Quantcast
Channel: CodeSection,代码区,网络安全 - CodeSec
Browsing all 12749 articles
Browse latest View live

Image may be NSFW.
Clik here to view.

逆向一款收费版的开发工具

工具介绍这款辅助开发工具还是挺有用的,我看应用宝的下载量有几万了,当前版本号 3.1.0 。这个应用能够开启手机上的一些开发中常用的设置,应用信息提取,以及反编译的功能。所以周末的时候研究了一下。应用宝下载地址 。其中我感觉比较有用的功能就是 查看Activity的历史,所以想研究下他的查看Activity的历史的功能是如何实现的,但是他的查看 Activity历史...

View Article



Image may be NSFW.
Clik here to view.

SniffAir:无线渗透测试框架

SniffAir 是一个开源的无线安全框架,可帮助你轻松解析被动收集的无线数据并发起复杂的无线攻击。此外,它还可以处理大型的或多个pcap文件,执行交叉检查和流量分析,以寻找潜在的安全漏洞。除了预先构建查询外,SniffAir还允许用户创建自定义的查询来分析存储在后端SQL数据库中的无线数据。SniffAir使用查询提取数据并将此用于无线 渗透测试...

View Article

本站开启TLS 1.3

安装依赖 本站基于 Centos7+Oneinstack 搭建,如果你使用其它发行版,与包管理有关的命令请自行调整。 首先安装依赖库和编译要用到的工具: yum -y install build-essential libpcre3 libpcre3-dev zlib1g-dev unzip git 获取必要组件 ngx_brotli cd /root/oneinstack/srcgit clone...

View Article

Image may be NSFW.
Clik here to view.

Kiwicon 2038AD Day 2 Summary

Moving Fast and Securing Things - Kelly Ann @kellyxvx Talking about Slack secure development lifecycle (SDL) and tooling 1300 employees 700 engineers 400 developers 30 security engineers 5 product...

View Article

Image may be NSFW.
Clik here to view.

【安全帮】日本网络安全大臣从未使用过电脑 甚至不知何为USB

摘要: 研究发现七个新的Meltdown和Spectre漏洞 今年早些时候,两个处理器安全漏洞被公开披露,使得芯片巨头Intel、AMD和ARM遭受了重大的打击。其中一个被命名为“熔断(Meltdown)”,只影响到Intel处理器;另一个被命名为“幽灵(Spect... 研究发现七个新的Meltdown和Spectre漏洞...

View Article


Image may be NSFW.
Clik here to view.

如何构建自己的IT信息安全“全息甲板”(holodeck):打造虚拟企业网络进行探索、测试 ...

首先,先来了解一下什么是“全息甲板”(holodeck)?它是一个模拟现实(Simulated Reality)系统,与虚拟现实系统不同的是,这个系统存在于实体世界,人不需要眼镜、触觉模拟器之类就可以与此系统中的物体互动。主要有光影系统,负责远景,和物质生成系统,负责生成人接触和看到的东西。...

View Article

Image may be NSFW.
Clik here to view.

通证经济下一个时代:Security Token优势、风险分析

本篇报告将从Security Token 相对于传统证券和Utility Token 的比较优势为切入点,进一步分析 Security Token 存在的风险点和治理优势。 目前来看,由于不同国家监管细节和进度不同,以及存在资金外流等风险,Security Token 跨国别的大规模交易深度可能较难实现,场外交易也会受到周期和监管的限制,Security Token...

View Article

Image may be NSFW.
Clik here to view.

谁为新能源时代的“独角兽”赋能?

近几年全球气候变暖、两极冰川融化导致海平面逐年上升,许多沿海城市和岛屿的陆地面积将逐渐减少。根据2017年世界气象组织发布的消息,2016年全球二氧化碳平均浓度达到了近百万年以来的最高水平,可能会导致海平面上升20米、全球气温上升3度。其中,汽车的碳排放是二氧化碳的主要来源之一,举例来说,一棵树一年光合作用吸收的二氧化碳是18.3公斤,一辆7L的汽车一月的二氧化碳需要超过148棵树来抵消。为了缓解环...

View Article


This D-Link Camera Has a Huge Security Flaw, According to Consumer Reports

Internet-enabled and IoT devices have made it possible to deploy a custom home security system . One can purchase many wireless security cameras, sensors and motion detectors and install them around...

View Article


Image may be NSFW.
Clik here to view.

AWS Security Profiles: Min Hyun, Global Lead, Growth Strategies

In the weeks leading up to re:Invent , we’ll share conversations we’ve had with people at AWS who will be presenting at the event so you can learn more about them and some of the interesting work that...

View Article

Tagged template literals and the hack that will never go away

Tagged template literals were added to javascript as part of ES 2015. While a fair bit has been written about them, I’m going to argue their significance is underappreciated and I’m hoping this post...

View Article

Image may be NSFW.
Clik here to view.

2018-Xctf Final&LCTF-Bestphp

文章首发于安全客:https://www.anquanke.com/post/id/164569 前言 又是周末,又是CTF,还是pupil出的题,只能说,非常有趣了 bestphp bestphp’s revenge 前者来自xctf final,后者来自2018LCTF bestphp1 文件包含 拿到题目后发现 代码非常简短,但是问题很明确,我们看到了函数...

View Article

Nodemailer: ECONNREFUSED

I don't know what I'm missing, I use the Nodemailer example: var nodemailer = require("nodemailer"); // create reusable transport method (opens pool of SMTP connections) var smtpTransport =...

View Article


Image may be NSFW.
Clik here to view.

Story of a failed pentest

Singing the Blues: Taking Down an Insider Threat "I had all of the advantages. I was already inside the network. No one suspected me. But they found my hack, kicked me off the network... ...and...

View Article

Image may be NSFW.
Clik here to view.

iOS 12.1 Bug Lets Hackers Steal Deleted Photos, Apple Working On Fix

A pair of security researchers has combined their collective efforts to discover a vulnerability in Apple’s iOS platform. This vulnerability has allowed them to gain access to photographs which are...

View Article


Image may be NSFW.
Clik here to view.

Hack the Box Writeup - Jerry

Probably the easiest machine on Hack the Box ever; which also means this will be the shortest writeup ever too. Enumeration So we start as always with our nmap scan. $ nmap -sC -sV -oA nmap/scan...

View Article

Image may be NSFW.
Clik here to view.

防范安全漏洞 促进实际应用

传统的网络安全漏洞,往往使区块链技术本身所构建的数学或逻辑意义上的安全性荡然无存。 作为一种全新的互联网技术,区块链的安全现状令人忧虑。目前区块链常面临私钥的生成与保护、共识过程的中心化、智能合约代码漏洞、签名过程算法漏洞、系统实现代码漏洞等安全问题。...

View Article


Image may be NSFW.
Clik here to view.

AWS Security Profiles: Misty Haddox, AWS Customer Audit Manager

In the weeks leading up to re:Invent , we’ll share conversations we’ve had with people at AWS who will be presenting at the event so you can learn more about them and some of the interesting work that...

View Article

Image may be NSFW.
Clik here to view.

Instagram security lapse exposed some user passwords to the public, company says

A flaw in Instagram’s “Download Your Data” tool inadvertently exposed some user passwords, a report from The Information claims. In some instances, user passwords may have been exposed to public view....

View Article

Image may be NSFW.
Clik here to view.

Instagram Is Reportedly Down for Android Users Following Concerns Over...

Photo: Mark Lennihan (AP) Dozens of Android users are reporting that the Instagram app isn’t working for them as of Saturday morning, with some posting about problems on mobile on Twitter since late...

View Article
Browsing all 12749 articles
Browse latest View live


Latest Images