分类 ‘技术文章’ 下的日志

一堆鸡肋你要不要?(MS08-011,MS08-016,MS08-017,ms08-026,MS08-028 …)

2008/05/17 21:44 | 鬼仔 | 技术文章 | 消灭0回复

来源:0day量贩

上半年其实出了不少洞,可利用的应该有半打,鸡肋的不少,当然你要够牛B
能变废为宝那么在下也实在是PF.
阅读全文 »

Tags: , , , , , ,

Debian灾难

2008/05/16 13:26 | 鬼仔 | 技术文章 | 1 个回复

by axis
2008-05-16
http://www.ph4nt0m.org

Debian OpenSSL包里的算法有问题,random number生成居然是在process pid里选取,导致生成key可穷举

以下摘自metasploit的blog
The Bug
On May 13th, 2008 the Debian project announced that Luciano Bello found an interesting vulnerability in the OpenSSL package they were distributing. The bug in question was caused by the removal of the following line of code from md_rand.c
阅读全文 »

Tags:

Nmap Techniques

2008/05/15 22:15 | 鬼仔 | 技术文章 | 消灭0回复

一些Nmap的技巧

来源:Tr4c3’s blog

by d3hydr8 > www.darkc0de.com
date: 01/20/08

Use nmap as a host discovery tool.
阅读全文 »

Tags: ,

defeating google dork limit

2008/05/15 22:10 | 鬼仔 | 技术文章 | 3 个回复

update:
隐身会员:it can not work.
Tr4c3:I have checkd , it can work well.
鬼仔:抱歉,我当时没测试。
鬼仔注:相信这个提示大家遇到的不少吧?

来源:Tr4c3’s blog

well… if you have ever used google dorks you have probably gotten the following 403 forbidden error:
阅读全文 »

Tags: ,

PHP安全《PHP Security》

2008/05/15 22:06 | 鬼仔 | 技术文章 | 1 个回复

来源:Tr4c3’s blog

[ 原书信息 ]
《SAMS Teach Yourself PHP in 10 Minutes》
Author: Chris Newman
Publisher : Sams Publishing
Pub Date : March 29, 2005
ISBN : 0-672-32762-7
Pages : 264

[ 翻译信息 ]
翻译人员:heiyeluren
翻译时间:2006-3-15
翻译章节:《Lesson 24. PHP Security》
中文名称:PHP安全
阅读全文 »

Tags:

PHP Underground Security

2008/05/15 21:58 | 鬼仔 | 技术文章 | 消灭0回复

来源:Tr4c3’s blog

/================================================================================\
———————————[ PLAYHACK.net ]———————————
\================================================================================/

-[ INFOS ]———————————————————————–

Title: “PHP Undergroud Security”
Author: Omnipresent
E-Mail: [email protected][email protected]
Website: http://omni.playhack.net – http://www.playhack.net
Date: 2007-04-12

———————————————————————————

-[ SUMMARY ]———————————————————————

0x00: Let’s start..
0x01: Global Variables, look it carefully
[*] Patching
0x02: File Inclusion
[*] Patching
0x03: XSS
0x04: SQL Injection
\_ 0x04a: Login Bypass
\_ 0x04b: 1 Query? No.. 2 one!
[*] Patching
0x05: File Traverse
[*] Patching
0x05: Conclusion
阅读全文 »

Tags:

EQDKP 1.3.2f (user_id) Authentication Bypass (PoC)

2008/05/14 2:28 | 鬼仔 | 技术文章 | 消灭0回复

<?php
// EQDKP 1.3.2f Authentication Bypass (PoC)
// [email protected]
阅读全文 »

Tags: ,

浅入浅出Liunx Shellcode

2008/05/13 13:58 | 鬼仔 | 技术文章 | 2 个回复

/*————————————-
Author:旋木木[[email protected]]
Date:2008/05/12
Website:www.bugshower.org
————————————–*/

一:什么是shellcode
话说某天某爱国黑客编译了一个Nday溢出利用程序来攻击CNN,输入IP并且enter之后发现目标服务器没有反应,于是拿出sniffer抓包分析…“Oh ,my dog!居然没有带shellcode!”为什么 shellcode对于一个exploit来说这么重要呢?Shellcode到底是什么东西呢?
阅读全文 »

Tags: ,