MrGrj

Exista diferite tipuri de a detecta virusii: - antivirusul se uita la binary markup-ul fisierului pentru a face match in baza de date ce contine virusi si troiani. - verifica ce face programul respectiv + vede daca el face ceva similar virusilor - analizeaza sursa programului si cauta bucati de cod malitioase ( asta este de multe ori foarte dificil si de obicei doar antivirusii foarte avansati folosesc aceasta metoda + este foarte lenta)

A team of security researchers from Georgia Tech were awarded $100,000 prize for their work in the security of C++ programs. The team comprising of Ph.D students, Byoungyoung Lee and Chengyu Song, along with Professors Taesoo Kim and Wenke Lee from Georgia Tech were awarded the cash prize for discovering new browser-based susceptibilities and for inventing a detection tool that deals with the vulnerabilities. Developed by Facebook, the “Internet Defense Prize” is a scheme to reward researchers for projects and prototypes that encourage the safety of the Internet. A part of Facebook’s “Internet Defense Prize“, the cash prize is given at the USENIZ Security Symposium in Washington, D.C. Most importantly, the payout has doubled from last year’s inaugural payout of $50,000, which was awarded to German researchers. The won the prize for their work on using static analysis to identify “second-order vulnerabilities” in applications used to compromise users after being stored in web servers before time. In a blog post on Thursday, Facebook Security Engineering Manager Ioannis Papagiannis said due to the success of last year, the social media giant partnered again with USENIX in a call for submissions for the prize, won this year by a team from Georgia Tech in Atlanta, Georgia. The Georgia Tech group discovered a new class of C++ vulnerabilities that are browser-based. The research paper, titled “Type Casting Verification: Stopping an Emerging Attack Vector,” inspects in detail a variety of security problems in C++, which is used in applications such as the Chrome and Firefox browser. As explained by Papagiannis, This, in turn can lead to bad-casting or type-confusion susceptibilities. Hence, the group also developed CaVeR, a runtime based bad-casting detection tool. The findings and introduction of the new tool are further detailed in their research paper. The researchers while describing their detection tool CaVeR wrote, “It performs program instrumentation at compile time and uses a new runtime type tracing mechanism—the type hierarchy table—to overcome the limitation of existing approaches and efficiently verify type casting dynamically.” In the team’s experiments, CAVER detected 11 previously unknown vulnerabilities — nine in GNU libstdc++ and two in Firefox, which have now been patched by the vendors. The prize was awarded at the 24th USENIX Security Symposium. Papagiannis said:

You don't have to know to be able to allocate some dynamic memory. It's basic and I strongly reccommend you to learn how to use pointers ( also have a look at dynamic allocated memory - malloc() / calloc() / realloc() / free()) / data structures etc before starting such a project. Now, what I think it will solve your issue: #include "stdafx.h" #include <windows.h> #include <stdio.h> #include <stdlib.h> #include <string.h> int main (HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine, int nCmdShow) { int length = strlen(argv[1]); // argv[1] it's just an example char *chrome = (char*)malloc(length + 1); // +1 for null terminator char *dll = "C:\\Users\\Emi\\Desktop\\akrikaht.dll"; GetEnvironmentVariable("programfiles",chrome,sizeof(chrome)); strcat(chrome,"Google\\Chrome\\Application\\chrome.exe"); //shows error at strcat, opens strcat.asm strcpy(dll,lpCmdLine); STARTUPINFO si; PROCESS_INFORMATION pi; ZeroMemory(&si,sizeof(si)); ZeroMemory(?,sizeof(pi)); HANDLE baseAddress = VirtualAllocEx (pi.hProcess,NULL, 265, MEM_COMMIT,PAGE_READWRITE) ; WriteProcessMemory(pi.hProcess,baseAddress,dll,sizeof(dll),NULL); CreateRemoteThread(pi.hProcess, NULL,0, (LPTHREAD_START_ROUTINE)GetProcAddress(GetModuleHandle("kernel32"),"LoadLibraryA"),baseAddress,0,NULL); Sleep(100) ; TerminateThread(pi.hThread,0); printf("Injected \n"); getchar(); return 0; } Now obviously something is missing but I won't tell you everything. Just look up on the internet for dynamic memory allocation in c and you'll be ok.

Use dynamic memory allocation ( malloc() should be enough ) for your variable and it should work. Don't forget to also free() to deallocate the allocated memory

Meam, 8 pagini despre Windows 10. L-am incercat si eu. Nu are suficiente avantaje pentru a ma face sa renunt la Debian based things.

Launched in 2009, Shodan is more of a prying eye across the world through the IoT rather than just a simple search engine. John Matherly, its creator, named his project after the villainous computer in the video game System Shock. As in present, Shodan is living up to his name. Already designated as ‘world’s scariest search engine’, it is commonly called the hacker search engine. Shodan shows you what Google doesn’t. Designed with an aim to link all the devices connected to the Internet, it took no time to become a play zone for hackers and experimenters. Shodan works by collecting and stacking HTTP addresses from various devices linked over the Internet across the world. The indexing is done on the basis such as country, OS and brand. Shodan’s scanning power can be assumed from the fact that it can detect the traffic lights, security cameras, control systems for gas stations, power grids, and even nuclear power plants. Most of these public services use little measures for online security and once exposed to hackers or terrorist organizations, the results could be disastrous. If you have installed telnet enabled security cameras in your home for “security”, then you might want to put them away. Hackers can breach into your system if your IoT hub is exposed on the Internet using this hacker search engine. It won’t be easy, however, it is not impossible either. There are a number of devices out there that still run on their default passwords or no passwords at all. Shodan crawls through the Internet for such accessible devices and you are shown 50 of those if you have an account on Shodan. If you could give the website the reason to check these devices with their fees, you would get information of all the devices. Though, even if you can, we highly recommend you to not misuse Shodan, the hacker search engine. Source

Daca faci rost de ceva mirrored, da-mi si mie un tag in post-ul asta te rog

Cel mai simplu e sa testezi si sa vezi daca e adevarat. Insa pot garanta ca e putin probabil. Actiunile de la bursa fluctueaza cum nu iti inchipui. Ce predictii ai putea face cu niste retele neuronale ? Dezvolta:

1. Merge si pe managed si pe unmanaged. 2. Momentan suporta doar emulator insa vor face update-uri si pentru device din cate am citit.

Today is the Visual Studio 2015 and .NET 4.6 release day. These software from the house of Microsoft have finally graduated exiting the preview stage and are now ready for download for Windows, Linux, and Mac. Microsoft’s flagship development environment Visual Studio has got a major update in the form of Visual Studio 2015. Around the world, millions of developers use Visual Studio to make cross-platform platform applications for iOS, Windows, and Android. Apart from the Studio, Microsoft’s .NET framework too has got an update. The fully-featured Visual Studio IDE comes free for non-enterprise development. Microsoft has also revealed that there has been about 5 million downloads of Visual Studio Community- the fastest ever in the history of a Visual Studio product. The new Visual Studio 2015 and .NET 4.6 has brought hundreds of new features useful for developing desktop, web, mobile, cloud and more. This release also underlines the fact that now developers can write Windows 10 universal apps and recompile them before submitting to the Windows app store. For those who aren’t aware, universal apps mean that now developers can target apps in Xbox One, Windows Phone, HoloLens, and Windows 10 PC with a single codebase. For Android developers, Visual Studio 2015 also include an Android emulator. Talking about the cross-platform functionality of Visual Studio 2015, the team has integrated Apache Cordova to achieve it. Now developers can build iOS and Android apps using JavaScript, CSS, and HTML. They are now equipped with the ability to import their C++ language skills and build components common to Windows, Android and iOS apps. Visual Studio 2015 supports C# 6 and VB.NET along with the improved support for C++, Python, and TypeScript. New diagnostic and debugging tools too have been included in this iteration of VS. Now Visual Studio 2015 is out and available for buying. Timing of this release is perfect i.e. 9 days ahead of the official Windows 10 launch. Know more about the Visual Studio 2015 and .NET 4.6 here. Download links are here: Visual Studio 2015 & .NET 4.6 sursa

O sa am rabdare. Poti sa imi dai ceva detalii de challenge-uri ? Nu am apucat sa ma uit inca, insa vreau sa incerc weekend-ul asta cripto si RE.

Ar fi frumos ca la finalul competitiei, cineva sa posteze chall-urile aici pe RST si eventual, dupa X timp, daca nu reuseste nimeni sa rezolve, acesta sa posteze un mini-tutorial cu rezolvarea. Asa mai invatam si noi cate ceva unul de la celalalt. Pana la urma, asta e scopul, nu ?

Sa fie primit! Oricum se posteaza random in 90% din cazuri + oricum ar incerca moderatorii sa redenumeasca sectiunile, nu va avea un efect major pt. ca exista in general odurereinimaginabilaincur. Sa speram totusi ca lumea isi va reveni intr-un viitor cat mai apropiat.

Nici o problema. Daca nu lasa doar in registrii, schimbi calculatorul

@Silviu

Scuze, am dat dislike din greseala. Voiam sa dau like. Foarte misto video-urile

66

Mersi pentru informatii. Stii cumva vreo diferenta intre cele doua ? cibernetica - informatica economica ? Ai mai multe avantaje daca o faci pe una sau pe cealalta ? Si daca da, in ce domenii ? ( de exemplu, ca ce te poti angaja daca termini intr-o parte sau in cealalta ) Ms

Da-mi si mie ceva detalii despre facultatea asta ca am un prieten care vrea sa se inscrie aici si nu stie daca sa aleaga info sau cibernetica. Se face programare hardcore ? Profii sunt ok ? Mersi

Tocmai am dat peste acest thread si pot spune ca poate deschide ochii multor copii de pe aici. Enjoy your reading.

https://github.com/fffaraz/awesome-cpp

E python Inainte sa pui intrebari de genul, intereseaza-te putin. Raspunsul dat de pr00f este ironic. Nu te apuca sa faci scrappere in Pascal.

Am nevoie de ceva bani pentru a achizitiona un produs si din pacate nu imi ajung asa ca pot realiza aplicatii (cu GUI sau CLI based) in urmatoarele limbaje contra unei sume stabilite ulterior: C C++ C# Python / Django Bash / Batch Perl Desigur, impreuna cu tot ce implica acestea (Baze de Date - MySQL / NoSQL / PostgreSQL, diferite API-uri ETC) Plata o puteti face pe PP, BTC sau Payoneer. (avans 20%) Un moderator poate intermedia tranzactiile, daca se doreste, pentru a nu exista conflicte. Va rog, fara comentarii inutile. Eventual da-ti un PM sau un tag in threadul asta. Mersi

Pana cand sunt inscrierile ?

Nu e doar grila