Cloud Security

Research on Android system call hook (I) When talking about Xposed, everyone should be very familiar with it. It mainly hooks the target function at the Java layer, and is powerless to call the underlying system. Since the hook system calls need to

Cisco announced it would check whether the software contains backdoor code After Juniper's firewall product NetScreen finds two backdoors, Cisco announced that it would re-examine its software in case it contains backdoor code. The backdoors of

SECCON 2015 CTF Selection: A 400-point Android APK reverse question | focus on hackers and geeks     This is the second question of "Android APK reverse" in the SECCON 2015 CTF challenge, with a score of 400. The prompt is: "The key is stored in

Easy access to company master router control permission note Let's talk about the background first. The company where the blogger is located is an advertising company, which was recently relocated. In order to save costs, I pulled a 50 m Unicom

ZTE Huawei Guangda text router/CAT found 0-Day Vulnerability Security researchers found a large number of zero-day vulnerabilities in two routers and six modem products produced by ZTE, Huawei, Guangda, and text technology, attackers can launch

Cisco Unity Connection XSS Vulnerability (CVE-2015-6390)Cisco Unity Connection XSS Vulnerability (CVE-2015-6390) Release date:Updated on:Affected Systems: Cisco Unity Connection 9.1 (1.10) Description: CVE (CAN) ID: CVE-2015-6390Cisco Unity

FFmpeg smka_decode_frame Function Denial of Service Vulnerability (CVE-2015-8365)FFmpeg smka_decode_frame Function Denial of Service Vulnerability (CVE-2015-8365) Release date:Updated on:Affected Systems: FFmpeg FFmpeg FFmpeg FFmpeg

Technical analysis: Android libStagefright Vulnerability Analysis The article corresponds to the CVE-2015-{1538,1539, 3824,3826, 3827,3828, 3829} 7 CVE, the specific ing relationship is unknown. This vulnerability affects the security of Android 95%.

Sigreturn Oriented Programming (SROP) Attack Principle I wrote an article last year to introduce the BROP attack. The response was quite good and helped many people understand this very smart attack principle. Of course, you can also go to my blog

5 cents to build your own Throwing Star LAN Tap Cause: The WEB "Wang" was boring to write PHP code at home on weekends. I was thinking about something interesting. I saw Throwing Star LAN Tap, but I didn't have time to play it, eager to open a

For example, how can I quickly remove the cmder.exe VIRUS IN THE WINXP system? Nowadays, computers are becoming more and more highly technical, and more functions are available. Many of our economic aspects have also started to work on the Internet.

Reverse basic OS-specpacific (2) Chapter 65 local thread storage TLS is a unique data area of each thread. Each thread can store the data they need here. A famous example is the standard C global variable errno. Multiple Threads can use errno to

Shenzhou.com delivery treasure Getshell exposes millions of information and can detect 89 internal network hosts. RT Http: // 202.108.145.58/default/  JAVA deserialization Command Execution Vulnerability  Intranet IP Address  Directly write

The Asia Pacific Daily website has the SQL Injection Vulnerability (sensitive information \ can enter the background Getshell) The Asia Pacific Daily News Agency is sponsored by the Asia Pacific General branch of Xinhua News Agency (Xinhua News

Webshell Security Detection (3)-Discover "unknown webshells" based on Behavior Analysis"1. "known" or "unknown" Known, known, unknown, and unknown, the security industry has talked a lot recently. Currently, the hot "threat intelligence" in the

SQL injection error reported for DBA permissions at a location in the giant Network An error message for injection of DBA permissions at a location in the giant Network POST/admin/login. php HTTP/1.1Content-Length: 87Content-Type:

SQL Injection Quick Start v1.0 (continuous update) Note: All the quotation marks in this article are Chinese quotation marks for aspect viewing.1. Step 1: Introduction to common databases ASP + access ASP + mssql PHP + mysql Like this link

PfSense XSS vulnerability analysis PfSense is an open-source network firewall software based on FreeBSD operating system. It has been widely used by companies around the world to protect its infrastructure.Last year, we found some security

Research on the Utilization posture of a secondary injection in ECSHOP   I recently encountered ECSHOP During Penetration and searched the internet. The new vulnerability was the two injections submitted by wooyun dark Ranger. ECSHOP latest full

Windows Website security dog upload interception bypass Website security dog's upload interception on win bypasses Upload code: When the uploaded file extension contains some special characters (such as bypass. php? X, here X represents