Cloud Security

[Author] xtxxp[Cracking tool] PEiD/od[Cracking platform] xp3[Software name] multi-function password cracking software V4.5[Software size] 5.63 MB[Original download] http://www.skycn.com/soft/16016.html[Protection method] registration code + restart

SHA1 algorithm principle 1 Introduction to SHA1 Algorithms Secure Hash Algorithm (Secure Hash Algorithm) is mainly applicable to Digital Signature Algorithm DSA defined in Digital Signature Standard DSS ). For messages with a length less than 2 ^ 64-

Accidentally turning out the tools in the hidden aramro machine empty download ida pro olladbg simple analysis;The peid is written in vc ++: These three items: Win application at first glance;In winmain, there are two CreateThread and two Sleep

Basic compilation of brute-force cracking1. Getting started with cracking... 1. Compile common jump commands:Jump if JZ/JE is equal or zeroJump if JNZ/JNE is not equal or not zeroJL/JLE is less than/less than or equal to the jumpJump if JG/JGE is

Additional reading: Using OllyDbg to remove RLPack V1.17 shelling DLL: html "> http://www.bkjia.com/Article/200707/17997.html DLL with Ollydbg hand remove UPX shelling: http://www.bkjia.com/Article/200608/11991.html   [Target Program]: EdrLib. dll

[Article Title]: Analysis of the ImageEn2.26 algorithm of the delphi Control[Author]: 8713007[Software name]: ImageEn2.26[Software size]: 12 M[]: Search and download by yourself[Shelling method]: No shell[Protection method]: serial

Affected products: ImageCMS Developer: www.imagecms.net Affected Versions: 4.0.0b and earlier Tested Version: 4.0.0b Defect type: SQL Injection [CWE-89] Status: officially fixedDiscovered and Provided: High-Tech Bridge Security Research Lab (https://

Problematic site: http://www.minehome.cn At first glance, many hats are all about flash. I looked for it, found an SQL, and threw it to my dear SQLMAP. It actually told me the DBA! SQL Injection: http://www.minehome.cn /News. aspx? SearchInfo = 1

In include/shopcar. class. php first checks how the shopcar class generates the 239 function saveCookie ($ key, $ value) 240 {241 if (is_array ($ value) of the cookie )) 242 {243 $ value = $ this-> enCrypt ($ this-> enCode ($ value )); 244} 245 else

PHPWind uses a lot of flash files. 1. Vulnerability files: http://www.phpwind.net/res/js/dev/util_libs/jPlayer/Jplayer.swf 2. Check the code after decompiling: this. jQuery = (loaderInfo. parameters. jQuery + "('#") + loaderInfo. parameters. id) + "'

The primary node uses an instance to describe it again.This article is a summary of the practices of safedog. Every example is based on the experience of safedog.Divided0X01 Injection0X02 upload0X03 Privilege Escalation to provide one-stop services

1. Reset by mobile phone numberHttp://passport.haodf.com/user/resetpassword Use this URL to retrieve your password from your email address or mobile phone number.When we select the mobile phone number to find the password, the webpage jumps to the

By default, the IIS Site configuration file has two mbschemas. xm and MetaBase. xml. The path is C: \ WINDOWS \ system32 \ inetsrv \ (the everyone read permission is set in this directory .) metaBase. the xml file is the IIS configuration

I was interested in code auditing recently. Therefore, I wrote a process to check the code and find the vulnerability.I am also a beginner in code auditing. I am not getting started yet. I just want to find the following vulnerabilities:1. execute

One operation in the post, which does not filter data, results in an XSS. You need to move the mouse over the top to trigger it. You can use it with clickjacking or other operations.1. test the effect of hook eval in writing tools. I posted a post

The official version of zhisi message 4.1 allows you to directly upload an ASP execution file by posting a message and uploading an attachment. 'If Action = "addsave" Then KeywordsFilter (FilterKeyWord) Dim RequestU, intCount, I, formName,

# Title: vBulletin 5 Beta XX SQLi 0day # keywords: "Powered by vBulletin™Version 5.0.0 Beta "# Author: Orestis Kourides # Official Website: www.vbulletin.com # affected Version: 5.0.0 Beta 11-5.0.0 Beta 28 # Four platforms: Linux #! /Usr/bin/perl

Xss indicates Cross Site Scripting, which is similar to SQL injection attacks. SQL statements are used as user input in SQL injection attacks to query, modify, and delete data, in xss attacks, malicious scripts are inserted to control the

1. the include/dialog/select_soft.php file can expose the background of DEDECMS. Previous bosses could have skipped login verification and directly accessed the file without the administrator account. The new version is directly switched to the

Don't talk about it. Come on! 1. http://www.bkjia.com/Article/200806/27934.html 2. http://www.bkjia.com/Article/201203/125690.html   1. What is SQL Injection? view it with the keyword wikipedia. 2. Local test code: If the form is submitted correctly,