Cloud Security

The OpenJDK 7 vulnerability has been fixed in Ubuntu 14.04 and Ubuntu 14.10. The OpenJDK 7 vulnerability has been resolved in Ubuntu 14.04 and Ubuntu 14.10. We recommend that you upgrade it as soon as possible. Canonical released the new OpenJDK

Advanced shellcode Programming Technology on windows Preface Concept of binary function shellcode 3. Selection of advanced languages Iv. x86 c2shellcode framework 5x64 c2shellcode framework Summary 7. Thank you Preface The technology described in

Self-cultivation of Trojans: The latest variant of the financial malware f0xy, which is quite witty Security researchers discovered the first f0xy malicious program in January 13, 2015, and then the f0xy infection capability was constantly changing

Asus releases patches to fix vro Vulnerabilities [NOTE 1] The infosvr service of the Asus router has a security vulnerability that can be exploited to execute arbitrary commands on the local network. The affected router models include RT-N66U,

Linux Kernel 'vdso _ addr () 'Function Local Security Restriction Bypass Vulnerability Release date:Updated on: Affected Systems:Linux kernel Description:Bugtraq id: 71990CVE (CAN) ID: CVE-2014-9585 Linux Kernel is the Kernel of the Linux

Zenoss Core version check Remote Code Execution Vulnerability Release date:Updated on: Affected Systems:Zenoss Core Description:CVE (CAN) ID: CVE-2014-6261 Zenoss Core is an open-source IT monitoring solution. In versions earlier than Zenoss

SniffIt 'sn _ overflow file. c' multiple Stack Buffer Overflow Vulnerability Release date:Updated on: Affected Systems:SniffitDescription:Bugtraq id: 71318CVE (CAN) ID: CVE-2014-5439 Sniffit is a data sniffer and monitoring tool. It can run on a

How to crack the mobile phone shielding device/signal jamming device I believe that students in the past few years know what it is and the most common radio interference equipment in the test room. The main cause is to interfere with the cell phone

Summary of password scanning and cracking in penetration testing0x00 preface a test always involves "password" and "encryption and decryption ". In the process of stepping on, attempts to use weak passwords are an essential process, from capturing

Ten Suggestions for enterprise system security management and enhancement Security management and O & M of enterprise systems involves anti-intrusion and leakage of the company's information systems and data. This is a basic task of great attention

The most complex poser malware PoSeidon so far Cisco Security Solutions (CSS) researchers recently discovered a new malware PoSeidon for PoS systems, which is extremely complex, it is called the most complex PoS malware so far. Customers may use the

Virus Trojan scan: Reverse Analysis of pandatv incense (medium)I. Preface The previous article explained the analysis at the entrance to the disassembly code of the "pandatv incense" virus sample. Although the core part of the virus has not been

Use HTTP Headers to defend against WEB attacks (Part1) We often see various attack methods such as Xss, clickjacking, and session hijacking. In this series of articles, we will introduce various HTTP headers that can be used to defend against common

WIFI universal key password query interface algorithm cracking (unlimited query of users' AP plaintext passwords) All Apps involve communication interfaces. After reading the APP with the master key, the plaintext HTTP protocol is simple. There is a

Yiche.com won the CDN Management System in multiple positions With so many vulnerabilities, I had the illusion that it was a honeypot. The importance of the CDN management system is needless to say. However, the following content is found in a log

KPPW Latest Version SQL injection vulnerability 4 (multiple injection and unauthorized analysis due to the same problem) KPPW latest SQL injection vulnerability 4 (multiple injection and unauthorized injection due to the same

Wordpress account brute-force cracking Protection I. Modify the database table prefix The default table prefix is wp _. If you have not modified the table prefix when installing the blog, you can refer to this article to modify the table

General SQL injection vulnerability in the CMS system of Peking University founder Xiang Yu SQL injection is caused by the lack of filtering in the interface of the CMS system "user login verification" of Peking University founder Xiang Yu 正 CMS

Free Open-source album piwio & lt; = v2.6.0 SQL Injection Vulnerability (0day) Piwio is one of the world's most famous free open-source album systems. It is based on the PHP + MySQL architecture. This framework is easy to build and favored by

Use and Analysis of SQL injection vulnerability in IP. Board 3.4.5 I. background information  First, let's briefly introduce the background information of this web program and some basic information about this vulnerability: IPB is called the