由买买提看人间百态

topics

全部话题 - 话题: exploit
1 2 3 4 5 6 7 8 9 10 下页 末页 (共10页)
h*d
发帖数: 19309
1
Breathing a little life back into the scene is Total_Noob, well known and
respected PSP hacker / developer, who has claimed to discover a kernel
exploit in PSP firmware 6.20. Yessir. Total_Noob is currently working on 6.
20 TN, which behaves like HEN. Remember HEN? It’s a homebrew enabler unlike
HBL. HEN remains active & resident in memory leaving you able to launch
homebrew directly from the XMB after HEN’s initial execution, which appears
to be done through HBL.
The video demos the kernel expl... 阅读全帖
z*******w
发帖数: 79
2
+-------------------------------------------------------+
|BIND 8.2 - 8.2.2 *Remote root Exploit How-To* by E-Mind|
+-------------------------------------------------------+
(A) What is a DNS?
1. How do I query a DNS?
2. How do I find a vulnerable DNS?
(B) How do I edit DNS entries?
1. How do I find a Zone file?
2. How do I edit a Zone file?
(C) How do I exploit a vulnerable machine
1. What do I need to obtain before I could use the exploit?
2. Wha
n**********s
发帖数: 236
3
来自主题: EB23版 - how this sytem exploits people
this system was designed to exploit immigrants. For example, the green card
applicants can't receive a copy of I140. The employers claim I140 approval
notice as company property. the applicants can't even get a photo copy of it
if the employers don't have mercy. If you beg for it, the employers have
the right to refuse your quest. During your PERM application, it is the same
, you can not ask for any details and the employers have the rights to
refuse your inquiry request. Basically you have to ... 阅读全帖
d***o
发帖数: 260
4
今天MaTiAz公布了Hello World v2 TIFF exploit 能运行于1000和2000,有3000的用户
也成功运行了,链接如下:
http://psp3000hacks.com/psp-3000-hacks/hello-world-v2-tiff-exploit-works-on-psp-3000/
里面还有视频,da的网站上也有人在说此事下面是连接:
http://www.dark-alex.org/forum/viewtopic.php?f=5&t=12263
C******g
发帖数: 2930
5
Naughtydog: We just pushed a live update to everyone that fixed a few known
glitches on the “The Fort” multiplayer map that we’ve monitored being
exploited.
That’s all for now, but we have been actively working on a bunch of things
big and small to support our multiplayer fans. We wanted to take this
opportunity to give you an idea of what is still to come.
Just like what our update to “The Fort” today, we’ll be addressing
exploitable glitches in other multiplayer maps in the very near future.
A
y****t
发帖数: 10233
6
The Obama White House plans to exploit the oil spill crisis to force a job-
killing national energy tax through Congress after the midterm elections –
thereby circumventing the American people and letting a lame duck Congress
jam taxpayers with one final, costly act of defiance on its way out the door
. According to the new strategy, outlined this morning by Politico,
Washington Democrats would pass a job-killing national energy tax “after
the election” so lawmakers “don’t have to take another
c****x
发帖数: 12
7
这两天对PS2的save exploit来了兴趣,就是用PS1版游戏启动记忆卡里程序的方法,
瞎鼓捣了一下,做了几个试验,也有些结论,有兴趣的不妨看看。目前可以做到的
事情是在一台没有做过任何改动的PS2上安装HDLoader,ftp传输游戏,从硬盘或光
盘上运行模拟器之类的爱好者程序;还没实现的最终研究目的是play backup :)
需要这方面基础
知识的可以到下面任何一个了解。
ps2dev.org/
www.ps2savetools.com/
ps2ownz.com/
www.ps2-scene.org/
我用到的东西:
1. PS2 50001型,今年5月份买的网卡套装,没改过。
2. 8M记忆卡,至少2M剩余空间
3. HDL格式化了的120G硬盘
4. 最早的一个记忆卡版HDL工具包,包括
4a - Title.DB管理工具
4b - 用来生成安装光盘的文件
5. 最新的HDL版本Patch 04,仅ELF文件
6. 正版的PS2金手指软件CodeBreaker v8.1,我是花20刀买的
7. 正版的PS1游戏一个,随便哪个都行,几块钱
h*d
发帖数: 19309
8
Team ProjectXX Exploit Released for All PSP Models FW 1.00 to 6.20!
greg | May 13, 2010
Quick! Grab your PSPgo and get on PSN — you need to download Splinter Cell
Essentials right now. Or if you have the UMD that’ll work too, for non-go
models. Check it out:
This release comes from Dark_Kendox and FrEdDy, with a special thanks to
Wololo, KiNgOfUnIvErS, psphakerwarrior, and Phantom91. The project was kept
secret until some loudmouth ruined it. Now it’s likely the game will be
pulled off PSN real
x******0
发帖数: 1490
r*****3
发帖数: 143
10
中文名: 黑客攻防技术宝典
原名: The Web Application Hacker's Handbook Finding and Exploiting Security
Flaws
作者: Stuttard
Pinto
Anley
图书分类: 网络
资源格式: PDF
版本: 第二版
出版社: Wiely
书号: 978-1-118-02647-2
发行时间: 2011年
地区: 美国
语言: 英文
简介:
内容简介:
越来越多的关键应用现在已经迁移到网站上,这些web应用的安全已经成为各机构的重
要挑战。知己知彼,方能百战不殆。只有了解web应用程序中存在的可被利用的漏洞和
攻击者所采用的攻击方法,才能更有效地确保web安全。.
本书是web安全领域专家的经验结晶,系统阐述了如何针对web应用程序展开攻击与
反攻击,详细剖析了攻击时所使用的技巧、步骤和工具,条理清晰,内容全面,几乎涵
盖了所有web核心技术以及web应用程序的核心功能,另外还为读者提供了作者自己开发
的几个探查漏洞的工具,是一本难得一见的黑客技术实用宝典。
目录:
第1章 web应用程序安全与风险. 1
1.1... 阅读全帖
z*******w
发帖数: 79
11
来自主题: Security版 - Redhat 6.2 restore exploit
Date: Sat, 4 Nov 2000 03:34:33 -0500
From: fish stiqz
To: B*****[email protected]
Subject: Redhat 6.2 restore exploit
Well, restore has the same problem as dump..
I had hoped that these types of bugs had all been phased out by now..
z*******w
发帖数: 79
12
来自主题: Security版 - socks5 remote exploit / linux x86
/*
* !!!! Private do not distribute !!!!
*
* <1080r.c> socks5 remote exploit / linux x86
*
* Usage:
* $ ./1080r [offset]
*
* Vulnerables:
* socks5-v1.0r10 (compiled on a turbolinux 4.0.5) => 0
* socks5-v1.0r9 (compiled on a turbolinux 4.0.5) => 0
* socks5-v1.0r8 (compiled on a turbolinux 4.0.5) => 0
* socks5-v1.0r10 (compiled on a redhat 6.0) => 400
* socks5-s5watch-1.0r9-2 (redhat-contrib) => no?
* socks5-0.17-1 (redhat 4.2) => no
* socks5-1.0r10-5 (redhat-contrib) => no??
* so
l*l
发帖数: 225
13
来自主题: Security版 - SSH exploit
There is an exploit in OpenSSH. People using OpenSSH on their personal
machines should either upgrade to version 3.7 or replace it with a patched
version of whatever older version they are using. RedHat has issued
patched versions. Other vendors are likely to follow soon.
For further information see
http://slashdot.org/articles/03/09/16/1327248.shtml?tid=126&tid=172
For the RedHat patches see
http://www.redhat.com/apps/support/errata/index.html
For version 3.7 see
http://www.openssh.org/porta
T********r
发帖数: 6210
14
来自主题: Security版 - SSH exploit

^^^^^^^^^
vulnerability, exploit is not publicly released
l**********n
发帖数: 5272
15
用I E 上网很慢, 且往往资源耗尽死机,用spybot一查,查到DSO Exploit等一批东西。
但却无法根除。每次用IE 仍然毛病不减。
请求指点,如何杀掉? 谢谢了。
c*****e
发帖数: 88
16
来自主题: Security版 - DSO exploit 怎么删除
最近我的机子好像也中毒了,用spybot杀,总是有一个DSO exploit杀了还出来
每次开机特别慢,还自己在我的IE收藏里面加了些垃圾什么免费电影,免费手机的网站
用了超级兔子和金山毒霸都没有办法,有什么软件我还可以用的?
l***d
发帖数: 1828
17
中了Bloodhound.Exploit.196 病毒, 不知道怎么除,请推荐个去毒的工具。先谢谢了
g**y
发帖数: 108
18
我的laptop每次开机的时候symantec提示我说有bloodhound exploit 196 virus, loc
ation:ol/appdata/local/temp/DWHDEFC.temp. status: cleaned.
但是我每次开机都会出现这个窗口,而且这个location:ol/appdata/local/temp/DWHD
EFC 是不存在的。问我们的IT,说因为这个location找不到,所以没办法杀毒,只有重
装系统。
不知道怎么办?也不知道是symantec的问题,还是这个病毒藏在哪里,只有开机才运行
,所以每次开机后symantec才找到。
不知道有什么办法可以找到它,杀掉后,不会再每次开机就出现。
求救了,大侠们。
g**y
发帖数: 108
19
补充,这是symantec给我的全部信息:
A virus or security risk has been found.
Scan type: Auto-Protect Scan
Event: Security Risk Found!
Security risk detected: Bloodhound.Exploit.196
File: ol\AppData\Local\Temp\DWHDEFC.tmp
Location: ol\AppData\Local\Temp
Computer: CAROL-PC
User: SYSTEM
Action taken: Clean succeeded : Access allowed
Date found: Thursday, August 27, 2009 4:17:18 PM

loc
DWHD
k*****u
发帖数: 1688
20
http://www.nytimes.com/2011/05/13/technology/13data.html?_r=1
这一天什么时候到来啊?
Math majors, rejoice. Businesses are going to need tens of thousands of you
in the coming years as companies grapple with a growing mountain of data.
Data is a vital raw material of the information economy, much as coal and
iron ore were in the Industrial Revolution. But the business world is just
beginning to learn how to process it all.
The current data surge is coming from sophisticated computer tracking of
shipments, s... 阅读全帖
d*****r
发帖数: 39446
21
【此篇文章是由自动发信系统所张贴】
exploiter 已经退出本俱乐部, 特此通知.
d*****r
发帖数: 39446
22
来自主题: _IrishFootball版 - [通知] exploiter 退出本俱乐部
【此篇文章是由自动发信系统所张贴】
exploiter 已经退出本俱乐部, 特此通知.
a*****1
发帖数: 3817
23
来自主题: USANews版 - 说说朋友圈中的川粉 (转载)
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a********9
发帖数: 3813
24
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a********9
发帖数: 3813
25
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a********9
发帖数: 3813
26
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a********9
发帖数: 3813
27
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a********9
发帖数: 3813
28
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a********9
发帖数: 3813
29
来自主题: USANews版 - 美新版最恶心之人 . jerrycasper
瞎说
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién an... 阅读全帖
a********9
发帖数: 3813
30
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them.
Perhaps the saying is true: dime con quién andas... 阅读全帖
a*****1
发帖数: 3817
31
THE BLOG
Why I Can No Longer Support Hillary Clinton
4 days ago
César Vargas Writer, director, advocate, strategist, cultural critic.
Founder of upliftt.com.
It took me a long time to write this. I had to dig deep into my being to
come up with these words. I’m recanting my endorsement of Hillary Clinton
for the presidency.
I’m aware of how vindictive Clintonians can be. I’m not speaking about the
Clintons themselves, but of those surrounding them. Perhaps the saying is
true: dime con quién andas... 阅读全帖
z*******3
发帖数: 13709
32
首页 -> 新闻 -> 澳大利亚新闻 -> 正文
Australia's Mining Boom Creates Demand For Sex Workers
作者:翻译加工厂 发布日期:2013-01-28 浏览:8948
译文简介:
澳大利亚采矿业的繁荣产生了对性工作者的需求。
译文来源:
原文地址:http://www.reddit.com/r/NewsOfTheWeird/comments/163ubu/australias_mining_boom_creates_demand_for_sex/
原创翻译:龙腾网 www.ltaaa.com 翻译:翻译加工厂 转载请注明出处
正文翻译:
每人一小段,翻译我也行!
每日新素材,等你来认领! http://www.ltaaa.com/translation/
原创翻译:龙腾网 http://www.ltaaa.com 翻译:翻译加工厂 转载请注明出处
-------------译者:犬耳图鉴-审核者:vero------------
Supporters of the Scarlet Alliance Australian Sex ... 阅读全帖
l****z
发帖数: 29846
33
By Monty Pelerin
The number of Obama supporters seems inversely related to his time in office
. Many wonder what happened to "The One We Are Waiting For."
Obama assumed office in difficult economic times. After a couple of years
of excuses -- which included "the problems were worse than we knew" and the
generic, all-purpose "it's Bush's fault" -- Obama now owns the original
problems and new ones of his own doing. An incomplete report card on his "
accomplishments" would include the following:... 阅读全帖
w**z
发帖数: 8232
34
来自主题: Programming版 - Linux vulnerability "GHOST"
Highly critical “Ghost” allowing code execution affects most Linux systems
New bug haunting Linux could spark "a lot of collateral damage on the
Internet."
by Dan Goodin - Jan 27 2015, 11:32am PST
Share
Tweet
110
Pixabay
An extremely critical vulnerability affecting most Linux distributions gives
attackers the ability to execute malicious code on servers used to deliver
e-mail, host webpages, and carry out other vital functions.
The vulnerability in the GNU C Library (glibc) represents a... 阅读全帖
b********n
发帖数: 38600
35
来自主题: Military版 - 看来snowden真是美帝的掘墓人啊
以后中国所有政府,企业都用国货。
Why? Is there some component in your computer that you think is made in
America?
The BIOS chip of Dell computers has always used encrypted firmware, allowing
it to conceal all sorts of interesting 'features' if so desired. It's just
rarely exploited. All BIOS chips have extra memory that can be expoloited by
a reasonably-skilled hacker to own your machine. It's common now to jump
out of the BIOS code on bootup and execute a disk-based version of your BIOS
(EFI) instead. This all... 阅读全帖
d**e
发帖数: 6098
36
来自主题: JobHunting版 - [合集] 如何跟startup谈条件
☆─────────────────────────────────────☆
zzq2861105 (哇哈哈) 于 (Wed Jul 4 21:28:06 2012, 美东) 提到:
明天要去一个start—up公司谈工作的事情,HR一定要我开这么长时间车过去,我估计
是觉得我没什么经验,想一次性搞定我,不让我有考虑的时间和余地。 应该主要是工
资,签证,股票这几个方面的问题。 不知道有谁有什么建议吗? 或者发个总结的帖
子的地址给我,我想系统地准备下
从别处摘来的,分享一下:
工资谈判最重要的是告诉对方你值多少钱,而不是你需要多少钱。
错误方式一:我有老婆有孩子还刚刚买了房子,老爷太太多赏几个大子儿吧 (直接去
地铁站吧,不送啦)。
错误方式二:我有offer二三四五六,你不给我加钱我去别家了(心里可以这么想但不
能这么说,吃相不能太难看)。
错误方式三:我同学我同事我亲戚我朋友都拿多少多少钱(四大牛人在mitbbs上显摆显
摆就算了千万别当真,人家关你什么事),或者amazon google facebook microsoft
IBM walmart McDona... 阅读全帖
a****a
发帖数: 5763
37
http://bbs.weiphone.com/read-htm-tid-5575298.html
本文为技术组独家专稿,如需转载请联系题首logo邮箱(拒绝狗妖类无耻之辈转载);
-Comex共同参与制作
众所周知Comex因为超强的变长能力和漏洞查找能力而在所有的iPhone黑客中
脱颖而出,最后被苹果招安。但是可惜的是,iOS6的系统由Comex参与开发,也是有史
以来封堵漏洞最最多的一次,高达20+。各位可能不是很了解Comex,我统计过,在所有
的iOS漏洞中,Comex一个人所发现的漏洞总量占了所有iOS漏洞总量的43%,可见其能力
了得,也就是说,据我了解,iOS 6一下子堵住了以下漏洞:
Incomplete Codesign Exploit
BPF STX Kernel Write Exploit
IOSurface Kernel Exploit
Packet Filter Kernel Exploit
HFS Legacy Volume Name Stack Buffer Overflow
ndrv_... 阅读全帖
o*a
发帖数: 229
38
有黑幕三帮忙美帝三十年内将不攻自破。可惜自恨的职场国人还不觉醒。
http://www.americanbazaaronline.com/2014/05/07/many-h4-visa-hol
RKsharma2012 • 16 days ago
For last few days I am reading in media, that US authorities may
consider option of giving EAD to spouses of H1Bs. I want to bring few
points to your notice from an insider perspective.
1.I will say adding more EAD/H1Bs are not going to benefit US economy
unless senior authorities in US fix some underlying Issues.
2.US
IT industry is controlled by Indians from only tw... 阅读全帖
u*****a
发帖数: 9489
39
我来个摘要:
印度人之间由于语言宗教不同,派系复杂,歧视严重。美国IT业都被印度东南部两个邦
的人把持,只招自己人,不招外种族的人,甚至连其他地域族群的印度人也不招。让这
些人把持IT业,不但是白人,黑人,华人等所有族裔的灾难,也是绝大多数印度人(他
们那个特定小圈子的人除外)的灾难。
在这些印度人小圈子“团结”的表象背后,是各种肮脏的内幕。老印高管剥削下级印度
人,任意奴役侮辱,下级为了保住他们的工作,常常要向上级行贿。他们还开设很多咨
询公司(应该是ICC之流),滥用H1B名额,剥削压榨印度人。
--------------------------------------
发信人: oba (欧巴), 信区: Military
标 题: 看到一个阿三揭露老印们如何整烂美国
发信站: BBS 未名空间站 (Tue May 27 11:33:15 2014, 美东)
有黑幕三帮忙美帝三十年内将不攻自破。可惜自恨的职场国人还不觉醒。
http://www.americanbazaaronline.com/2014/05/07/many-h4-visa-hol
RKsharma2012 ... 阅读全帖
O******e
发帖数: 238
40
【 以下文字转载自 Seattle 讨论区 】
发信人: rayman (rayman), 信区: Seattle
标 题: 看到一个阿三揭露老印们如何整烂美国 (转载)
发信站: BBS 未名空间站 (Tue May 27 13:33:23 2014, 美东)
发信人: oba (欧巴), 信区: Military
标 题: 看到一个阿三揭露老印们如何整烂美国
发信站: BBS 未名空间站 (Tue May 27 11:33:15 2014, 美东)
有黑幕三帮忙美帝三十年内将不攻自破。可惜自恨的职场国人还不觉醒。
http://www.americanbazaaronline.com/2014/05/07/many-h4-visa-hol
RKsharma2012 • 16 days ago
For last few days I am reading in media, that US authorities may
consider option of giving EAD to spouses of H1Bs. I want to bring few
poin... 阅读全帖
l****z
发帖数: 29846
41
Microsoft warns of IE zero day in the wild, all IE versions vulnerable
By Ms. Smith
Microsoft is warning of a zero-day exploit targeting Internet Explorer. On
Tuesday, the company posted a security advisory [1] stating "Microsoft is
investigating public reports of a vulnerability in all supported versions of
Internet Explorer. Microsoft is aware of targeted attacks that attempt to
exploit this vulnerability in Internet Explorer 8 and Internet Explorer 9."
Microsoft issues Fix It workaround for n... 阅读全帖
1 2 3 4 5 6 7 8 9 10 下页 末页 (共10页)