简介：关注web安全

原站：http://www.pcsec.org/

标签：web安全手册 sec

指数：

“Web安全手册”的内容更新

累计：198 篇（自 2009-03-13 起）

更新：约1篇/周，最后更新437 天前

Web安全手册

Hacking memcached

sensepost 在blackhat usa2010上的演讲课题 pdf:http://www.slideshare.net/sensepost/cache-on-delivery tool:http://www.sensepost.com/labs/tools/poc/go-derper 案例:http://www.wooyun.org/bugs/wooyun-2010-0790 more detail:http://www.sensepost.com/blog/4873.htmlcopyright ? 2008继续阅读《hacking memcached》的全文内容...分类: penetration testing | tags: memcached... (311 天前)

http://inezha.com/w/drjc3ia

Web安全手册

Windows Credentials Editor v1.0

#trace注: 10月12日pass-the-hash toolkit的作者在mailist发布了新版的pass the hash attack tool -- windows credentials editor，简称wce。单个文件集成了列举、添加、更改credentials的功能，再也不用拖着几个exe和dll文件到处跑了，而且体积仅仅137kb，内网渗透手必备工具。 全文转载开始：windows credentials editor v1.0supports windows xp, 2003, vista, 7 and 2008 (vista ... (311 天前)

http://inezha.com/w/igu7wi7

Web安全手册

Metasploit Framework 3.5.0 Released

version 3.5.0 of the metasploit penetration testing framework has been released, including 613 exploits, 306 auxiliary modules, and 215 payloads. this release includes major improvements to the database backend, session handling, pivoting, and the meterpreter. while the old web and gtk guis have been officially deprecated, this build includes scriptju... (311 天前)

http://inezha.com/w/va2bagy

Web安全手册

GNU C library dynamic linker $ORIGIN expansion Vulne

the gnu c library dynamic linker expands $origin in setuid library search pathcve-2010-3847: http://marc.info/?l=full-disclosure&m=128739684614072&w=2 copyright ? 2008继续阅读《gnu c library dynamic linker $origin expansion vulnerability》的全文内容...分类: privilege escalation | tags: cve-2010-3847 local privilege escalation local root | 添加评论(0)... (311 天前)

http://inezha.com/w/msjhdg8

Web安全手册

Web Vulnerability Scanner 7.0 Patch for 2010_09_21_0

original source: http://suddymail.org/show-216-1.html rtthanks for allupdate for version 7 not work for free version.acunetix wvs build historybuild v7.0.20100921 - 22nd september 2010new security check: added a security check for the latest openx ofc file uploa... (311 天前)

http://inezha.com/w/71uecge

Web安全手册

Compilation of wordlist downloads

original source: http://www.whatsmypass.com/compilation-of-wordlist-downloadsprops to hashcrack.blogspot.com for compiling the most comprehensive wordlist downloads on the web. copying links here just in case blogspot ever blows up. additionally head over to skullsecurity.org they have some specialized wordlists from various sources including the hacked ... (311 天前)

http://inezha.com/w/sd21mg6

Web安全手册

新版Any2Bat.vbs

author: zzzevazzz很久以前写过一个any2bat，作用是把任何文件变成echo版，以便通过远程shell上传。http://hi.baidu.com/zzzevazzz/blog/item/75b8b50a118b6c1e94ca6b36.html新版本改进如下：1，增加数据压缩功能（使用系统自带的makecab.exe和expand.exe）。2，base64编码采用microsoft.xmldom，速度快，代码更简洁。3，echo生成临时脚本时文件名不带后缀，避免杀毒软件频繁扫描，提... (311 天前)

http://inezha.com/w/whjs3gn

订阅者 ( 3 )

相关订阅源