记录黑客技术中优秀的内容, 传播黑客文化,分享黑客技术精华

mac里chrome单独更新flash

mac里的chrome不是npapi版本的,是ppapi版本的,所以没法简单的通过更新flash本身来实现,一般只有通过更新chrome来实现,但是偶尔还是会出现更新了chrome但依然flash版本太老的问题。Safari的flash就是npapi版本的 。
发布时间:2016-12-15 04:25 | 阅读:142253 | 评论:0 | 标签:技术点滴 macosx

详解linux系统的启动过程及系统初始化 zz

今天和朋友聊到linux引导的过程,颠覆了我以前的一些认知,他推荐这个讲linux引导的文章给我,收藏分享之。说点题外话:最近有朋友给我科普了一些知识产权的法律知识和实操经验(衷心感谢这位哥们)。虽然51cto的文章版权声明让人看着不大舒服(追究法律责任),但还是可以理解的(对内容声明并执行保护,这是法律条文的要求),只是真的会用吗?如果不会用,搞这么扎眼的文字目的是啥呢?转载者绝对不会因为害怕被追究法律责任而添加你的版权信息。原创作品,允许转载,转载时请务必以超链接形式标明文章 原始出处 、作者信息和本声明。否则将追究法律责任。http://chrinux.blog.51cto.com/6466723/1192004一、linux系统的启动流程关于linux系统的启动流程我们可以按步进行划分为如下:POST
发布时间:2013-08-03 23:15 | 阅读:126614 | 评论:0 | 标签:技术点滴 boot kernel linux 内核 引导

Build a recovery toolkit

IntroductionAll security guides recommend you should have a security audit toolkit (or forensic toolkit or recovery toolkit). This toolkit is constituted by a set of static-linked binaries (grep,w,netstat,ls,nc,strace,ps … etc). The problem it that these security guides tell you to build this toolkit but never show you how to do it (they just tell it c
发布时间:2013-08-01 11:10 | 阅读:124204 | 评论:0 | 标签:技术点滴 coreutils forensics incident response linux incident re

linux静态编译工具包

一个朋友的服务器CPU在半夜总是跑的很高,但是却看不到是哪个进程导致的。要我帮他检查下这个linux系统,很久没干这个活了,工具都丢的差不多,重新收集一下。http://www.stearns.org/staticiso/ 编译好的32位静态工具包,但libc有点老,centos6 64下运行直接seg fault了ps: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, for GNU/Linux 2.2.5, strippedhttp://sourceforge.net/projects/costars/ 代码包,有静态编译的脚本 可能里面的app版本有点老,但应该还凑合能用,自己编译下也不错。
发布时间:2013-08-01 11:10 | 阅读:112922 | 评论:0 | 标签:技术点滴 coreutils forensics incident response linux incident re

Port Scanner Challenge: nmap, Unicornscan, PortBunny

There’s been quite a bit of mention lately of PortBunny, the new port scanner from Recurity Labs. The scanner is Linux kernel-based and provides a TCP SYN Scan. I figured that I’d put the scanner to the test against nmap and Unicornscan.Here’s the rundown of the setup used:Software + Version:Unicornscan 0.4.7-2nmap 4.53PortBunny 1.0Scanning
发布时间:2013-07-31 11:10 | 阅读:113922 | 评论:0 | 标签:技术点滴 nmap port scanner portbunny tcp port scanner unicornsca

web漏洞演练平台

刚接触安全行业的同学想实战一把,又担心违反国家法律法规,就搞一个web漏洞演练平台走起吧。webgoat是一个https://www.owasp.org/index.php/OWASP_Bricks 这个是PHP的owasp应该还有,不过不记得了。
发布时间:2013-07-30 23:10 | 阅读:86487 | 评论:0 | 标签:技术点滴 pentest web漏洞演练 渗透测试 漏洞

ip地址转换程序

由于需要把1.1.1.1-123这样的ip段转换成ip列表,同事给写了个py,存档Python#!/usr/bin/env python#by peter zhao#input 1.1.1.1-123 and output#1.1.1.1#1.1.1.2#1.1.1.3#.....#1.1.1.123import sysdef check_argv(): if len(sys.argv) != 2: print """usage: %s string string: format like '1.1.1.1-128' """ % sys.argv[0] sys.exit(1)def convent(): tmp = sys.argv[1].split("-")
发布时间:2013-07-25 17:10 | 阅读:95705 | 评论:0 | 标签:技术点滴 calc ip ip地址转换

Using ettercap for ARP poisoning

Ettercap is certainly nothing new, and there is plenty of documentation around to see how to use it, but I was sitting here goofing around and decided to record my results. I am not advocating this type of thing on a public network, and ARP poisoning or other attacks often fall afoul of terms of service for public and private networks, and may even be illega
发布时间:2013-07-24 17:10 | 阅读:131442 | 评论:0 | 标签:技术点滴 ettercap sniffer

ettercap with html injection

My previous post about Ettercap gets a lot of hits, so I thought I should post a deeper look at some of the features with examples of usage. Before continuing, I’ll point out a couple other good resources since some of my work is just building on that of others.Irongeek has a couple good pages dealing with Ettercap.Fun with Ettercap FiltersThe Basics o
发布时间:2013-07-24 17:10 | 阅读:139206 | 评论:0 | 标签:技术点滴 ettercap html injection

Fun with Ettercap Filters

Read this then see the Flash video at:http://www.irongeek.com/i.php?page=videos/ettercapfiltervid1 Ettercap[1] is sort of the Swiss army knife of ARP poisoning[2] and network sniffing. Ettercap can be extended by using filters and plug-ins, making it able to do all sorts of neat network tasks. Using filters is what I plan to show in this tutorial. The easies
发布时间:2013-07-24 17:10 | 阅读:377824 | 评论:0 | 标签:技术点滴

用ntp同步时间

yum install ntpdate -yntpdate time.nist.gov可以写入rc.local或者0 1 * * * /usr/sbin/ntpdate time.nist.gov
发布时间:2013-07-18 23:10 | 阅读:68317 | 评论:0 | 标签:技术点滴 ntp ntpdate 时间同步 时间服务器

静态编译tips

静态编译的时候有时遇到报错,类似/usr/lib/gcc/x86_64-redhat-linux/4.4.7/../../../libcares.a(libcares_la-ares__timeval.o): In function `ares__tvnow':ares__timeval.c:(.text+0xf): undefined reference to `clock_gettime'collect2: ld returned 1 exit status123/usr/lib/gcc/x86_64-redhat-linux/4.4.7/../../../libcares.a(libcares_la-ares__timeval.o): In function `ares__tvnow':ares__tim
发布时间:2013-07-13 23:20 | 阅读:91781 | 评论:0 | 标签:技术点滴 静态编译

OpenSSH Unix Domain Socket Forwarding

ssh是可以转发tcp的,老外给搞了个补丁,可以转发套接字Proxy MySQL client connections on a remote server to your local instance: ssh -R/var/run/mysql.sock:/var/run/mysql.sock -R127.0.0.1:3306:/var/run/mysql.sock somehost http://25thandclement.com/~william/projects/streamlocal.htmlpatch过的openssh 6.1完整代码在 git clone http://25thandClement.com/~william/projects/streamlocal.git顺便留存一份他4.7p
发布时间:2013-07-13 17:20 | 阅读:179373 | 评论:0 | 标签:技术点滴 htran openssh pentest

php.ini的参数有哪些是可以用过ini_set函数修改的?

http://www.php.net/manual/en/ini.list.php 这里列了所有的php.ini的设置,其中Changeable就是讲的修改的入口。至于其中的内容是啥意思,看下面的解释,简而言之,如果参数是PHP_INI_USER或PHP_INI_ALL的,那么可以该参数可以被php程序本身在运行时设置。安全相关的配置只有allow_url_include 可以被php脚本修改,不过如果黑客都可以在服务器上放置php脚本了,url_include就只能用来部署木马了而不会用于初始化攻击,所以如果可以的话,把allow_url_fopen也设置为off Definition of PHP_INI_* modesModeMeaningPHP_INI_USEREntry can be set
发布时间:2013-07-08 21:40 | 阅读:85439 | 评论:0 | 标签:技术点滴 allow_url_fopen allow_url_include php security php.ini

禁用和启用macosx的swap

1、前提和背景:至少有8G内存,使用的SSD硬盘。swap长期使用较多,例如1G+ 2、目的:减少swap产生的磁盘写操作,延长SSD硬盘使用寿命3、方法:禁用sudo launchctl unload -w /System/Library/LaunchDaemons/com.apple.dynamic_pager.plistsudo rm /private/var/vm/swapfile*12sudo launchctl unload -w /System/Library/LaunchDaemons/com.apple.dynamic_pager.plistsudo rm /private/var/vm/swapfile*启用sudo launchctl load -w /System/Librar
发布时间:2013-07-07 09:10 | 阅读:496172 | 评论:0 | 标签:技术点滴 diable swap enable swap macosx swap 启用swap 禁用swap

Mac下的数据清理–qq图片数据

cd ~/Library/Containers/com.tencent.qq/Data/Library/Application Support/QQ/qq号码/Image1cd ~/Library/Containers/com.tencent.qq/Data/Library/Application Support/QQ/qq号码/Image对于需要在mac里跑虚拟机的同学来说,硬盘空间是一个问题,QQ这里有几个G,如果你不需要保存qq的图片,删除他们吧 :)如果想极端一点,内存多的话可以把这个目录放到tmpfs里去,内存不富余就定期rm一下
发布时间:2013-07-01 21:10 | 阅读:99896 | 评论:0 | 标签:技术点滴 mac macosx

公告

关注公众号hackdig,学习最新黑客技术

推广

工具

标签云