lake2的专栏千秋邈矣独留我,百战归来再读书zh-CNWed, 11 Jun 2008 12:57:28 GMT60lake2WAP Web Application Securityhttp://blog.csdn.net/lake2/archive/2008/06/11/2535366.aspxWed, 11 Jun 2008 12:57:00 GMThttp://blog.csdn.net/lake2/archive/2008/06/11/2535366.aspxcomments/2535366.aspxhttp://blog.csdn.net/lake2/archive/2008/06/11/2535366.aspx#Feedback0comments/commentRss/2535366.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=2535366<p>WAP Web Application Security</p><p>Author: lake2 [80sec]<br />EMail:&nbsp; lake2#80sec.com<br />Site:&nbsp;&nbsp; <a href="http://www.80sec.com">http://www.80sec.com</a><br />Date:&nbsp;&nbsp; 2008-6-10</p><p>---------------------------------</p><p>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [ 目录 ]</p><p>0x00&nbsp; 纯属扯淡<br />0x01&nbsp; WML与WMLScript<br />0x02&nbsp; WML注入攻击<br />0x03&nbsp; WML注入可以做什么<br />0x04&nbsp; WAP站点会话安全<br />0x05&nbsp; 后记</p><p>--------------------------------</p><p>0x00&nbsp; 纯属扯淡</<img src ="aggbug/2535366.aspx" width = "1" height = "1" />lake2CSRF——攻击与防御http://blog.csdn.net/lake2/archive/2008/04/02/2245754.aspxWed, 02 Apr 2008 20:45:00 GMThttp://blog.csdn.net/lake2/archive/2008/04/02/2245754.aspxcomments/2245754.aspxhttp://blog.csdn.net/lake2/archive/2008/04/02/2245754.aspx#Feedback3comments/commentRss/2245754.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=2245754CSRF的原理、防御、检测与利用<img src ="aggbug/2245754.aspx" width = "1" height = "1" />lake22007——在磕磕碰碰中成长http://blog.csdn.net/lake2/archive/2007/12/29/2003354.aspxSat, 29 Dec 2007 17:01:00 GMThttp://blog.csdn.net/lake2/archive/2007/12/29/2003354.aspxcomments/2003354.aspxhttp://blog.csdn.net/lake2/archive/2007/12/29/2003354.aspx#Feedback1comments/commentRss/2003354.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=2003354我回来啦:)<img src ="aggbug/2003354.aspx" width = "1" height = "1" />lake2使用vbs下载文件http://blog.csdn.net/lake2/archive/2007/05/08/1600580.aspxTue, 08 May 2007 15:04:00 GMThttp://blog.csdn.net/lake2/archive/2007/05/08/1600580.aspxcomments/1600580.aspxhttp://blog.csdn.net/lake2/archive/2007/05/08/1600580.aspx#Feedback8comments/commentRss/1600580.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1600580Hi, Script Guys , this is 1<img src ="aggbug/1600580.aspx" width = "1" height = "1" />lake2用手机控制服务器http://blog.csdn.net/lake2/archive/2007/02/08/1505086.aspxThu, 08 Feb 2007 09:39:00 GMThttp://blog.csdn.net/lake2/archive/2007/02/08/1505086.aspxcomments/1505086.aspxhttp://blog.csdn.net/lake2/archive/2007/02/08/1505086.aspx#Feedback7comments/commentRss/1505086.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1505086听起来多牛的……<img src ="aggbug/1505086.aspx" width = "1" height = "1" />lake2SQL注入Access导出WebShell?http://blog.csdn.net/lake2/archive/2006/11/23/1409132.aspxThu, 23 Nov 2006 18:57:00 GMThttp://blog.csdn.net/lake2/archive/2006/11/23/1409132.aspxcomments/1409132.aspxhttp://blog.csdn.net/lake2/archive/2006/11/23/1409132.aspx#Feedback16comments/commentRss/1409132.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1409132鸡肋<img src ="aggbug/1409132.aspx" width = "1" height = "1" />lake2Serv-U的反弹攻击及其利用http://blog.csdn.net/lake2/archive/2006/10/01/1314149.aspxSun, 01 Oct 2006 09:13:00 GMThttp://blog.csdn.net/lake2/archive/2006/10/01/1314149.aspxcomments/1314149.aspxhttp://blog.csdn.net/lake2/archive/2006/10/01/1314149.aspx#Feedback17comments/commentRss/1314149.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1314149祝大家国庆快乐!<img src ="aggbug/1314149.aspx" width = "1" height = "1" />lake2轻轻绕过你的验证码http://blog.csdn.net/lake2/archive/2006/09/15/1224897.aspxFri, 15 Sep 2006 08:37:00 GMThttp://blog.csdn.net/lake2/archive/2006/09/15/1224897.aspxcomments/1224897.aspxhttp://blog.csdn.net/lake2/archive/2006/09/15/1224897.aspx#Feedback18comments/commentRss/1224897.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1224897验证码的绕过漏洞<img src ="aggbug/1224897.aspx" width = "1" height = "1" />lake2伪造发件人邮件地址http://blog.csdn.net/lake2/archive/2006/08/30/1141902.aspxWed, 30 Aug 2006 07:48:00 GMThttp://blog.csdn.net/lake2/archive/2006/08/30/1141902.aspxcomments/1141902.aspxhttp://blog.csdn.net/lake2/archive/2006/08/30/1141902.aspx#Feedback8comments/commentRss/1141902.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1141902伪造发件人邮件地址<img src ="aggbug/1141902.aspx" width = "1" height = "1" />lake2MSSQLCracker in ASPhttp://blog.csdn.net/lake2/archive/2006/08/10/1045648.aspxThu, 10 Aug 2006 12:20:00 GMThttp://blog.csdn.net/lake2/archive/2006/08/10/1045648.aspxcomments/1045648.aspxhttp://blog.csdn.net/lake2/archive/2006/08/10/1045648.aspx#Feedback17comments/commentRss/1045648.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1045648没啥技术含量<img src ="aggbug/1045648.aspx" width = "1" height = "1" />lake2Serv-U本地权限提升的ASP实现http://blog.csdn.net/lake2/archive/2006/08/01/1006239.aspxTue, 01 Aug 2006 11:47:00 GMThttp://blog.csdn.net/lake2/archive/2006/08/01/1006239.aspxcomments/1006239.aspxhttp://blog.csdn.net/lake2/archive/2006/08/01/1006239.aspx#Feedback44comments/commentRss/1006239.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=1006239抵制0day,人人有责^_^<img src ="aggbug/1006239.aspx" width = "1" height = "1" />lake2跨站实现HTTP会话劫持http://blog.csdn.net/lake2/archive/2006/07/09/897170.aspxSun, 09 Jul 2006 23:59:00 GMThttp://blog.csdn.net/lake2/archive/2006/07/09/897170.aspxcomments/897170.aspxhttp://blog.csdn.net/lake2/archive/2006/07/09/897170.aspx#Feedback15comments/commentRss/897170.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=897170跨站的利用……<img src ="aggbug/897170.aspx" width = "1" height = "1" />lake2假作真时真亦假——“真实”IP带来的安全隐患http://blog.csdn.net/lake2/archive/2006/07/02/863769.aspxSun, 02 Jul 2006 01:27:00 GMThttp://blog.csdn.net/lake2/archive/2006/07/02/863769.aspxcomments/863769.aspxhttp://blog.csdn.net/lake2/archive/2006/07/02/863769.aspx#Feedback30comments/commentRss/863769.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=863769“真实”IP带来的安全隐患<img src ="aggbug/863769.aspx" width = "1" height = "1" />lake2TCP端口扫描的ASP实现http://blog.csdn.net/lake2/archive/2006/06/19/814052.aspxMon, 19 Jun 2006 20:12:00 GMThttp://blog.csdn.net/lake2/archive/2006/06/19/814052.aspxcomments/814052.aspxhttp://blog.csdn.net/lake2/archive/2006/06/19/814052.aspx#Feedback20comments/commentRss/814052.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=814052ASP可以做很多事情……<img src ="aggbug/814052.aspx" width = "1" height = "1" />lake2ASP 程序实现自动升级功能http://blog.csdn.net/lake2/archive/2006/05/28/758016.aspxSun, 28 May 2006 00:10:00 GMThttp://blog.csdn.net/lake2/archive/2006/05/28/758016.aspxcomments/758016.aspxhttp://blog.csdn.net/lake2/archive/2006/05/28/758016.aspx#Feedback9comments/commentRss/758016.aspxhttp://tb.blog.csdn.net/TrackBack.aspx?PostId=758016XMLHTTP的应用<img src ="aggbug/758016.aspx" width = "1" height = "1" />