본문 바로가기

모의해킹 (WAPT)179

Offensive Security Exploit Weekend Sud0′s story : After quickly analyzing the pdf file, it was clear that the PDF reader is vulnerable to a buffer overflow when parsing an overly long string in the "Title" field. (Simply open the pdf file in a editor or use Didier Stevens’ pdf-parser.py tool to list the elements in the pdf file) When opening the PoC pdf file in Foxit Reader (with Immunity Debugger attached to it), an access viola.. 2010. 11. 23.
Install And Setting PsyBNC On Unix Shell What is psyBNC? psyBNC is an IRC network bouncer (BNC). psyBNC is short form of psychoid bouncer (BNC). psyBNC is mostely used to hide your ip on IRC network and bounce your ISP. It is very easy to use and due to its unique features, it has become most popular BNC (specially on FREEBSD) . psyBNC does not just bounce your ISP (hide your ip) it also stays connected to IRC server even after you clo.. 2010. 11. 9.
(동영상) Discovered XSS on Facebook can lead to account hijack 출처 : http://www.acunetix.com/ 2010. 11. 9.
Online services security report car Note that “WordPress” refers to all the independent implementations of WordPress, but the WordPress.com free hosting site does implement SSL. The bottom portion of the table refers to generic protocols that are commonly used by computers and smartphones, the vast majority of which use the unsafe versions. What are authentication cookies?To save you the trouble of having to sign in with username .. 2010. 11. 8.
Firefox Addon Firesheep Exploit 누구나 Wi-Fi 네트워크를 스캔하고 다른 사람의 페이스북, 트위터, 혹은 기타 다른 호스팅 서비스 계정에 접속할 수 있도록 하는 파이어폭스 애드온이 등장했다. 투어콘(ToorCon) 보안 컨퍼런스에서 공개된 파이어쉽(Firesheep)이라는 이 애드온은 웹 애플리케이션 개발자인 에릭 버틀러가 만든 것으로, 그는 공개된 Wi-Fi를 통해서 비암호화된 웹사이트에 접속하는 것이 얼마나 위험한지 보여주기 위해서 이 애드온을 공개하게 됐다고 배경을 밝혔다. 2010. 11. 4.
728x90