Jump to content

Leaderboard

Popular Content

Showing content with the highest reputation on 09/27/20 in all areas

  1. Daca vrei ceva frumos care nu necesita configurari extra, nu tine loguri, si deschizi porturi doar prin nc -nlvp port iti sugerez sa iti iei de pe ; http://ipjetable.net/ Eu l-am folosit foarte mult, ip-ul e dinamic in momentul in care te deconectezi de pe el se schimba, si are servere doar in franta, daca te intereseaza strict black hat si sa-ti ascunzi urmele poti sa folosesti asta ca un vpn pe langa restu metodelor tale. Nu folosi proxychains pentru nmap [indiferent proxychains n sau proxychains4.ceva] pentru ca daca te lasa sa scanezi la sfarsit cand
    2 points
  2. In general daca ai pointeri null in chainul tau de offsets inseamna ca fie e gresit chainul, fie nu e alocata/folosita inca memoria. Adica daca unul din pointeri e null, adresa pe care o cauti nu exista. Cea mai simpla metoda e sa verifici in interiorul buclei for daca addr e diferita de null. Crasul se intampla cand faci *(DWORD*)addr si addr e memorie rezervata. for (unsigned int i = 0; i < offsets.size(); ++i) { if(!addr) { //Memorie illegala. O rezolvi cum vrei tu. //fie: //return 0; // //fie va
    1 point
  3. Ultimele stiri la cateva taste distanta. E un pic de bataie de cap sa-l configurezi (clipul asta acopera multe subiecte) dar se merita. Un torent de informatii din surse diferite prin care poti sa cauti rapid ce te intereseaza. Uite cum arata spre exemplu pagina principala din newsboat la mine: https://ibb.co/0jh16c8 sau cum poti sa cauti rapid subiectul care te intereseaza. Eg: zerologon https://ibb.co/QQTgN8T Nu-l folosesc de multa vreme dar deja am devenit fan. Ma gandesc sa-l folosesc in special ptr. a fi la curent cu ultimele vulner
    1 point
  4. by Worawit Wangwarunyoo , DATAFARM Research Team, Datafarm Company Limited This post describes the exploitation (RCE) of SIGRed (CVE-2020–1350) on Windows Server 2012 R2 to Windows Server 2019. For vulnerability detail please see the checkpoint research post Prepare name servers To reduce steps on setting up a domain name, I configure “Conditional Forwarders” on a target Windows DNS Server as figure below. While I use dnslib to create my malicious DNS client and server for “evildns.com” domain. Trigger the bug If we simply follow on ch
    1 point
  5. O noua vulnerabilitate de tip man in the middle a fost descoperita in ehipamentele/NGFW Forinet. "We quickly found that under default configuration the SSL VPN is not as protected as it should be, and is vulnerable to MITM attacks quite easily," SAM IoT Security Lab's Niv Hertz and Lior Tashimov said. "The Fortigate SSL-VPN client only verifies that the CA was issued by Fortigate (or another trusted CA), therefore an attacker can easily present a certificate issued to a different Fortigate router without raising any flags, and implement a man-in-the-middle attack." https:
    1 point
×
×
  • Create New...