banner
lca

lca

真正的不自由,是在自己的心中设下牢笼。
HomeArchives图文

web

cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

验证码模块常见的一些漏洞

验证码主要用在登陆表单中进行登陆验证,防止表单被暴力破解。如果验证码模块设置不当,如客户端验证、服务端验证码不过期等,验证码就形同虚设。
渗透测试
cover
cover

编写高质量的报告

前言 个人经验来看,渗透测试报告分两类,一类是简单的报告,简要汇总漏洞内容,这种报告都是技术性东西,不适合领导看,一类是复杂且正式的报告,可用来做项目汇总及验收盖章用的报告。 之前看到这篇文章,写了如何编写高质量报告规范,针对国外的渗透测试报告,总结了下内容…
web
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover
cover

2023年SWPU NSS 秋季招新赛 (校外赛道)web题writeup

水水比赛 赛题可以到https://www.nssctf.cn/index 搜索到 colorful_snake 右键查看 js 源码,unicode 解码 NSS_HTTP_CHEKER cookie editor设置 cookie X-Forwarded-For: 127…
网络安全
Ownership of this blog data is guaranteed by blockchain and smart contracts to the creator alone.