Cloud Security

Google Chrome Blink password protection Bypass Vulnerability (CVE-2016-1618)Google Chrome Blink password protection Bypass Vulnerability (CVE-2016-1618) Release date:Updated on:Affected Systems: Google Chrome Description: CVE (CAN) ID: CVE-201

Foxit Reader form out-of-range read Remote Code Execution VulnerabilityFoxit Reader form out-of-range read Remote Code Execution Vulnerability Release date:Updated on:Affected Systems: Foxit Reader Description: Foxit Reader is a small PDF

Mozilla Firefox Security Restriction Bypass Vulnerability (CVE-2015-4498)Mozilla Firefox Security Restriction Bypass Vulnerability (CVE-2015-4498) Release date:Updated on:Affected Systems: Mozilla Firefox Mozilla Firefox Description: Bugtraq

NetFlow Analyzer Vulnerability (CVE-2015-4418)NetFlow Analyzer Vulnerability (CVE-2015-4418) Release date:Updated on:Affected Systems: ManageEngine Netflow Analyzer Description: Bugtraq id: 75068CVE (CAN) ID: CVE-2015-4418NetFlow Analyzer is

Fashion and fashion: the most fashionable Buffer Overflow targetIn today's operating systems, memory defect vulnerabilities have become increasingly difficult to mine, and stack protection measures have made the original Buffer Overflow exploitation

Use drones or vacuum cleaners to black out enterprise wireless printers     A drone and a smartphone can intercept data transmitted by wireless printers outside the office building, as demonstrated by a group of iTrust researchers. In addition, the

WireShark hacker discovery tour-zombie email server 0x00 background Bots are also called Zombie machines, which can be remotely controlled by hackers. Once a zombie becomes a zombie, attackers can exploit it at will, for example, stealing data,

Differences between data mining and statistical analysis"Data Mining is based on statistical analysis, and most statistics analysis methods are used," said the instructor ". I have different points of view. Let's write something for your comments.

Wapiti lightweight Web security vulnerability scanning tool and wapiti scanning toolWapiti is a Web application vulnerability check tool. It has a "dark box operation" scan, that is, it does not care about the source code of the Web application, but

If you don't pay a ransom, you will be taken public on the Internet: Koler, The ransomware on Android phones. This is a new mobile phone ransomware in Canada. When a mobile phone user visits an adult website, the malware is infected and ransomware.

Analysis on the principle of bitcoin theft in one Trojan walletRecently, bitcoin security problems have occurred frequently. I wanted to find a wallet to steal bitcoin for analysis. At this time, the user smtp posted a post on the B forum to reveal

TDE encryption and Cracking Analysis of Microsoft SQL Server transparent data (Part 1) This survey started with a discussion with the customer about whether they should install TDE. If we want to select the most suitable tool for static data

Three methods to decrypt HTTPS traffic Web security is a system engineering. Any minor negligence may cause the collapse of the entire security barrier. For HTTPS, it provides three security guarantees: Content encryption, data integrity, and

Airline security: Getshell may affect the security of multiple hosts on the intranet due to a system vulnerability in Sichuan Airlines The shell process is rugged. Axis2 default password and can execute system commandsIt was discovered that it was

Case study | Analysis of a website's hacked intrusion track0x00 Introduction In this article, I will briefly introduce the website Upload Vulnerability and finally introduce the protection methods.0x01 background In September 15, 2015, a well-known

Restful api security design guide The full name of REST is REpresentational State Transfer, which indicates stateless transmission without session. Therefore, each request must carry authentication information. Rest is based on http and stateless.

Cms vendors using webscan360 can invalidate it through hpp (with cmseasy new SQL injection) Cms vendors that use webscan360 invalidate it through hpp (with cmseasy new SQL injection). After thinking about it, I don't know whether the vulnerability

Sap hana system exposed security vulnerabilities, static keys in the database   SAP well-known Memory Database Management System HANA has been exposed to be installed ?? The static encryption key is stored in the database. Sap hana is the fastest

ShopBuilder online mall post-type SQL Injection packaging (1 ~ 5) The demo test on the official website is successful.   No global filtering for postJust inject it directly ~#1  module/activity/admin/activity_product_list. If (! Empty ($ _ POST

WEB security: Introduction and solutions to XSS and SQL Injection Vulnerabilities1. Cross-site scripting (XSS) How XSS attacks work XSS, also known as CSS (Cross Site Script), is a Cross-Site scripting attack. It indicates that a malicious attacker