Cloud Security

Oracle Database firewall technology is an advanced database in-depth defense system developed by Oracle. It provides a series of database security products that implement access control based on data encryption and shielding, and monitors activities

[Author] simonzh2000 [Tools] Ollydbg1.10, LordPE [Cracking platform] Win2000 Pro SP4 English [Software name] Mole.exe with Thinstall2.517 shelling [Author's statement] This note is only used for study and communication. It is just a beginner who is

I have seen some people asking me how to remove the bjfnt 1.2 shell over the past few days. So I wrote this article because the latest version is version 1.3, so I will only talk about the 1.3 shell here, I think 1.2 is simpler than 1.3. of course

By Xiaofei lankerrLet's talk about theme.The main program sends the entered activation code to the driver for verification. forcible modification of the return value does not work.The program uses ODPS to download powermaster.exe and uses three

Links blogIt's actually a bit like a title party.I forgot the password of the machine before, so I have been subject to many restrictions and finally have the opportunity to change it back.Today, I checked the file x:/ggx/config/, which contains the

A week ago, a friend gave me a software, saying that the dongle was lost and the software could not be used. I was very interested when I heard about dongle protection. I haven't seen the software yet. I agree with this. Who knows that this week has

I think the best way to really understand pe is to write a program to obtain pe-related information, so I tried to write code by myself based on what I learned on the forum, of course, in order to intuitively reflect my thoughts, I wrote the console

Today, I read the news and found that 12306 of the false websites www.12306.cm are prepared to make it harmonious. Go to www.12306.cm It seems that all the connections are directed to 12306.cn. it turns out to be fraudulent traffic, so it is

PS: there are many situations in PHP that bypass GPC. This article only summarizes some of the more common ones, and it is very simple to write [because of my limited level]. You are welcome to actively make a brick :) 1. data transfer through the

Yourphp is an open-source cms developed based on the thinkphp framework. The stored xss vulnerability was discovered when you tried the cms. To be persuasive, you used the official demo to display the xss process, in yourphp official

Today, we are penetrating a website. Let me briefly describe it. Php + mysql. There are injection points. Direct havij injection. The hl_admin table is displayed. Then inject Get account and password The password is 32-bit. Please try again ..

A site ,., so I plan to first upload an Ashx script and then generate the Aspx file in the current directory (the target cannot execute the Asp file). The following Ashx code is found on the Internet: using System; using System. web; using System.

Malicious swf can obtain cookies in the swf domain under iframe. The more users, the more dangerous the website is, because the attacks are hidden in China, especially QQ and BAIDU, in foreign countries, gg, fb, etc ----------------------------------

1. The main station of Wanda film website has deployed a powerful verification code to reset the password of this module, so there is no problem here! 2. However, the website accessed by the Mobile Terminal http://m.wandafilm.com If there is a

While a traditional cross-site scripting vulnerability occurs on the server-side code, document object model based cross-site scripting is a type of vulnerability which affects the script code in the client's browser.DOM or the document object model

 Just now-3-throwing a station with organic oil in the group After looking at the interval, we can see that the-3-period master uses 6 minutes to prepare a shell.   The process is as follows: 1. Register a user first 2. Generally, this type of

This method is mainly used to cross-site when the executable directory cannot be found. Make sure you know the target site directory. Use php.exe for Cross-site access, but it seems that you only have the read permission. Execute c: \ php \

If you change the order amount for any payment, the payment interface should have been upgraded, but you can still change it. The order has not been added with the paid amount to register and place an order, and you can pay for it, select lakara

Required: magic_quotes_gpc = Off DedeCMS member center Short Message SQL Injection Vulnerability. You can use this vulnerability to obtain the administrator password. Someone mentioned the vulnerability on Weibo and occasionally caught a weakness.

The Arbitrary File Upload Vulnerability in ThinkSNS can cause website intrusion and user data leakage. Are you at a high risk?The arbitrary file upload vulnerability exists in the document uploading area of the ThinkSNS group. This vulnerability can