Cloud Security

Source: Tianji yesky Nowadays, many users are aware that viruses are harmful to computers. installing anti-virus software is essential. The anti-virus software installed on Windows has a friendly graphic interface, you only need to press the mouse

I. Reasons Why viruses cannot be killedIt is often said that the virus software reported to have killed the virus, but the virus still exists after it is restarted and cannot be killed. The following are the main reasons why viruses cannot die:1.

Speaking of viruses, it's always a bit mysterious. I think it's so painful to compile the first dos virus in the past. It took more than three months from the beginning to the end, and it's also a mess, recently, I was wondering if I was infected

Virus: Trojan-PSW.Win32.OnLineGames.ccVirus Type: TrojanInfected system: Windows 98 or laterDevelopment Tool: Borland Delphi 5.0Shelling type: None Virus description:The virus is a trojan. After the virus runs, it derives a virus file, modifies the

[Em] e100 [/em] (smiling face) format is used for the phone space message board. Attackers can insert malicious code into [em] e100 "xss" [/em] To steal user authentication information and access user space. View private content such as private

I have the permission to access the website, but the Administrator's password is complicated and cannot be cracked by MD5. What should I do if I want to get his password?Do some work in the login file... I will paste a modified one.Replace the

The default users of the oracle system Library include sys, system, internal, and scott. The first three permissions are system permissions ..Let's talk about database comments: access supports null and % 00 comments; mssql supports -- And; watching;

Just a few days ago, the injection vulnerability of 5.1 exploded. When detecting a website, the other party found that HDWiKi V 4.0.3 was used by the other party. It seems that this version does not work for template writing on the Internet, after

The cause is that an xweibo injection vulnerability was discovered. However, it was found that this function requires management permissions. This is always the case... But find something interesting.Detailed description:Xweibo first implements a

The member center's query of member information statement filtering is lax, resulting in the url can submit injection parameters;The member center does not strictly filter uploading actions, resulting in an upload vulnerability.Detailed description:①

I discovered whether the forum was dnt or an old version. The most important thing was that no patches were installed...Instructions:Http://nt.discuz.net/showtopic-135589.html Http://xyj.kugou.com/bbs/admin/ajax.aspx? AjaxTemplate = ajaxtopicinfo.

A variable overwrite vulnerability exists in the joomla user registration process, which allows attackers to directly register an administrator account.Detailed description:/Components/com_users/controllers/registration. phpPublic function register (

1. login http://t.163.com2. Access http: // 50.19.159.231/163.html3. Go back to the Weibo homepage and send Weibo messages and follow them automatically.Proof of vulnerability:  163 weibo csrf test Solution:Check referer  Author PiaCa

1. The internal query interface is not verified and is open anonymously. Http: // 123.126.33.234: 8080/api/statistic/   2. SVN leakage in the internal systemDNS Management System Http: // 123.126.33.236/pages/. svn/entriesVideo Review Management

Goals: http://www.bkjia.com (replace only the target site, not the site)In the previous shell, I did not test it in advance. Check your luck !!!!!! Target Server Information CollectionUpload a TrojanFirst, run whoami.  Low Permissions View port  1433

In the monthly subscription task, the submitted data is not verified during the payment process, resulting in changes to the submitted amount, so that the actual amount is different from the monthly subscription amount.Detailed

The problem lies in the simplified business. First, apply for a simplified product. Enter the Intranet IP address for the website address to directly access the Intranet web.Fill in the Intranet IP: 10.0.183.1 this guess a little difficult, if not

PrefaceThis is an example of a penetration test report released by offensive security. Offensive security is the creator of backtrack-linux.org and exploit-db.com.OverviewOffensive security has been authorized to perform a penetration test on the

The audit target is what I saw on the exploit-db network. Pligg CMS 2.0.0rc2-CSRF File Creation Vulnerability -Create File by CSRF Exploit-">   The above is the exp of the vulnerability exploitation code. Let's look at the source code. I analyzed

Security of a website involves many aspects. Code security is an important factor. Code audit is used to improve code security. So let's talk about code audit, this time we use dvwa.DVWA (Damn Vulnerable Web Application) DVWAIt is a set of WEB