Results for "Category: Security"
Demonstrate how to spawn a shell on a remote computer bound to a port. If u like it, please VOTE!
This is a simple multi-threaded port scanner programmed in VB.NET. It shows a way of connecting to a remote host via a specific port using VB.NET's free threading capabilities. Please don't use this to scan anyone other than yourself though, its simply an example.
Cookies in PHP can sometimes be a huge pain in the butt. This function is simple, and teaches you how cookies work, how to write them, expire them, and check their values. Use this cookie for whatever you want, but feedback is always appreciated :o)
(Because of an error at PSC i had to re-upload this article :-S) This method can be used to authenticate users by letting them entering their email address and password. This method is highly secure due to its use of the MD5 algorithm to send the password encrypted. Provided security is better then the basic authentication featured in most browsers, and can be used in combination with HTTPS.
Yet another password program!! This one takes into account the backspace key, a feature which i didn't find in the other password programs on this site.
UPDATED: UI and DLL Free REAL RSA encryption 2048 bits security library. WARNING NOTE: Use this RSA library wisely, I, Hariyanto Lim, the author, will NOT be liable for any damage of any kind caused by this FREE library. This is library is subject to export law of each country, consult your local law adviser (lawyer) before using this library for commercial purpose.
This is a password script. Every charachter the user input it displays a star. the password is kcTHEgreat. Catches Control c (Taught to me by a friend :)) so the only way out is to enter the correct password. If you like and think it's secure put it in your autoexec.bat
Example of how to stream data behind a "facade" file. Stream 1M behind a 1K text file, and explorer/DIR still shows the file to be 1K. According to "Hacking Exposed 2ED" there is only one application that can find these streams.
With NTFS partitions, intruders can hide their toolkits behind a 'front file'. Explorer and DIR only show the front file and the size of the front file, leaving no clue as the hidden 'back streamed' files. This code finds them. You can back stream a file like this "copy MyTrojanProgram.exe SomeSystemFile.ini:MyTrojan.exe" SomSystemFile.ini will stay the same size and the backstreamed trojan will be almost undetectable.
This is a professional level app. I wrote it as shareware, but for fellow coders.. well it's all yours. It finds all shares on a domain. then the creeper will search these shares for files that the user defines in the GUI. once found, the app will dl them to your local system. - You can also use it as a security tool to determine how many unsecured shares are on your domain.
This little sample shows the use of the ASP.NET form authentication. It comes with forms for registration/login/edit user data/logoff. The data is saved in a database using oledb. If you like this sample, please don't forget to vote...
It can load a text file or take typed text and encrypt it using a very simple algorithm. More MFC stuff for school. Hope you like it
Enable or disable the start menu in one line of code.
This is a programm (written in Assembler) that saves a file on a disk in RAW format, without FAT or anything. This means that data will be saved on your disk but it will be able to read only by your programm.
Simple little console app which locks files by opening them exclusively and so prevents malicious applications from deleting/editing them. Nothing fancy, I just wrote it for myself since I'm a bit paranoid and afraid of rootkits. Commands: secure [physical path to file] - Secures the specified file unsecure [physical path to file] - Unlocks it for write access list - Lists all secured files save - Saves list of secured files. Will be secured automatically on restart. load - Manually loads list of secured files. exit - Unsecures, saves and quits. Released under the GPL.
Crypt and decrypt a string without the standard PHP functions.
Use this code for secure pages on you're website. You have to login with a username and password, the code will check if the user excists, if so the code will generate a unique sessionid and save that sessionid into the database. On every page that you want to secure this code will first check if the sessionid is in the temptable. So no changes for hackers! After unzipping the files first open ReadMeFirst.txt!
UPDATED: Added an SQL injection prevention method, Added more documentation, and a few more minor changes. This code will show you how to prevent header injection, the method GET (only allow POST from a form), unauthorized domain access, and invalid agent access. You see a lot of SQL injection prevention methods and what not, but nothing to this level. This is a first on PSC I belive. If you like it please leave some feedback and vote.
This will detect any suspicious open socket that the user is running and if found in an array, it will not let the user proceed to the website, with the ability to allow certain hosts to pass the scan, and disallowing certain hosts completely. You can define a redirect page to redirect the user to upon open socket.
Sorry guys, my first submission! Didn't realize it read my article as html! Please read it again. Ta. I was looking at password protection, and found nothing like this. It uses a file name as the password, with the file extension. The code searches the current directory on the hosting server for the file, and takes appropriate action.