Cloud Security

Vswitches play an important role in protecting the security of virtual infrastructure. Therefore, you can learn how to apply the VMware vSwitch Security Configuration to minimize the chance of your virtual infrastructure being compromised. To

Recently there was an IE 0day (CVE-2014-0322) used for hanging horses. Although this vulnerability exists in IE, in order to achieve successful exploitation, the sample also uses flash as an aid to break through various protection measures. The

After xx conducted a brutal overflow test on the pcman ftp software last semester (the FTP user name is exclusive and the version is unclear), I also began to learn about reverse and overflow, google searched pcman's ftp and found this overflow

Many people ask me which operating system is most suitable for hackers. I will tell you that almost every professional hacker uses Linux or Unix. Although some intrusion can be achieved through Windows and Mac OS, almost all hacker tools are

The other day, FireEye released a new 0-day attack report using AdobeFlash, and Adobe released a security update based on the vulnerability. According to FireEye, many websites redirect visitors to the following malicious servers that contain

By default, Windows opens many service ports on our computers. Hackers often use these ports for intrusion. Therefore, understanding port knowledge will help us improve internet security. First, let's take a look at what is a Port: In network

RAID 5 is a storage solution that combines storage performance, data security, and storage costs. RAID 5 can be understood as a compromise between RAID 0 and RAID 1. RAID 5 can provide data security for the system, but it is more secure than Mirror,

Today is boring. I haven't opened my job, and I don't know what to do. I haven't come to my blog for a long time. Let's take a look at it today. Ah. No updates in 10 months. Update it today. This article is actually written by someone else. I will

Last year, I needed a hardware firewall. I tested three hardware firewalls with routing functions, there is Sangfor, hillstone, And a brand that won't be mentioned because of problems. Every firewall has been tested for one month. I have found some

Today, I encountered a very interesting topic, recursive routing. Although gre over ipsec is configured, the routing interface is down back and forth, * Mar 4 15:08:34. 435: % OSPF-5-ADJCHG: Process 10, Nbr 4.4.4.4 on Tunnel0 from LOADING to FULL,

Preface] A large number of data recovery cases show that if the data can be effectively protected from damage after an error, the salvage rate is extremely high. However, the reality is that, when data errors occur, operations that do not understand

Zhou Yi has the cloud: "poor, poor, change, and general rule for a long time". People must constantly change themselves to adapt to the changing society. Otherwise, they will be out of touch with society and be eliminated by society. For enterprises,

Cause One of our customers wants us to perform penetration tests on their websites to discover their weaknesses and help improve security. After obtaining the penetration test authorization from the other party, we began to analyze the website. Find

I learned these things in dvwa (Damn Vulnerable Web App). I installed dvwa in my free space. If you are interested, please check it out. DVWA If you want a user name and password, you can contact me: sq371426@163.com Dvwa is provided by google for

Address: http://kdweibo.com/home click in turn: Login --> Forgot login password and then login to the mailbox to check whether the reset link has defects can be seen, the request link has u and t parameters: Try several times can be observed, u is

0x00 test environment Operating System: Windows Server 2008 R2 Enterprise Service Pack 1x64 IIS Version: IIS7.5 program: asp.net0x01 IIS7.5 Installation   Common http functions: Enable static content, default documents, HTTP errors, directory

The latest version of XDCMS enterprise management system, due to lax filtering, can bypass restrictions, resulting in SQL injection in the XDCMS enterprise management system login function, look at \ system \ modules \ member \ index. PHP file:

0x01 ASP introduction: ASP is a server-side scripting environment that can be used to create and run dynamic Web pages or Web applications. ASP Web pages can contain HTML tags, common text, script commands, and COM components. Using ASP, you can add

Vulnerability cause input verification error level affects system Wordpress Persuasion Theme 2.0 Wordpress Persuasion Theme 2.3 does not affect system harm remote attackers can exploit this vulnerability to obtain system file content. CVSSv2:

Background injection has no value--however, this point can be constructed by any statement including drop database; and select into outfile also comes with a burst path to get getshell good admin \ include \ lib_main.php row 718 Function get_filter (