Although pass-the-hash attacks have been around for a little over thirteen years,the knowledge of its existence is still poor.This paper tries to fill a gap in the knowledge of this attack through the testing of the freely available tools that facilitate the attack.While other papers and resources focus primarily on running the tools and sometimes comparing them, this paper offers an in-depth, systematic comparison of the tools across the various Windows platforms,including AV detection rates. It also provides exte...

Exploiting SQL Injection from Web Applications

为了更好的促进OWASP中国各区域的沙龙、活动能够持续、稳定的进行，OWASP中国特成立的各区域小 组，主要为了促进小范围内的交流和分享。同 时，也非常欢迎大家自荐成为自己所在区域的负责人。OWASP中国项目研究组以目前OWASP的开源项目为基础，深入研究各类应用安全技术，并输出相关中 文资料、培训文档、安全工具等。同时，也会不定期的在各区域的活动上做相关培训。 OWASP中国QQ交流群 78238096

Major functions of Netbot include DDoS attack and backdoor functions such as remote control. The infected computers can be abused for malicious behaviors such as illegally get the private information of users and data stored in the computers, attacking of specific servers and web-sites.Actually, many web-sites such as game item trading sites, internet portals and internet banking web-sites

Black Hat USA 2009 Speaker Materials - Updated

#Trace: Paper不错，值得看看。里面介绍了nmap和metasploit的一些很实用的用法 。

Scanning Windows Deeper With the Nmap Scanning Engine

WPAD (Web Proxy Auto Discovery) is a method used by web clients to automatically
locate a browser configuration file used to connect through proxy.

As a follow up of HTTP Parameter Pollution presentation,
I think it's time to give some details of the Yahoo! Classic Mail exploitation.
That's the long version of the video we showed @ OWASP Appsec Poland 2009:
Youtube LD Video or Wisec HD Video

In the last months, we have discovered several real world flaws in which
HPP can be used to modify the application behaviors, access
uncontrollable variables and even bypass input validation checkpoints
and WAFs rules.

PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. If you are new to PHP and want to get some idea of how it works, try the introductory tutorial. After that, check out the online manual, and the example archive sites and some of the other resources available in the links section.

#Trace: 样章里提到了一些与内网渗透相关的东西。

mb_ereg(i)_replace() evaluate replacement string vulnerability

by ryat#www.80vul.com

when option parameter set e, matchs not be escaped.

这么多年以来,很多web程序被黑过来黑过去的,很多程序员开始认识到一些直接的主要的安全漏洞方式,比如xss/sql-injection等.但是还有很多的安全问题被人遗忘了[包括程序员和代码审计的安全人员]: