- 博客(24)
- 收藏
- 关注
RSS订阅原创 Rabin加密
Rabin加密Rabin加密是RSA加密的衍生,是一种基于模平方和模平方根的非对称加密算法。加密过程Rabin加密的公私钥生成和RSA一样,只是e = 2。生成两个大素数,p,q,N = p*qc=m2 mod Nc = m^2~mod~Nc=m2 mod N解密过程由于Rabin加密使用的e=2,导致e和ϕ(N)\phi(N)ϕ(N)不互素数。无法求得私钥d,使得ed≡1 mod Ned ≡ 1~mod~Ned≡1 m
2020-08-19 00:33:55
1396
1
原创 angr学习【1】
angr安装python虚拟环境安装python虚拟环境pip install virtualenvpip install virtualenv wrapper安装完成后,将如下命令写入~/.bashrc(linux)或者~/.bash_profile(OSX)export WORKON_HOME=your/python/env/pathsource /path/to/virtualenvwrapper.sh 创建虚拟环境mkvirtualenv angr推出虚拟环境deact
2020-07-06 01:53:23
597
1
原创 Linux capability详解
linux capabilities在Linux内核2.2之前,为了检查进程权限,将进程区分为两类:特权进程(euid=0)和非特权进程。特权进程(通常为带有suid的程序)可以获取完整的root权限来对系统进行操作。在linux内核2.2之后引入了capabilities机制,来对root权限进行更加细粒度的划分。如果进程不是特权进程,而且也没有root的有效id,系统就会去检查进程的capabilities,来确认该进程是否有执行特权操作的的权限。可以通过man capabilities来查看具体
2020-06-21 17:23:49
9002
原创 ROOT友华PT921G光猫
获取配置文件接入光猫局域网后,访问网关ip 192.168.1.1,账户(useradmin)和密码在光猫底部的贴纸上(包括初识Wi-Fi密码)。登陆后,会进入如下页面,没有过多可操作的内容。访问http://192.168.1.1/romfile.cfg,可以下载到光猫的配置文件。打开配置文件,搜索web页面的超级用户telecomadmin,获取到密码为nE7jA%5m。更改配置使用web超级用户登录,进入如下页面。进入宽带设置页面,可以将默认的网关模式更改为桥接模式(该猫的路由功能较
2020-06-04 22:05:42
8926
6
原创 Arm-Trusted-Firmware代码分析
ATFBL1bl1_entrypointbl1/bl1.ld.SENTRY(bl1_entrypoint)el3_entrypoint_common_exception_vectors设置el3异常向量, MVBARbl1_exceptionsSynchronousExceptionA64smc_handler64BL1_SMC_RUN_IMAGEsm...
2020-05-02 18:02:21
2062
原创 VulnHub—DC-8
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-8,367/题目信息如下DC-8 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.This challeng...
2020-02-02 02:09:13
464
原创 VulnHub—DC-7
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-7,356/题目信息如下DescriptionDC-7 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.W...
2020-02-02 00:23:25
553
原创 VulnHub—DC-6
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-6,315/题目信息如下DescriptionDC-6 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.T...
2020-02-01 18:35:59
368
原创 VulnHub—DC-5
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-5,314/题目信息如下,只有一个flagDescriptionDC-5 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration te...
2020-02-01 16:39:49
759
1
原创 VulnHub—DC-4
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-4,313/题目信息如下,只有一个flagDescriptionDC-4 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration te...
2020-01-31 16:49:12
317
原创 VulnHub—DC-3
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-3,312/题目信息如下DescriptionDC-3 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.A...
2020-01-30 21:59:04
1342
原创 VulnHub—DC-2
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-2,311/题目信息如下DescriptionMuch like DC-1, DC-2 is another purposely built vulnerable lab for the purpose of gaining experience in the world of penetra...
2020-01-30 15:14:11
319
原创 VulnHub—DC-1
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-1,292/题目信息如下,环境中有flag文件,里面有hintDC-1 is a purposely built vulnerable lab for the purpose of gaining experience in the world of penetration testing....
2020-01-29 23:07:23
319
原创 VulnHub—HA-Infinity Stones
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/ha-infinity-stones,366/题目信息如下,需要找到6个宝石对应的flagThanos thinks that if he kills half of all life in the universe, he’ll restore balance. To do so, he needs...
2020-01-28 21:52:05
531
原创 VulnHub—HA-Avengers Arsenal
01 环境搭建靶机环境下载:https://https://www.vulnhub.com/entry/ha-avengers-arsenal,369/题目信息如下Avengers are meant to be Earth’s Mightiest Heroes, but some heroes just aren’t mighty enough without their trusty...
2020-01-27 13:27:23
601
原创 命令注入绕过空格
01 全局变量$ echo${IFS}12341234$ echo$IFS$91234123402 重定向符$ cat<test1234$ cat<>test123403 变量定义$ cmd=$'\x201234'&&echo$cmd1234这个方式可以用ASCII编码,绕过所有字符限制。04 字符串处理$ a=$(id)&am...
2020-01-12 19:05:30
3073
1
原创 VulnHub—Os-hackNos-3
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-hacknos-3,410/题目信息如下,难度中等,需要获取俩个flagDifficulty: IntermediateFlag: 2 Flag first user And the second rootLearning: Web Application | Enume...
2020-01-07 00:13:13
908
3
原创 VulnHub—Os-Hax
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-hax,389/题目信息如下,难度中等Back To The TopDifficulty : IntermediateFlag : boot-rootLearing : exploit | web application Security | Privilege Es...
2020-01-05 18:27:39
477
原创 VulnHub—Os-Bytesec
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-bytesec,393/题目信息如下,难度中等,需要获取俩个flagDifficulty : IntermediateFlag : 2 Flag first user And second rootLearning : exploit | SMB | Enumration...
2020-01-05 12:39:13
852
原创 VulnHub—Os-hackNos-2.1
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-hacknos-21,403/题目信息如下,难度中等偏下,需要获取俩个flagDifficulty : Easy to IntermediateFlag : 2 Flag first user And second rootLearning : Web Applicati...
2019-12-27 23:47:13
645
原创 VulnHub—Me and My Girlfriend: 1
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/me-and-my-girlfriend-1,409/题目信息如下,难度入门级,需要获取俩个flagDescription: This VM tells us that there are a couple of lovers namely Alice and Bob, where the coupl...
2019-12-22 19:11:22
706
原创 VulnHub—Os-hackNos-1
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-hacknos,401/题目信息如下,难度中等偏下,需要获取俩个flagDifficulty : Easy to IntermediateFlag : 2 Flag first user And second rootLearning : exploit | Web Ap...
2019-12-22 18:33:48
591
原创 python pip提权
在有些linux机器中,某个用户拥有pip的sudo权限,在这种情况下,可以利用pip install进行本地提权。在执行pip install时会调用setup.py,可以在本地创建恶意setup.py文件来达到任意命令执行的效果。from setuptools import setupfrom setuptools.command.install import installimpor...
2019-12-21 13:24:16
1526
原创 Timing Attack on ECDSA
密码学中的椭圆曲线(ECC)椭圆曲线(ECC)椭圆曲线可用下列方程式来表示,其中a,b,c,d为系数。E:y2 = ax3 + bx2 + cx + d例如,当a=1,b=0,c=-2,d=4时,所得到的椭圆曲线为:E:y2 = x3 - 2x + 4有限域域(Field)的特性是集合F中的所有元素经过定义后的加法和乘法运算,所得结果仍包含于F(在加法和乘法上封闭)。无限域...
2019-12-09 00:16:48
1177
2
空空如也
空空如也
TA创建的收藏夹 TA关注的收藏夹
TA关注的人