摘要：SQLi filter evasion cheat sheet(MySQL)This week I presented my experiences in SQLi filter evasion techniques that I have gained during 3 years ofPHPIDSfilter evasion at the CONFidence 2.0 conference. You can find the slideshere. For a quicker reference you can use the following cheatsheet. More deta 阅读全文

摘要：While participating at some CTF challenges like Codegate10 or OWASPEU10 recently I noticed that it is extremely trendy to build SQL injection challenges with very tough filters which can be circumvented based on the flexibleMySQL syntax. In this post I will show some example filters and how to explo 阅读全文

摘要：各位朋友好！筆者最近發現擺在實驗室的Windows 7桌上型主機，從區域網路的任何一台電腦可以連線，但是從宿舍(中華電信)或是女友家中(Cable)無法執行遠端桌面連線，順利連回來。在東找西找之後，才發現跟Windows 7 遠端桌面連線數有關。想必大家都有過這段經驗，要結束遠端桌面連線，都會順手直接把遠端桌面視窗關閉。但是此舉可能造成遠端桌面的Session無法順利清除。下一次連線時，因已達連線數目的上限，系統直接拒絕你的連線。要解決的辦法很簡單，只要依照下面3個步驟即可！1. 從要被遠端的電腦上，按下Windows 7的開始按鈕，在搜尋視窗內輸入"gpedit.msc" 阅读全文