Cloud Security

Subgraph OS: system analysis to protect user security and privacy As the first GNU/Linux release for GNU/Linux Desktop Security, Subgraph OS has been well received by many communities, some time ago, the open technology fund provided 12 months of

CitusDB database Open Source Citus Data, which develops extended features for PostgreSQL, announced that its distributed database CitusDB is open-source under the AGPLv3 license. Previously, CitusDB was a private database that added horizontal

Cisco IOS/ios xe Smart Install Vulnerability (CVE-2016-1349)Cisco IOS/ios xe Smart Install Vulnerability (CVE-2016-1349) Release date:Updated on:Affected Systems: Cisco IOS Description: CVE (CAN) ID: CVE-2016-1349Cisco IOS is an interconnected

Privilege Escalation Analysis for Android system vulnerabilities (1) Preface 1.1 What is rootRoot -- that is, the Elevation of Privilege of the system mentioned here. It is usually used for Android mobile phones, so that users can obtain the

Android LIST_POISON Security Mechanism Bypass Vulnerability (CVE-2016-0821)Android LIST_POISON Security Mechanism Bypass Vulnerability (CVE-2016-0821) Release date:Updated on:Affected Systems: Android 6.0 Description: CVE (CAN) ID: CVE-2016-082

XZERES 442SR Wind Turbine XSS Vulnerability (CVE-2016-2287)XZERES 442SR Wind Turbine XSS Vulnerability (CVE-2016-2287) Release date:Updated on:Affected Systems: XZERES 442SR Wind Turbine Description: CVE (CAN) ID: CVE-2016-2287XZERES 442SR

Siemens APOGEE Insight information leakage (CVE-2016-3155)Siemens APOGEE Insight information leakage (CVE-2016-3155) Release date:Updated on:Affected Systems: Siemens APOGEE Insight Description: CVE (CAN) ID: CVE-2016-3155APOGEE Insight is a

Nod32 registration code 2016 latest nod32 registration code sharing eset nod32 username and password Download the latest nod32 activation code: Note: (Note: When this tool runs, it first verifies the eset id (all versions are supported). If it is

Metaphor-A real life Stagefright exploit analysis0x00 Summary This article describes how to use Stagefright, one of the most notorious vulnerabilities in Android. Before that, we thought this vulnerability was very difficult to exploit. In this

An Sheng Tianping's other system can use Getshell to cause leakage of sensitive information such as a large number of user identity policies. I accidentally found another one. Previously Submitted a WooYun: the auto insurance system Getshell of

A website of Anhua agricultural insurance has the Java deserialization vulnerability, which causes Getshell to connect to the database. RT Verification: http: // 221.8.57.99: 7002/uddiexplorer/1.jsp? O = vLogin password: MWAsk the vendor to delete

Getshell can be used to write arbitrary files on a site of Beijing xinnet digital.   Beijing xinnet Digital Information Technology Co., Ltd. was established in 1993 and is a subsidiary of China Digital group. It is a top Internet basic application

Leakage of vpn Information of anzhi network leads to entry into the Intranet Leakage of anzhi network information leads to entry into the

Starling stars FlowEye intrusion-Explanation of WebService application Vulnerabilities WebService is a Web application branch that can execute any function from simple requests to complex business processing. After deployment, other WebService

55bbs email system SQL injection requires parameter Filtering 55bb mail system SQL Injection injection link: http://pop3.55bbs.com/extmail/cgi/index.cgihttp://smtp.55bbs.com/extmail/cgi/index.cgi Injection Parameter: domain (POST) Type:

How to turn Self-XSS from the Uber Bug rewards program into Good-XSS At present, the Uber Bug rewards program has been open to the public, and now I can easily give my suggestions to Uner. On the Uber partner page, a host is used to log on to and

Sina api.sina.cn domain name SQL injection involves 78 databases to be filtered Sina api.sina.cn domain name has SQL injection, involving 78 databases, user data, chat information, server configuration, transaction information, and many other

Analysis on the advantages and disadvantages of Uber's three vulnerabilities Through careful design, the author turns a self-XSS chicken ribs and two csrf chicken ribs into a high quality vulnerability.Original article:

Nmap memo form: Part 1 from discovery to vulnerability utilization analysis     During the investigation, the initial phase of information collection is scanning.What is investigation? Investigation is to collect as much information as possible on

BetterCap: a modular and lightweight MiTM Framework Analysis BetterCap is a powerful, modular, and lightweight MiTM framework that can be used to launch various types of Man-In-The-Middle attacks on The network ). It can also help you operate HTTP