Cloud Security

  1. register an Apple ID Recently, the iOS7 + system requires that all iPhone phones be activated with your apple ID when they are activated after being refreshed. Therefore, your new mobile phone must be activated with your own Apple ID, it can

You will not design a network with Internet access without a firewall. So why do you have an unencrypted wireless network? Understanding wireless encryption is very important for deploying a secure wireless network. Wireless Transmission security is

I browsed the circle of friends yesterday and saw this article from @ binarytree. At that time, I was not happy. are programmers so weak? Go directly to the topic. Next, let's take a look at my social engineering case. Let's see what happens after

Every Apache Struts2 vulnerability outbreak has triggered a storm on the Internet. We have sorted out information about the Apache Struts2 high-risk vulnerability for your reference in recent years. For this Apache Struts2 vulnerability, aligreennet

Attackers can modify the personal information of any user by modifying the information of any user.If a buddy has a trembling hand, all of them will be changed. Now the time is clear. That's right. I am insomnia.After watching a movie (XX female), I

MetInfo system backup files can be downloaded at will in a specific environment using the short file name mechanism in Windows, such as C: \ 2cto12312394944545.txt can use C: \ 2cto ~ 1. txt access generates a backup file named http: //

Test Environment (PHPOK): Add a user: capture the following content: POST/phpok/admin. php? C = admin & f = save HTTP/1.1 Host: www.evil.com Proxy-Connection: keep-alive Content-Length: 67 Cache-Control: max-age = 0 Accept: text/html,

Directory1. Use Cases2. Vulnerability description3 vulnerability proof4 solutions5. Some ThoughtsA serious security vulnerability was found in a project recently, which was reported by wooyun platform.1. application scenariosWe often use WebView to

In the development process, in addition to ensuring that the business logic has no security risks, we should fully understand and use the built-in security mechanisms or tools of the framework to ensure the security of applications and servers, next

For the browser, this problem still needs to be fixed. Exporting searchBoxJavaBridge _ seems to be related to the google search box. Android 4.0 and later versions do not exist. Function execute (cmdArgs) {return searchBoxJavaBridge _. getClass ().

In Discuz, XSS hijacks UC_KEY to get webshell. Detailed process of the xss application. Vulnerability: the vulnerability is located in the portal function of Discuz. When an article is published and the "Edit source CODE" function is enabled, after

Log Analysis on a channel of the company at the supervisor's request two days ago Note: xxx represents a domain name or informationI. Log Record AnalysisVulnerability 1: File Upload hazard level: Very serious log analysis showed that hackers used

Previously, nagios and cacti were installed using yum through epel. Now you need to migrate to another machine.Old monitoring machine 192.168.1.200 centos 6x64New invigilator 192.168.1.201 centos 6x64The following operations are performed on the new

Self XSS + Click Jacking ==> storage type XSS http://hi.baidu.com/hacklele/admin.php? Frames = yes & action = moderate & operation = threads. There is a hidden form "title" on the page, which can be submitted by GET and triggered by clicking "Submit.

Before the integration of kerberos in impala, encountered time-related problems, at that time did not do a full test, some understanding of Some Problems (http://caiguangguang.blog.51cto.com/1652935/1381323), today just did a test, summarized as

Remote logon is configured on the Internet and Intranet routers. To ensure network security, the Internet cannot access the Intranet, but the Intranet can access the Internet. R1 cannot telnet or pingR3, but R3 can access R1:The configuration is as

1. counters: allows developers to review the running status and various metrics from a global perspective.Get counter: Conter myConter = config. getConter ("group name", "counter name ");Set the initial value for the counter: myConter. setValue

UDP checksum The UDP checksum includes all the data in the UDP data packet, a pseudo-header, and an 8-bit word that makes up the number of 16-bit integers 0. During verification calculation, the UDP protocol first constructs a pseudo header (this

The encryption method of the N-point VM is a custom function encapsulated in the DLL. You create an ASP file in the directory of the N-point host management system as follows: Replace the NLFPK @ ojcocia @ E @ FEKJMFADLALKLF @ JHOIMAHO @

Author: anthrax@insight-labs.org0x00 background After reading it on github for a long time, the official diff only changed one location in php: - if ( $hmac != $hash ) { + if ( hash_hmac( 'md5', $hmac, $key ) !== hash_hmac( 'md5', $hash, $key ) )