.com/2013/02/25/10-nmap-commands-every-sysadmin-should-know/
http://xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx/course-info.aspx?id=8%27%20union%20select%201%27
0921
tomcat 7.0.X exploit
https://securityonline.info/apache-tomcat-remote-code-execution-vulnerability/
https://github.com/breaktoprotect/CVE-2017-12615
======
MSSQL SQL Injection
http://pentestmonkey.net/cheat-sheet/sql-injection/mssql-sql-injection-cheat-sheet
https://www.exploit-db.com/papers/12975/
https://www.owasp.org/index.php/Blind_SQL_Injection
http://securityidiots.com/Web-Pentest/SQL-Injection/MSSQL/MSSQL-Union-Based-Injection.html
https://upshell.wordpress.com/2011/06/11/mssql-tips-sql-injection/
http://www.sqlinjectionwiki.com/categories/1/mssql-sql-injection-cheat-sheet/
https://technet.microsoft.com/zh-tw/library/cc512676.aspx
https://www.defcon.org/images/defcon-16/dc16-presentations/defcon-16-alonso-parada.pdf
https://www.slideshare.net/chemai64/timebased-blind-sql-injection-using-heavy-queries-34887073