본문 바로가기

Security_Study

Attacking Android Applications With Debuggers In this blog, I am going to walk through how we can attach a debugger to an Android application and step through method calls by using information gained from first decompiling it. The best part is, root privilege is not required. This can come in handy during mobile application penetration tests because we can step into an application while it’s running and potentially obtain and write informat.. 더보기
Advisory: XXE Injection in Oracle Database (CVE-2014-6577) The XML Parser module in Oracle Database is vulnerable to XML External Entity (XXE) Injection.Affected versions: 11.2.0.3, 11.2.0.4, 12.1.0.1 and 12.1.0.2Privilege required: CREATE SESSIONTechnical DetailsDue to the security features in Oracle’s XML parser, the external schema is resolved, but not parsed. This prevents certain XXE injection attacks, such as reading local files on the remote data.. 더보기
Decrypting MSSQL Credential Passwords A while ago I posted a blog on how to decrypt SQL Server link passwords (https://blog.netspi.com/decrypting-mssql-database-link-server-passwords/). By using the same technique it is possible to decrypt passwords for SQL Server Credentials as well. I modified the previously released password decryption script a little, namely by just changing the location where the encrypted passwords are stored,.. 더보기
How Control Flow Guard Drastically Caused Windows 8.1 Address Space and Behavior Changes Windows 8.1 radically changes the address space layout of the system by finally removing the 44-bit limitation which I described in one of the earliest blog posts on this website (and which Wikipedia even links to!). This is a little-known detail about the operating system, and an odd thing for Microsoft not to emphasize on with more aplomb, especially given that 8.1 is considered a “patch” of W.. 더보기
Some Memory Forensic with Forensic Suite (Volatility plugins) In previous diaries we have talked about memory forensics and how important it is.In this diary I will talk about a new volatility plugins called Forensic Suite written by Dave Lasalle.The suite has 14 plugins and they cover different area of memory forensicsThe Forensics Suite can be obtain from: http://downloads.volatilityfoundation.org/contest/2014/DaveLasalle_ForensicSuite.zip .In this diary.. 더보기
Smuggler - An interactive 802.11 wireless shell without the need for authentication or association I’ve always been fascinated by wireless communications. The ability to launch seemingly invisible packets of information up into the air without even the need to consider aerodynamics itself seems like some kind of magic.In my quest to become a wireless wizard I started looking at the 802.11 wireless protocol to find out a little more about it. I had always noticed when looking at wireless manag.. 더보기
WinDbg CheatSheet 더보기
Node v0.10.27 (Stable) Node v0.10.27 (Stable)Thu, 01 May 2014 22:29:37 UTC - release2014.05.01, Version 0.10.27 (Stable)npm: upgrade to v1.4.8openssl: upgrade to 1.0.1guv: update to v0.10.27dns: fix certain txt entries (Fedor Indutny)assert: Ensure reflexivity of deepEqual (Mike Pennisi)child_process: fix deadlock when sending handles (Fedor Indutny)child_process: fix sending handle twice (Fedor Indutny)crypto: do not.. 더보기
우분투에서 다양한 한글 글꼴을 사용방법 우분투를 설치하면 기본 한글 글꼴로는 네이버에서 만들어 배포하는 나눔글꼴이 설치되고있다.우분투 역시 다양한 글꼴을 설치하여 사용할 수 있다.1. 소프트웨어센터를 이용하여 설치.우분투에서 글꼴을 설치하는 첫번째 방법은 소프트웨어센터를 이용하는 방법이다. 소프트웨어센터는 우분투 또는 우분투 커뮤니티를 통해서 기본적으로 제공하는 소프트웨어나 액세서리, 책, 잡지 등을 설치 또는 삭제할 수 있도록 하는 소프트웨어다. 기본적으로 제공하는 글꼴 또한 이를 이용하여 설치할 수 있다.우분투 소프트웨어센터소프트웨어센터에서 “hangul font” 또는 “korean font”를 검색하면 배달의민족이 제공하는 한나체(Baedal-Minjok Hanna Korean font), 네이버가 제공하는 나눔글꼴(Nanum으로 시작.. 더보기
[B급 프로그래머] 5월 1주 소식 웹/앱 소식Web Fundamentals: A handbook for best practices: 다중 디바이스 웹 경험을 극대화하는 방법 소개Mobile Angular UI: HTML5 모바일 앱을 부스트르랩과 AngularJS로 만드는 프레임워크An Introduction to the MEAN Stack: MongoDB, ExpressJS, AngularJS, Node.js 스택 소개개발/관리 도구os-maven-plugin: maven에서 운영체제와 아키텍처를 정확하게 알려주는 플러그인runnable: 온라인에서 코드를 실행하는 도구New Super Fast Droplet Console. Thanks, Golang!: 디지털 오션이 백엔드를 go로 이전하고 있다는 소식InfoQ eMag: REST:.. 더보기