Introduction to ctfshow Web - deserialization (previous)

catalogue web254 web255 web256 web257 web258 web259 web260 web261 web262 web263 web264 web265 web266 web267 web254 <?php ​ /* # -*- coding: utf-8 -*- # @Author: h1xa # @Date:   2020-12-02 17:44:47 # @Last Modified by:   h1xa # @Last Modified time: 2020-12-02 19:29:02 # @email: h1xa@ctfer.com # @link: https://ctfer.com ​ */ ​ ...

Posted by LucienFB on Sun, 24 Oct 2021 12:24:58 +0200

Springboot web project uses TrueLicense to realize software authentication and license - server side

1, Introduction to License License is the copyright license, which is generally used for the access license certificate provided by the charging software to the paying user. According to different application deployment locations, it can be divided into the following two situations: The application is deployed on the developer's own ECs. In ...

Posted by PHPGuru_2700 on Tue, 12 Oct 2021 23:56:58 +0200

On cross domain vulnerabilities of JSONP

On cross domain vulnerabilities of JSONP CSRF (Cross site request forgery) is an attack method that hijacks the user to perform unintentional operations on the currently logged in Web application. Compared with XSS, XSS uses the trust of the website to the user, and CSRF uses the trust of the website to the user's Web browser. When it comes t ...

Posted by ash4u on Tue, 12 Oct 2021 02:12:01 +0200

Reprint the fifth V8 parser source code explanation of Chrome V8 principle explanation

Original source:   The fifth part of the series "explanation of the principles of Chrome V8" explains the source code of V8 Parser - Security guest. The security information platform V8 is the core component of chrome, so it's not necessary to say how important it is. This series of articles explain the V8 source code, strive to ...

Posted by kade119 on Mon, 27 Sep 2021 00:41:07 +0200