Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Virus infection diagnosis:
1. Press Ctrl+Shift+Delete (press these three keys at the same time), bring up the windows task manager to view the processes running on the system, find out the unfamiliar processes and write down their names (this requires experience), if these If the process is a virus, it can be cleaned up later. Don't end these processes for now, because some viruses or illegal processes may not end here. Click Performance to view the current status of the CPU and memory. If the CPU utilization is close to 100% or the memory occupancy value remains high, the possibility of computer poisoning is 95%.
γγ
2. Check the service items currently started in Windows, and open the "Services" in the "Management Tools" of the "Control Panel". Look at the line in the right column where the status is "Startup" and the startup category is "Auto"; generally speaking, normal windows services basically have descriptions (except for a few faked by hackers or worms), double-click at this time Open the service item that is considered to be problematic and view the path and name of the executable file in its properties. If the name and path are C:/winnt/system32/explored.exe, the computer is recruited. There is a situation that the "Control Panel" cannot be opened or all the icons in it run to the left, there is a vertical scroll bar in the middle, and the right is blank. Double-click to add/remove programs or management tools, the window is empty. This is the characteristic of the virus file winhlpp32.exe.
γγ
3. Run the registry editor, the command is regedit or regedt32, check which programs are started together with windows. Mainly look at Hkey_Local_Machine/Software/MicroSoft/Windows/CurrentVersion/Run and the following RunOnce, etc., check the item value on the right side of the form to see if there is an illegal startup item. WindowsXp running msconfig also plays the same role. With the accumulation of experience, you can easily determine the startup items of the virus.
γγ
4. Use a browser to go online to judge. The previous Gaobot virus can go to yahoo.com, sony.com and other websites, but you cannot visit the websites of famous security vendors such as www.symantec.com, www.ca.com, and you canβt access the Internet after installing the antivirus software of symantecNorton2004. upgrade.
γγ
5. Unhide attributes and check the system folder winnt(windows)/system32. If the folder is empty after opening, it means that the computer has been poisoned; after opening system32, you can sort the icons by type to see if there are any executable files of popular viruses. . By the way, check the folders Tasks, wins, drivers. The current virus executable files are hidden here; the file hosts under drivers/etc is the object that viruses like to tamper with. It was originally only about 700 bytes, and it became after tampering. Above 1Kb, this is the reason why the general website can be accessed but the website of the security vendor cannot be accessed, and the famous anti-virus software cannot be upgraded.
γγ
6. The anti-virus software determines whether it is poisoned. If it is poisoned, the anti-virus software will be automatically terminated by the virus program and the manual upgrade will fail.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Virus infection diagnosis:
1. Press Ctrl+Shift+Delete (press these three keys at the same time), bring up the windows task manager to view the processes running on the system, find out the unfamiliar processes and write down their names (this requires experience), if these If the process is a virus, it can be cleaned up later. Don't end these processes for now, because some viruses or illegal processes may not end here. Click Performance to view the current status of the CPU and memory. If the CPU utilization is close to 100% or the memory occupancy value remains high, the possibility of computer poisoning is 95%.
γγ
2. Check the service items currently started in Windows, and open the "Services" in the "Management Tools" of the "Control Panel". Look at the line in the right column where the status is "Startup" and the startup category is "Auto"; generally speaking, normal windows services basically have descriptions (except for a few faked by hackers or worms), double-click at this time Open the service item that is considered to be problematic and view the path and name of the executable file in its properties. If the name and path are C:/winnt/system32/explored.exe, the computer is recruited. There is a situation that the "Control Panel" cannot be opened or all the icons in it run to the left, there is a vertical scroll bar in the middle, and the right is blank. Double-click to add/remove programs or management tools, the window is empty. This is the characteristic of the virus file winhlpp32.exe.
γγ
3. Run the registry editor, the command is regedit or regedt32, check which programs are started together with windows. Mainly look at Hkey_Local_Machine/Software/MicroSoft/Windows/CurrentVersion/Run and the following RunOnce, etc., check the item value on the right side of the form to see if there is an illegal startup item. WindowsXp running msconfig also plays the same role. With the accumulation of experience, you can easily determine the startup items of the virus.
γγ
4. Use a browser to go online to judge. The previous Gaobot virus can go to yahoo.com, sony.com and other websites, but you cannot visit the websites of famous security vendors such as www.symantec.com, www.ca.com, and you canβt access the Internet after installing the antivirus software of symantecNorton2004. upgrade.
γγ
5. Unhide attributes and check the system folder winnt(windows)/system32. If the folder is empty after opening, it means that the computer has been poisoned; after opening system32, you can sort the icons by type to see if there are any executable files of popular viruses. . By the way, check the folders Tasks, wins, drivers. The current virus executable files are hidden here; the file hosts under drivers/etc is the object that viruses like to tamper with. It was originally only about 700 bytes, and it became after tampering. Above 1Kb, this is the reason why the general website can be accessed but the website of the security vendor cannot be accessed, and the famous anti-virus software cannot be upgraded.
γγ
6. The anti-virus software determines whether it is poisoned. If it is poisoned, the anti-virus software will be automatically terminated by the virus program and the manual upgrade will fail.
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
It is a hack tool kit for pentest and web security research, which is based on BeautifulSoup bs4 module http://www.crummy.com/software/BeautifulSoup/bs4/.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) clone https://github.com/brianwrf/hackUtils
2) cd hackUtils
3) hackUtils.py [options]
to use:
hackUtils.py -b inurl:www.example.com
hackUtils.py -g inurl:www.example.com
hackUtils.py -i 1099.java-rmi
hackUtils.py -u 1099.java-rmi
hackUtils.py -w .php?id=
hackUtils.py -j http://www.joomla.com/
hackUtils.py -j urls.txt
hackUtils.py -r http://www.joomla.com/
hackUtils.py -r urls.txt
hackUtils.py -f http://www.feifeicms.com/
hackUtils.py -f urls.txt
hackUtils.py -k 10.10.10.10
hackUtils.py -k 10.10.10.10::dir
hackUtils.py -k ips.txt
hackUtils.py -k ips.txt::"touch /tmp/jenkins"
hackUtils.py -o http://www.shiro.com/::"touch /tmp/shiro"
hackUtils.py -o urls.txt::"touch /tmp/shiro"
hackUtils.py -s http://www.struts2.com/index.action
hackUtils.py -s urls.txt
hackUtils.py -d example.com
hackUtils.py -e text
β β β Uππ»βΊπ«Δπ¬πβ β β β
It is a hack tool kit for pentest and web security research, which is based on BeautifulSoup bs4 module http://www.crummy.com/software/BeautifulSoup/bs4/.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) clone https://github.com/brianwrf/hackUtils
2) cd hackUtils
3) hackUtils.py [options]
to use:
hackUtils.py -b inurl:www.example.com
hackUtils.py -g inurl:www.example.com
hackUtils.py -i 1099.java-rmi
hackUtils.py -u 1099.java-rmi
hackUtils.py -w .php?id=
hackUtils.py -j http://www.joomla.com/
hackUtils.py -j urls.txt
hackUtils.py -r http://www.joomla.com/
hackUtils.py -r urls.txt
hackUtils.py -f http://www.feifeicms.com/
hackUtils.py -f urls.txt
hackUtils.py -k 10.10.10.10
hackUtils.py -k 10.10.10.10::dir
hackUtils.py -k ips.txt
hackUtils.py -k ips.txt::"touch /tmp/jenkins"
hackUtils.py -o http://www.shiro.com/::"touch /tmp/shiro"
hackUtils.py -o urls.txt::"touch /tmp/shiro"
hackUtils.py -s http://www.struts2.com/index.action
hackUtils.py -s urls.txt
hackUtils.py -d example.com
hackUtils.py -e text
β β β Uππ»βΊπ«Δπ¬πβ β β β
Crummy
Beautiful Soup: We called him Tortoise because he taught us.
Beautiful Soup: a library designed for screen-scraping HTML and XML.
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Europe threatens Russian Internet companies. Yandex, Mail.ru, Aviasales, Ozon are under attacK.
#international
#international
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦HTML-Email-Hacks
A series of HTML hacks for all those lovely Email clients out there.
This repo is a place to put all of the HTML Email hacks we all depend on so much to get our campaigns looking and feeling sweet and spiffy.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
GET https://github.com/FunWithEmail/HTML-Email-Hacks
Click To Tap:
Change button text responsively
@media screen and (max-width:600px) {
span[class=click] { display: none !important; max-height: 0 !important; }
span[class=tap]:after { content:"Tap"; }
}
<a href="#"><span class="tap"><span class="click">Click</span></span> here</a>
-courtesy of Nicole Merlin
Kill Gmail App Zooming:
Stop Gmail app from zooming text
style="min-width:600px;"
-courtesy of Chris Wise
Target Webkit Clients:
Webkit support is best support
@ media screen and (-webkit-min-device-pixel-ratio:0) { }
-courtesy of Kevin Mandeville
Margins and Float in Outlook:
Use a capital βMβ or βFβ
style="Margin: 20px; Float: left"
-courtesy of Nicole Merlin
Interactive Email in Gmail:
No Class or ID selector support
Use lang as selector with "x-" prefix
* [lang~="x-selector"] { }
<div lang="x-selector"></div>
-courtesy of Justin at FreshInbox
Interactive Email conβt - Hover!:
Hover effect works on these clients:
Gmail:
* [lang~="x-selector"]:hover { }
Outlook Web:
.class:hover
Yahoo! Web:
.class:hover
-courtesy of Justin at FreshInbox
More usage go to https://github.com/FunWithEmail/HTML-Email-Hacks
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦HTML-Email-Hacks
A series of HTML hacks for all those lovely Email clients out there.
This repo is a place to put all of the HTML Email hacks we all depend on so much to get our campaigns looking and feeling sweet and spiffy.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
GET https://github.com/FunWithEmail/HTML-Email-Hacks
Click To Tap:
Change button text responsively
@media screen and (max-width:600px) {
span[class=click] { display: none !important; max-height: 0 !important; }
span[class=tap]:after { content:"Tap"; }
}
<a href="#"><span class="tap"><span class="click">Click</span></span> here</a>
-courtesy of Nicole Merlin
Kill Gmail App Zooming:
Stop Gmail app from zooming text
style="min-width:600px;"
-courtesy of Chris Wise
Target Webkit Clients:
Webkit support is best support
@ media screen and (-webkit-min-device-pixel-ratio:0) { }
-courtesy of Kevin Mandeville
Margins and Float in Outlook:
Use a capital βMβ or βFβ
style="Margin: 20px; Float: left"
-courtesy of Nicole Merlin
Interactive Email in Gmail:
No Class or ID selector support
Use lang as selector with "x-" prefix
* [lang~="x-selector"] { }
<div lang="x-selector"></div>
-courtesy of Justin at FreshInbox
Interactive Email conβt - Hover!:
Hover effect works on these clients:
Gmail:
* [lang~="x-selector"]:hover { }
Outlook Web:
.class:hover
Yahoo! Web:
.class:hover
-courtesy of Justin at FreshInbox
More usage go to https://github.com/FunWithEmail/HTML-Email-Hacks
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - FunWithEmail/HTML-Email-Hacks: A series of HTML hacks for all those lovely Email clients out there
A series of HTML hacks for all those lovely Email clients out there - FunWithEmail/HTML-Email-Hacks
Forwarded from UNDERCODE NEWS
Japanese showβs robots workβs separately during business hours in the underground shopping area of Shinjuku.
#Technologies
#Technologies
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Recommended secure browsers for android :
https://play.google.com/store/apps/details?id=org.mozilla.firefox
https://play.google.com/store/apps/details?id=com.android.chrome&hl=en&gl=US
https://play.google.com/store/apps/details?id=org.torproject.torbrowser
https://play.google.com/store/apps/details?id=com.microsoft.emmx&hl=en_US
https://play.google.com/store/apps/details?id=com.microsoft.emmx&hl=en_US
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Recommended secure browsers for android :
https://play.google.com/store/apps/details?id=org.mozilla.firefox
https://play.google.com/store/apps/details?id=com.android.chrome&hl=en&gl=US
https://play.google.com/store/apps/details?id=org.torproject.torbrowser
https://play.google.com/store/apps/details?id=com.microsoft.emmx&hl=en_US
https://play.google.com/store/apps/details?id=com.microsoft.emmx&hl=en_US
β β β Uππ»βΊπ«Δπ¬πβ β β β
Google Play
Firefox Fast & Private Browser - Apps on Google Play
Build your web browser around you with private search, and more.
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
"6G" technology development has become more active beyond 5G, what are the six points?
#Technologies
#Technologies
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦ANALYSIS SPECIAL TOOLS :
[Autoruns](https://technet.microsoft.com/en-us/sysinternals/bb963902)
Noriben
[API Monitor](http://www.rohitab.com/apimonitor)
iNetSim
[SmartSniff](http://www.nirsoft.net/utils/smsniff.html)
TCPView
[Wireshark](https://www.wireshark.org/download.html)
Fakenet
[Volatility](https://github.com/volatilityfoundation/volatility)
Dumpit
[LiME](https://github.com/504ensicsLabs/LiME)
Cuckoo
[Objective-See Utilities](https://objective-see.com/products.html)
XCode Instruments - XCode Instruments for Monitoring Files and Processes User Guide
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦ANALYSIS SPECIAL TOOLS :
[Autoruns](https://technet.microsoft.com/en-us/sysinternals/bb963902)
Noriben
[API Monitor](http://www.rohitab.com/apimonitor)
iNetSim
[SmartSniff](http://www.nirsoft.net/utils/smsniff.html)
TCPView
[Wireshark](https://www.wireshark.org/download.html)
Fakenet
[Volatility](https://github.com/volatilityfoundation/volatility)
Dumpit
[LiME](https://github.com/504ensicsLabs/LiME)
Cuckoo
[Objective-See Utilities](https://objective-see.com/products.html)
XCode Instruments - XCode Instruments for Monitoring Files and Processes User Guide
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - Rurik/Noriben: Noriben - Portable, Simple, Malware Analysis Sandbox
Noriben - Portable, Simple, Malware Analysis Sandbox - Rurik/Noriben
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π Best JavaScript frameworks / libraries for front-end development :
1) React is not really a framework, but rather a JavaScript library for building user interfaces.
It is open source and maintained by Facebook and the individual developer community.
2) React was originally written by Jordan Walk as an internal Facebook tool.
π¦Some of its features include the following:
Provides reactive, customizable and reusable components
Uses virtual DOM
Very fast
Component based
One-way data binding
Reusable code
Behind it is a vibrant and thriving ecosystem.
Convenient state management
Installation and use
React can be used in two different ways:
Through CDN
Using Node.JS
Through CDN
You can refer to their official website for a script link that you can include in the title tag in your HTML markup.
Choose links based on your purpose.
A) For example, when used in a development environment:
<script crossorigin src="https://unpkg.com/react@16/umd/react.development.js"></script>
<script crossorigin src="https://unpkg.com/react-dom@16/umd/react-dom.development.js"></script>
B) And for production:
<script crossorigin src="https://unpkg.com/react@16/umd/react.production.min.js"></script>
<script crossorigin src="https://unpkg.com/react-dom@16/umd/react-dom.production.min.js"></script>
C) Using Node.JS
I assume you already have NodeJS installed.
To install React, just enter the following command.
sudo npm i -g create-react-app --save-dev
D) After the installation is complete, enter the following command
create-react-app my-first-react-application
The above command will install all the prerequisite libraries required for React to work properly, including the development server, webpack, and babel.
Go to your application folder my-first-response-application and run the following command
npm start
The above command will start the development server on port 3000.
And, when you access the IP address of your server on port 3000, you should have a welcome page
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π Best JavaScript frameworks / libraries for front-end development :
1) React is not really a framework, but rather a JavaScript library for building user interfaces.
It is open source and maintained by Facebook and the individual developer community.
2) React was originally written by Jordan Walk as an internal Facebook tool.
π¦Some of its features include the following:
Provides reactive, customizable and reusable components
Uses virtual DOM
Very fast
Component based
One-way data binding
Reusable code
Behind it is a vibrant and thriving ecosystem.
Convenient state management
Installation and use
React can be used in two different ways:
Through CDN
Using Node.JS
Through CDN
You can refer to their official website for a script link that you can include in the title tag in your HTML markup.
Choose links based on your purpose.
A) For example, when used in a development environment:
<script crossorigin src="https://unpkg.com/react@16/umd/react.development.js"></script>
<script crossorigin src="https://unpkg.com/react-dom@16/umd/react-dom.development.js"></script>
B) And for production:
<script crossorigin src="https://unpkg.com/react@16/umd/react.production.min.js"></script>
<script crossorigin src="https://unpkg.com/react-dom@16/umd/react-dom.production.min.js"></script>
C) Using Node.JS
I assume you already have NodeJS installed.
To install React, just enter the following command.
sudo npm i -g create-react-app --save-dev
D) After the installation is complete, enter the following command
create-react-app my-first-react-application
The above command will install all the prerequisite libraries required for React to work properly, including the development server, webpack, and babel.
Go to your application folder my-first-response-application and run the following command
npm start
The above command will start the development server on port 3000.
And, when you access the IP address of your server on port 3000, you should have a welcome page
β β β Uππ»βΊπ«Δπ¬πβ β β β