Cloud Security

#01 Overview Volatility is an open-source memory forensics analysis tool for Windows, Linux, MaC, and Android. It is written in python and operated by command lines. It supports various operating systems.Project

The openness of the Android system makes it easier to develop Android software, and it is precisely because its openness accelerates the development of mobile Internet. However, there are always two sides to the problem. The completely open Android

In the previous article, we talked about the malicious sample bypassing the driver firewall mechanism. Next we will explain how the sample uses this Driver Vulnerability to escalate kernel privileges. Please make an axe to the wrong part. To prevent

Route questions: 1. Read website configuration. 2. Use the following VBS: On Error Resume NextIf (LCase(Right(WScript.Fullname, 11)) = "wscript.exe") ThenMsgBox Space(12) & "IIS Virtual Web Viewer" & Space(12) & Chr(13) & Space(9) & " Usage:Cscript

In Internet chat (instant messaging), you can use open-source free software to ensure that the software has no backdoors and use encrypted transmission protocols (such as SSL-based HTTPS) this ensures that the information is not intercepted by a

[Preface] In the information security risk management field, there are three requirements or problems: • Enterprise top management needs to see the overall situation of enterprise information security risks from a macro perspective • The measurement

For Loop example For Loop Syntax:1for VARIABLE in 1 2 3 4 5 .. N2do3command14command25 commandN6 done 01 #! /Bin/bash0203foriin1 2 3 4 50405do0607 echo "Welcome $ I times"0809 done10 Bash version 3.0 + #! /Bin/bash For I in {1 .. 5} Do Echo

I am also a newbie myself. I haven't been in touch with linux for a long time. I recently encountered a problem when I learned the BASH export command (the book says that export is used to change a custom variable to a system environment variable ):

This is a script written to a friend. It is used for cdn and is often used for attacks. However, the domain name cannot be blocked once an attack is encountered. We can choose to make a decision. This is the value of alexa in php. This is used

FTP is the first thing INTERNET enthusiasts are familiar with. It facilitates file sharing (cross-platform access), but the security of ftp transmitted in plain text has become a big problem. This article focuses on the security of ftp from four

Redhat is currently the most popular type of Linux in enterprises, and more hackers are attacking Redhat. How should we reinforce the security of such servers? I. Account Security 1.1 lock unused user-created accounts in the system Check

Whether you are an ordinary Linux Desktop user or a system administrator managing multiple servers, you are faced with the same problem: an increasing number of threats. Linux is an open system that allows you to find many ready-made programs and

The firewall wall client is also a Web proxy client by default. Why? After the firewall client is installed, the browser is automatically set to make the browser a Web proxy client of TMG. When the firewall client accesses http/https/ftp, it will

In the past two days, a friend of an internet cafe asked for help from hanhaiyuan, saying that most of their Internet cafes were installed with wangwei masters and many Trojans had been penetrated, causing some losses. Based on the analysis over the

If you have analyzed the QQ protocol, you may know that QQ data transmission is encrypted using the tea algorithm. The tea algorithm is a symmetric encryption algorithm featuring high speed and small amount of code (the Core algorithms for

0 × 00Preface After uploading the webshell, you may not be able to execute the command. In this case, we should analyze the principle and come up with a way to bypass it. The defender must also think about a stronger defense based on the bypass

Hello list! There are multiple vulnerabilities in Js-Multi-Hotel plugin for WordPress.Earlier I wrote about two other vulnerabilities. These are Abuse of Functionality, Denial of Service, Cross-Site Scriptingand Full path disclosure vulnerabilities

Various simple tests such as Permission Bypass, upload, XSS, and SQL Injection for any of our CRM systems A company's internal network used this system. The first time I saw it, I couldn't help looking at WEB applications ~~ 1. UploadSignature

# Title: WordPress formcraft Plugin SQL Injection # Author: Ashiyane Digital Security Team # software download: www.wordpress.org # test environment: Windows, Linux # vulnerability: SQL Injection # Location1:

Web applications generally have system file operation functions, often used to submit parameters to specify the file name, such as: http://www.nuanyue.com/getfile=image.jgp when the server processing transferred image.jpg file name, the Web