浏览模式: 标准 | 列表全部文章

招人了,各位有对安全有兴趣的看过来!

Submitted by ╰☆往事如风 on 2010, October 9, 11:21 AM

阿里巴巴集团安全校园招聘正式启动了!阿里巴巴集团安全中心隶属于阿里巴巴集团技术研究院,负责保障阿里巴巴B2B、淘宝、支付宝、阿里云等各个子公司的业务安全,制定集团统一的安全标准,建立平台化的技术体系,并以优异的技术支撑各个子公司的信息安全建设。

 

我们拥有最优秀的专家为网上交易安全提供量身定制的解决方案。我们拥有最专业的团队陪伴着阿里巴巴一起走过十年,保驾护航,也经历了中国电子商务的十年风雨。在未来的十年中,我们期待具备以下几项(或部分具备)技能的您加入,一起见证信息时代新商业文明的到来。

 

1) 熟练掌握至少一种安全技术,对安全有热情。

2) 熟悉WindowsLinux/Unix操作系统结构,有内核开发经验者优先。

3) 了解信息系统安全攻防技术,有安全工具开发经验、安全技术大赛经验者优先。

4) 具备出色的沟通表达能力,优秀的团队合作能力。

 

申请请到以下网页: http://www.joinaliyun.com/jobs/8.asp

杂七杂八 | 评论:0 | 阅读:219551

Web Vulnerability Scanner 7.0 Patch for ...

Submitted by ╰☆往事如风 on 2010, September 28, 6:18 PM

RT
Thanks for all
Update For Version 7
Not work for free version.

Acunetix WVS Build History

Build v7.0.20100921 - 22nd September 2010

New Security Check:

  • Added a security check for the latest OpenX OFC file upload vulnerability
  • Added a ASP.NET security check for the ASP.NET padding Oracle vulnerability

Improvements:

  • Reduced the number of false positives for Blind SQL injections security checks
  • Improved Blind SQL injection tests by adding a number of new tests to detect blind SQL injections in UPDATE/INSERT/...

Bug fixes:

  • Fixed: Cookie encoding didn't worked as expected in some cases
  • Fixed: Cookie were not always imported from AcuSensor data
Filewvs.7.0.patch.for.2010_09_21_01.exe
Size265741 bytes
Modified2010年9月28日17:56:35
MD572C2740B816D5C2D78A6353EE0D902CE
SHA16ED7F3D95690A249B2CADF0455DE522160771999
CRC328EFB4D9C Download Address:
http://www.acunetix.com/download/fullver7/2010_09_21_01_webvulnscan7.exe
User:acunetixwvsfullv7
Password:AkfhkJS1B83qAZPA

附件: wvs.7.0.patch.for.2010_09_21_01.rar (169.57 K, 下载次数:1313)

逆向工程 | 评论:5 | 阅读:219895

echofon diyurl 版本 for 4.0 b3pre

Submitted by ╰☆往事如风 on 2010, July 26, 11:07 AM

2010-07-26 17:49更新,修复不使用api的时候的异常问题。
如果不需要使用api,请直接留空api的配置即可。

基于echofon 1.9.6.5RC1 修改而来,支持最新的firefox 4.0 b3pre 每夜版。

» 阅读全文

编程技术 | 评论:9 | 阅读:221127

Navicat Premium patch for 9.0.10(support...

Submitted by ╰☆往事如风 on 2010, July 20, 10:43 AM

Navicat Premium patch for 9.0.10, 支持简体中文,繁体中文和英文版本

» 阅读全文

逆向工程 | 评论:33 | 阅读:240034

Navicat Premium patch for 9.0.4

Submitted by ╰☆往事如风 on 2010, April 28, 5:32 PM

New Key features for 9.0.4:

- Support of SQLite

- Oracle PL/SQL Debugger

- Enhanced Code Completion

- Code Formatter

- Code outline

- Recovery of Documents from crashes

- Shortcut to open official online documents

- Option to show query results below query editor

- Storing favorite actions as shortcut

- Enhanced User Interface


--------------------------------------------------------------------------------------------------------------------------------

Navicat Premium是Navicat新出的一款整合Navicat MySQL, Navicat Oracle, Navicat PostgreSQL的全能数据库连接工具,通过他可以方便的对MySQL,Oracle,PostgreSQL进行访问和操作。

本着好用节约的原则,以无美感的暴力行为对起进行了节约化改造。(罪过罪过)。

使用方法:完成后复制patch到程序目录执行。安装程序官方有下载

附上官方的软件说明:

Description:

Navicat Premium is a multi-connections Database Administration tool allowing you to connect to MySQL, Oracle and PostgreSQL databases simultaneously within a single application, making database administration to multiple kinds of database so easy.

Navicat Premium combines the functions of other Navicat members. With connections established to different database types, Navicat Premium supports data transfer between MySQL, Oracle and PostgreSQL. It supports most of the features in MySQL, Oracle and PostgreSQL including Stored Procedure, Event, Trigger, Function, View, etc.

Navicat Premium enables you to easily and quickly transfer data across various database systems, or to a plain text file with designated SQL format and encoding.

file info:

文件: navicat.premium.version.9.0.4-patch.exe
大小: 265605 字节
修改时间: 2010年4月28日, 17:29:41
MD5: D52C830369516DF5AA6D2A64CD0BB252
SHA1: E9A82AD9D37D13640875180A18AD7A91D5F4F341
CRC32: CE2B01A8

附件: navicat.premium.version.9.0.4-patch.rar (169.4 K, 下载次数:1697)

逆向工程 | 评论:36 | 阅读:233887

Web Vulnerability Scanner 6.5 Patch for ...

Submitted by ╰☆往事如风 on 2010, February 17, 11:11 PM

RT
Thanks for too
Not work for free version.

Information:

Build v6.5.20100210 - 10th February 2010

New security check:

    * Test for Cross Site Scripting in the Referer header

Improvement:

    * Acunetix Firefox extension now supports latest Firefox release

Bug Fixes:

    * Crawler: Html decode form inputs before usage
    * Fixed an infinite recursion when crawler reported an external link from the same host but on a different port
    * Fixed an issue with the crawler with parsing robots.txt file
    * Web Services scanner: Fixed parsing of WSDL files with attributes

 

2010-02-19 update:

2010_02_10_01_webvulnscan65.exe

size15445824 byte

MD54BB84128A895CD5959C1369E1BD8AE55

SHA1040AFAC2EE406AB6FBCF8AFBA078C34074EED933

CRC320CAFEA4F

附件: web.vulnerability.scanner.6.5.patch.rar (165.81 K, 下载次数:593)

安全相关 | 评论:12 | 阅读:215330

使用except转发sqlplus的demo

Submitted by ╰☆往事如风 on 2010, January 14, 9:50 PM

之后拿来YY web版的客户端或者加上权限控制啥的直接抛弃命令行都可以的哈。
记录一下。顺便痛恨expect的语法。

» 阅读全文

编程技术 | 评论:2 | 阅读:213249

Records:22212345678910»