cnbird's blog

cnbird's blog


fedramp  nist sp 53

2014-06-13 16:58:02

阅读数 766

评论数 0


2014-06-06 21:09:38

阅读数 749

评论数 0

pentest blog

2014-06-06 17:55:51

阅读数 779

评论数 0


Introduction Migrating to Domain Admin processes is a common way penetration testers are able to impersonate Domain Admin accounts on the network....

2014-06-06 17:49:01

阅读数 1343

评论数 0

Locate and Attack Domain SQL Servers without Scanning

In this blog I'll share a new PowerShell script that uses Service Principal Name (SPN) records from Active Directory to identify and attack SQL Serve...

2014-06-06 17:33:16

阅读数 916

评论数 0


Watching the industry respond to the Heartbleed vulnerability has been fascinating.  This bug had widespread impact with thousands of servers left ...

2014-06-06 17:23:25

阅读数 1560

评论数 0

CVE-2013-1488 分析和PoC

On 16th April Oracle released Java 7 Update 21 (which you should install now if you haven’t already!) This release fixes all the Java vulnerabiliti...

2014-06-06 14:40:03

阅读数 1621

评论数 0

CVE-2013-0191 PoC

If the "pw_type" is crypt-based and the password field returned by the query is null, user is able to authenticate with any password. It is...

2014-06-05 09:46:36

阅读数 880

评论数 0

取消 删除