今天日記不知道要寫些啥,直到昨天為止剛完成Security Dojo的一系列題解文章,過去幾天都是一天3 .4 篇文章在衝部落格稿數,所以突然Security Dojo系列文章寫完之後又不知道要寫些什麼了,剛好一陣子沒介紹一些喜歡的歌,今天就來推薦一下李千那為霹靂新刀說異數唱的片頭曲"紅塵笑"。
簡單兩個字,好聽。
屬於金牛座小子的草原
- Feb 27 Wed 2019 23:55
霹靂英雄戰紀之刀說異數 片頭曲 紅塵笑
- Feb 26 Tue 2019 15:21
安全道場實作 11 Cross-Site Scripting
[題目]
The purpose of this challenge is to demonstrate the MITRE Top 25 programming flaw: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')".
- Feb 26 Tue 2019 14:38
安全道場實作 20 Use of Externally-Controlled Format String
[題目]
The purpose of this challenge is to demonstrate the Use of Externally-Controlled Format String, MITRE Top 25 vulnerability.
- Feb 26 Tue 2019 10:35
安全道場實作 19 Classic Buffer Overflow
- Feb 25 Mon 2019 14:24
安全道場實作 14 XML External Entity Reference
[題目]
The purpose of this challenge is to demonstrate the programming flaw: "Improper Restriction of XML External Entity Reference ('XXE')".
- Feb 25 Mon 2019 03:05
2019 02 25 Slack 文字訊息格式化技巧
Slack的文字格式跟一般通訊軟體相比有一點點的不一樣,因為它可以針對文字訊息做簡單的格式化工作,讓訊息中可以更突顯出訊息的用途與重點,在這邊我就稍微筆記一下主要有哪些格式化技巧讓你的訊息看起來更吸引人注意。
PS. 某些特殊情況下會有格式不出來的情況,可以多試幾次就知道了。
- Feb 23 Sat 2019 21:34
安全道場實作 18 SQL Injection
[題目]
The purpose of this challenge is to demonstrate the following MITRE Top 25 programming flaw: 'Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')'.
- Feb 23 Sat 2019 15:17
安全道場實作 17 OS Command Injection
[題目]
The purpose of this challenge is to demonstrate the #2 MITRE Top 25 programming flaw: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection').
- Feb 23 Sat 2019 14:37
安全道場實作 16 Incorrect Authorization
[題目]
The purpose of this challenge is to demonstrate the MITRE Top 25 programming flaw: 'Incorrect Authorization'.
- Feb 23 Sat 2019 06:18
安全道場實作 15 Improper Limitation of a Pathname to a Restricted Directory
[題目]
The purpose of this challenge is to demonstrate the MITRE Top 25 programming flaw: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')".
