Quantcast
Channel: CodeSection,代码区,网络安全 - CodeSec
Browsing all 12749 articles
Browse latest View live

Image may be NSFW.
Clik here to view.

攻击混淆+欺骗技术,就是这家安全公司的防御战术!

【51CTO.com原创稿件】 攻击混淆+欺骗技术,就是这家安全公司的防御战术! 谈到自己企业的安全问题,很多人会问: ◆我们已经被黑了吗?是谁黑的?目的是什么? ◆有人想要黑我们吗?他们是谁?用什么方法? ◆我们存在未知的安全威胁吗?这些威胁在哪里? 针对这些问题,一家叫默安科技的安全企业表示,要想找到这些问题的答案,我们可以主动出击,欺骗黑客! 默安科技:一家攻击者视角的安全企业...

View Article


Image may be NSFW.
Clik here to view.

httpd协议配置进阶

目录 虚拟主机配置 status状态页面 curl命令 mod_deflate模块 https配置 httpd自带应用程序 虚拟主机配置 有三种实现方案: 基于IP: 为每个虚拟主机准备至少一个IP地址 基于端口: 为每个虚拟主机使用至少一个独立的port 局域FQDN: 为每个虚拟主机使用至少一个FQDN 注意:一般虚拟主机不要与中心主机混用; 因此,要使用虚拟主机,得先禁用’main’主机...

View Article

Ghost blog with SSL on azure - the correct way

My blog is hosted on Azure Web Pages. A few months ago I decided to use SSL on it because I can get a free SSL certificate from "Let's Encrypt" website . Change URL in config Simple change URL in...

View Article

Image may be NSFW.
Clik here to view.

Inaudible Soundwaves Expose a Spooky New Pathway for Hackers

In a presentation scheduled for this week’s Black Hat conference in London, security researchers from University College London will outline how new marketing software that uses ultrasound signals...

View Article

Image may be NSFW.
Clik here to view.

Bug in Mirai Source Code Could Stop Some DDoS Attacks Dead in Their Tracks

Scott Tenaglia, Research Director at Invincea Labs, says that a bug in the Mirai IoT malware source code can be used to stop certain types of DDoS attacks launched by the botnet. Tenaglia discovered...

View Article


Problems Reappear for IoT Devices Owners with Discovery of New DDoS Trojan

A new malware family written by what appears to be an experienced coder is aiming for linux-based IoT devices, with the main purpose of adding those devices to a botnet and carrying out DDoS attacks....

View Article

The Zcash network is live!

Today the Zash protocol has launched. Zcash begins . This is the first protocol of its kind. It is the accumulation of years of academic research, advanced engineering, and diligent security work....

View Article

Image may be NSFW.
Clik here to view.

白宫VS《西部世界》:从美国国家政策看人工智能的未来

几乎与HBO热播剧《西部世界》大量媒体宣传同步,奥巴马政府在2016年10月11日发布了一份题为《人工智能未来》的新闻稿,随附一份《国家人工智能(A.I)研究与开发战略计划》长篇报告(后文中简称《战略计划》)。同一天,第三份报告,《为人工智能的未来做好准备》被白宫放出(后文中简称《行动计划》)。 全部3份文件都塞满了政府对人工智能的愿景,尤其是在网络安全和AI可能对美国劳动市场产生的经济影响方面。...

View Article


Image may be NSFW.
Clik here to view.

“打自己脸”还是“惹毛微软”,谷歌面对Windows漏洞竟选择了后者

“打自己脸”还是“惹毛微软”,谷歌面对windows漏洞竟选择了后者 2小时前来源:雷锋网 php?url=0Eoogq98Ve" alt="“打自己脸”还是“惹毛微软”,谷歌面对Windows漏洞竟选择了后者" />近日,谷歌专门披露安全漏洞的部门“威胁分析集团”(Threat Analysis group)对外公布了 Windows 操作系统的一个临危级别的重大漏洞,同时发布相关补丁来保护...

View Article


Image may be NSFW.
Clik here to view.

图解HTTP读书笔记

图解HTTP读书笔记 昨天来源:CSDN博客 图解HTTP读书笔记(9)版权声明:本文为博主原创文章,未经博主允许不得转载。图解HTTP读书笔记(十) Web的攻击技术 HTTP协议本身并不存在安全性问题,因此协议本身几乎不会成为攻击对象。应用HTTP协议的服务器和客户端,以及运行在服务器上的Web应用资源才是攻击目标。 在客户端即可篡改请求...

View Article

Image may be NSFW.
Clik here to view.

TDoS攻击911紧急服务被捕 美18岁少年黑客被捕

TDoS攻击911紧急服务被捕 美18岁少年黑客被捕 4小时前来源:威客安全 php?url=0EoniQDyIV" alt="TDoS攻击911紧急服务被捕 美18岁少年黑客被捕"...

View Article

Image may be NSFW.
Clik here to view.

Resolve Common Magento SSL Configuration Issues

Secure Socket Layer (SSL) has become an important aspect of eCommerce stores. SSL ensures that the two-way communication between the customer and the store remains secure throughout the duration of the...

View Article

Image may be NSFW.
Clik here to view.

The Challenge of E-Voting

Countries where open elections occur have often developed arcane rules and processes for casting, collecting, and tabulating votes, in part because counting and managing votes is so time-consuming....

View Article


Citrix: Context-Aware Security with XenApp and XenDesktop

Remember how things were back in 2006? Ahhhh, those were the good old days, when security was simple proper patch management and having a firewall + antivirus on all machines was considered a standard...

View Article

Image may be NSFW.
Clik here to view.

【漏洞预警】Memcached修复多处高危漏洞可导致代码执行、拒绝服务(14:45更新)

【漏洞预警】Memcached修复多处高危漏洞可导致代码执行、拒绝服务(14:45更新) 2016-11-01 16:38:19 来源:安全客 作者:安全客 阅读:7570次 点赞(0) 收藏 背景介绍 Memcached是一个自由开源的,高性能,分布式内存对象缓存系统。 Memcached是以LiveJournal旗下Danga Interactive公司的Brad...

View Article


Do I really need to patch my Rails apps? (Understanding CVE-2016-6316)

Ruby and Rails security advisories, without exception, recommend that you upgrade your Rails app as soon as possible. Unfortunately, the descriptions of the problem being solved can be cryptic, and it...

View Article

Image may be NSFW.
Clik here to view.

Can we extinguish the Mirai threat?

The recent massive DDoS attack against DNS provider Dyn has jolted (some of) the general public and legislators, and has opened their eyes to the danger of insecure IoT devices. It is clear by now...

View Article


NSA Hackers The Shadow Brokers Dump More Files

The hacker (or a group of hackers) who call themselves The Shadow Brokers today published more files . From an article on Motherboard: This latest release comes while Hal Martin, an NSA contractor...

View Article

What Diffie-Hellman parameters to use?

What Diffie-Hellman parameters to use? 1 hour ago I see some discussions on some mailing lists about what parameters to use for Diffie-Hellman (DH). It seems like the recent line of papers about weak...

View Article

Image may be NSFW.
Clik here to view.

Hacker News Dataset Update October 2016

Our latest project on Sizzle is a visualization of the Top 10k Posts of All Time on Hacker News . To create the visualization, we first needed to collect the data. I noticed that there was an old copy...

View Article
Browsing all 12749 articles
Browse latest View live