Professional Documents
Culture Documents
cj20 Antihakerz
cj20 Antihakerz
http://www.t0010.com
&&&&&&&&&&&&&&&&&&&&&&
JK :L MN
T0010.COM
## "#$% *)( ' +,- . ##
<
?
= :; 7 8#9 6
: D"@ $ % @ 7
http://www.t0010.com
G=
--------------------------------------------------------------
aLTar3q
---------------------------------------------------------------
: %' 234
FH %H I J 9DE Adobe Reader 6 7 9:;
< #* =>9D LU .
%, .L97 FOF% P7< Q .%QR S
: S P7 X#* Z\[ F X = 6 V I
http://www.adobe.com/uk/products/acrobat/readstep2.html
http://www.t0010.com
http://www.t0010.com
I F'
=i N @"$nr "G @"$ _[| J # X
9Kg _ # #" 6G "$@ "i f ) L6
]% ] U "i :N % ... c ( .
; : kJ 8[NL J @"$
8" "GJ K :
hg ; KG : a J JK "G K i rX
"G ] J w"#"$ LL@ _[| J "#] %8 X% ;:
? ? # #8 q $ ; : N : a# :
6 # _" ? K< 8i ; $ #. 6fg
J "$@ L 6 f 6 !L M #L;<
NG# K; L8NKJ "$ 6 a ;u K ; : K G
"" .
]"#J 8% 6 ? J" J 6L @"$ KN f ?q
" 8 :; BASIC e "$ ! D; L% q # kJ "e K G #88
]"# 6 # ATARI q"$ w"# KNJ ?K .
@"$ e" q? :; D; 8$ 6 8 i :%# ?K J 6q
% i " @"$ e 8 _ % _ p 6e "( Interpreter e
)g 8 "# # qg ) L ?= "$] ?K J x N
" q kJ " ( e < 8 JN# p ?N K ! cX
J $ :; i# ? X;g : K p x
e 8
=~ {) q; K )X f %< ? i 8 ] ; ] N #
p "8#8 ? e !
=i ? Compilers or Interpreter "$@ $ 8=7
? .J f @ q"$ w"# |[M @"$ K @Ni :LLg
" 8[NL $. " ; : kJ "
8 "$@ Ni@ 8
_N _[| J 8[# 8%= q {g N qfX { .$M
http://www.t0010.com
http://www.t0010.com
,D F%\[ .. LE
< ="] i% =] #n _ # $ K"G; KN D
)8[ L " ( G "$@ J K
] K # { ;i h kJ # r "K
neL e 8 ~ _; 6eL :; _ i% h]
neL e e = : K ;i% :] f 6 N#8
?n U == w . q
;i kJ ef g # 7iG : # 8 K MU
6LXU # M :=c= : VB p q?N #8N _ K :
=" $ e =_ ; : ~N J 7 ] K N $ # $8
8i % # ]"= 6e# ef ;!q
6
http://www.t0010.com
http://www.t0010.com
' F
- e
R !=-F
XSS $ <iL 6
i= 6 e :niLU SQL Injection
% 6 $% ?" Session Hijacking
N% 6 $ CRLF Injection
$ Directory Traversal
$ e 7$n? Parameters Manipulation
... N kJ :iL "uLg $ a _8 7i N
http://www.t0010.com
SQL Injection
=< kJ 9#9$ ]"cL N @ $ L KJ a
8#8 :: nL SQL Injection 8 _= 8a 6 7#
= @N = ="] a X N w#.
http://www.t0010.com
CRLF Injection
CRLF "G GX Carriage Return , Line Feed CR 9Lg:
13 LF 9 10 :LgJ 9 K8[# 8N# 8N$ @"$ Deh
Enter "9N @ . 8#8 L
~ 8[# N ; D GX LF 9 J N ?K X
" #eK" # @G% ;X q"in kJ $N ef =_q#
6M c G 8 kJ _" = 8% $ 7 qL w J
= ?.q
J N ?K # 8$ 7 h# ;| nX8 [8 ) =
SQL Injection ) c= xss 8 [8
#n$ 6X8 ; \n\r:
nX8 )
; :g 8[" K # : 8[L kJ "N9
@ ( 8#8 L
| :; nf a J q# :; hi 8N 7?# = 8[L q
Enter J # 8N$ q"$ Deh @ \n\r { ! ;N$ :
a L "[8 X "_ CRLF 9!!
10
http://www.t0010.com
11
http://www.t0010.com
Ni # $8L " file.html 8[" qa$ " # file.html
# ;"? : news 8; g K % $n; 7:
Ni JK q _:6
http://www.yoursite.com/news/show.aspx?view=../../../../../Windows/system.ini
12
http://www.t0010.com
http://www.t0010.com
http://www.t0010.com
" X
nX kJ < =" D h $ @"$ K KM 6 ef
K8[# : K @"$ { =_ 7i a f ;$ q
N:
< r ~i g Lc" =N :< Lc" $
# ;K q [ :8 L 7 :"$ N #8i 8
_ 6 ef = "i# KN K"i w N"$ <G@ _
Sniffing "i w"i# KN U$ Spoofing ?K w"i# KN
[ DOS 8 "i "" e [ "i DXU
?8$ ... :$ = kJK :% a
8M 7 =[KGG
8 c Ki L 8K Kr 7 f :
kJ aN$ :8 h#$ # # ! K
8#
N$ a 6_ qa { #;
: : _< [# 8% %
kJ !:"L
= @N 8%;< ;r : a _L 6" ; : { 7
= ="i # c : :8#9L 8 @"$ "x "L" "
$J ? ? "i.
~n w" ] : 9#9$ # 6N kJ @ N8
X % MU M D @ 8G ; DU
J ! N K kJ "< <% ? 8K J "$ q L
:; Ni = 7 MU 8G a
15