[系统/网络安全] Web-Application-Firewall-WAF-Enhancement-
本项目的目的和目标是保护和保护网站免受来自外部或内部人员的任何恶意攻击,这些恶意攻击的目的是破坏系统并导致不可用。该项目的主要目标是增强Web应用程序防火墙(WAF)对各种类型攻击的安全性。
The aim and goal of this project is to protect and safeguard the websites from any malicious attacks coming from outsiders or insiders whose aim is to break down the system and cause unavailability. The project’s main target is to enhance the security of Web Application Firewalls (WAFs) against various types of attacks. (2024-03-01, Jupyter Notebook, 0KB, 下载0次)
[系统/网络安全] SecurityManageFramwork-SeMF
企业内网安全管理平台,包含资产管理,漏洞管理,账号管理,知识库管、安全扫描自动化功能模块,可用于企业内部的安全管理。 本平台旨在帮助安全人员少,业务线繁杂,周期巡检困难,自动化程度低的甲方,更好的实现企业内部的安全管理。,
Enterprise intranet security management platform, including asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, can be used for internal security management of enterprises. This platform is designed to help Party A, who has few security personnel, complex business lines, difficult periodic inspection and low degree of automation, better realize the internal security management of the enterprise., (2022-01-06, Python, 0KB, 下载0次)
[系统/网络安全] lansee175
局域网查看工具(LanSee)是对局域网上的各种信息进行查看的工具。可以快速搜索出局域网中的计算机(包括IP地址、MAC地址、计算机名称、工作组、用户名、操作系统)、共享资源、共享文件。通过图表的方式展示出局域网中某个网段的IP占用情况以及任意时刻主机在线数情况。对于家庭wifi用户来说,她能将所有使用wifi的电脑、手机、无线路由器、智能电视、智能插座等网络设备搜索出来,还可以查看某个时刻有哪些设备在运行。
Lansee is a tool to view all kinds of information on LAN. It can quickly search out computers (including IP address, MAC address, computer name, workgroup, user name, operating system), shared resources, and shared files in LAN. The graph shows the IP occupation of a certain network segment and the number of hosts online at any time. For home WiFi users, she can search all the network devices such as computers, mobile phones, wireless routers, smart TVs, smart sockets, etc. using WiFi, and can also see which devices are running at a certain time. (2020-06-07, C/C++, 344KB, 下载0次)
[系统/网络安全] teaching corse
IP编址、子网以及CIDR的研究使用套接字接口代替XTI/TLI使用两条TCP连接使应用程序成为事件驱动的使用一次大规模写操作代替多次小规模写操作避免数据复制理解TCP可靠性的涵义认识缓冲区大小带来的影响高效使用tcpdump、traceroute、netstat和ping
Research on IP Address, Subnet and CIDR Using Socket Interface instead of XTI/TLI Using Two TCP Connections to Make Applications Event-Driven Using One Large Write Operation instead of Multiple Small Write Operations Avoid Data Replication Understanding the Meaning of TCP Reliability Recognizing the Impact of Buffer Size on Efficient Use of tcpdump, traceroute, netstat and Ping (2019-02-26, Others, 12841KB, 下载0次)
[系统/网络安全] networkview
NetworkView该软件是一个自动绘制网络拓扑图的工具,启动该软件后会自动扫描处于本网段内的所有网络设备,包括路由器、交换机以及防火墙设备。然后根据扫描结果自动绘制出一个网络拓扑图来。
NetworkView is a tool to automatically map the network topology. After starting the software, it automatically scans all network devices in the network segment, including routers, switches and firewall devices. Then a network topology is automatically drawn based on the scan results. (2018-07-26, Others, 330KB, 下载5次)
[系统/网络安全] XSS-gongji
XSS攻击:跨站脚本攻击(Cross Site Scripting),对于跨站脚本攻击,黑客界共识是:跨站脚本攻击是新型的“缓冲区溢出攻击“,而JavaScript是新型的“ShellCode”。
XSS攻击的危害包括
1、盗取各类用户帐号,如机器登录帐号、用户网银帐号、各类管理员帐号
2、控制企业数据,包括读取、篡改、添加、删除企业敏感数据的能力
3、盗窃企业重要的具有商业价值的资料
4、非法转账
5、强制发送电子邮件
6、网站挂马
7、控制受害者机器向其它网站发起攻击
XSS Attacks: Cross Site Scripting attacks (Cross Site Scripting), the hacker community consensus for cross-site scripting attacks: cross-site scripting attack is a new type of " buffer overflow attacks, while JavaScript is a new type of" ShellCode. XSS attacks hazards include the ability to steal all kinds of user accounts, such as machine login account, users of online banking account, the various administrator account 2, control corporate data, including read, tampering, add, delete sensitive corporate data theft of important information with commercial value, illegal transfer 5 mandatory Email, Web site linked to horse control of the victim machine to attack other sites (2012-10-25, JavaScript, 10KB, 下载17次)
[系统/网络安全] Hacking.Exposed.6Th.Ed
第1部分 收集情报
第1章 踩点
第2章 扫描
第3章 查点
第2部分 系统攻击
第4章 攻击Windows
第5章 攻击Unix
第3部分 基础设施攻击
第6章 远程连接和VoIP攻击
第7章 网络设备攻击
第8章 无线攻击
第9章 硬件攻击
第4部分 应用程序和数据攻击
第10章 攻击应用代码
第11章 Web攻击
第12章 攻击因特网用户
第5部分 附录
附录A 端口
附录B 最有威胁的14个安全漏洞
附录C 拒绝服务(DOS)与分布式拒绝服务(DDOS)攻击
Part 1 of intelligence gathering
1 Zhang Capitol,
Chapter 2 scan
The first three chapters enumeration
Part 2 of system attacks
Chapter 4, to attack Windows
Chapter 5 attack Unix
Part 3 infrastructure attacks
Chapter 6, remote access and VoIP attacks
Chapter 7 network equipment attacks
Chapter 8 of wireless attacks
Chapter 9 hardware attacks
Part 4 of the application and data attacks
Chapter 10 to attack the application code
Chapter 11 Web attacks
Chapter 12 attack Internet users
Part 5 Appendix
Appendix A port
Appendix B there is a threat to the 14 security vulnerabilities
Appendix C to denial of service (DOS) and Distributed Denial of Service (DDOS) attack (2012-04-17, PDF, 7930KB, 下载19次)
[系统/网络安全] 201012114204669
卓然主动防御源码(可执行文件+完整源码+完整作品报告,卓然驱动级云安全主动防御系统
目录
开发目的 2
系统特性 4
一. 使用RootiKit技术,精确拦截木马,曝光恶意行为 4
二. 提供详细行为描述信息,帮助用户判断 4
三. 云安全概念融入,精确判断文件安全级别 4
四. 支持白名单、黑名单,引入云规则,减少提醒 4
五. 多模块相互配合,将木马及其衍生物一网打尽 4
Zoran active defense source (executable+ source+ complete works full report, Zoran driver-level cloud security system directory was developed to active defense system features 4 a 2. Use RootiKit technology, precision intercept Trojans, 4 second exposure of malicious behavior. Provide detailed behavior description to help users determine the 4 III. the concept of security into the cloud, file security level to determine exactly 4 IV. supports whitelists, blacklists, rules for the introduction of the cloud, reducing to remind 4 five. multi-module complement each other, the Trojan and its derivatives Clean Sweep 4 (2010-12-02, Visual C++, 2636KB, 下载127次)
[系统/网络安全] adito-0.9.1-bin.tar
Adito是一个基于网络的SSL VPN的服务器上。 Adito的是用Java编写的,并有一个基于浏览器的AJAX界面。 只通过一个网络浏览器,Adito可以轻松地和安全地得到最内联网服务。Adito最初是从SSL的浏览器继承来的。
Adito is a web-based SSL VPN server. Adito s is written in Java and has a browser-based AJAX interface. Adito allows easy and safe access to most intranet services with just a web browser. Adito was originally forked from SSL-Explorer. (2009-02-01, Java, 18607KB, 下载14次)
[系统/网络安全] j_11510_vista
本系统是DIV+CSS的网站管理系统,采用网络中已经成熟、稳定地技术ASP+Access/SQL开发而成,通过它,您可以很方便地管理自己网站。
功能特点如下:
多频道管理,无限制频道克隆,支持频道二级域名绑定功能,文章内容自动分页;
全站生成HTML页面;增加系统安全性,自由设置生成HTML文件扩展名和存放目录,内容自动分页。
用户管理,多用户管理分权限发布、管理软件信息;用户短信、收藏功能,会员在线充值,网银在线
The system is DIV+ CSS site management system, a network already mature, stable technologies ASP+ Access/SQL developed through it, you can easily manage their own Web site. Features are as follows: multi-channel management, unlimited Channel cloning, support for Channel 2 domain binding function, the article content automatically paging Total Station generates HTML pages increase system security, freedom set to generate HTML file name extension, and store directory, content automatic paging. User management, multi-user management sub-authority releases, information management software users SMS, collection features, Member Online Recharge, net silver online (2007-12-14, Others, 4402KB, 下载3次)
[系统/网络安全] yol.v1.3
该软件主要用于屏蔽设定关键字后的网站,具体功能包括: 可以使含有关键字的网址自动转向到你设定的网站或HTML去。 清空IE临时文件夹 清空IE历史记录 文档清空 删除收藏夹网址 删除IE地址栏网址 当然还可以定义你保密的目录 限制运行程序 清除内存中运行的程序 禁止WINDOWS下载软件等功能 恢复IE工具栏的链接名称 取消开机对话框 恢复internet选项安全页面自定义按钮 去除IE分级审查的密码 修改时间前面加广告 恢复OE标题栏广告 恢复IE搜索引擎 恢复网页右键菜单 恢复一系列文件名 恢复主页修改 修复IE的默认页面 修复文件属性里面的广告 恢复注册表文件打开方式 还原注册表被恶意代码修改
the software used mainly shielding set keywords to the web site, the specific features include : It will make the website containing keywords automatically shifted to set your web site or to HTML. Clear IE temporary folder emptied IE historical records deleted files emptied favorites delete IE website at the address bar of course you also can define a list of confidentiality restrictions operational procedures to remove the memory running Windows procedures prohibit downloading software features such as Internet Explorer toolbar to restore the link titles boot resume dialog internet security Options button pages removed from the definition of classification review of the IE code changes ahead of time to resume OE increase advertising column heading to restore IE advertising search engine w (2004-09-20, Delphi, 557KB, 下载95次)