Category:Information Security

  • SMS verification code interface anti malicious attack SMS anti theft brush strategy

    Time:2020-9-23

        Here is the user page interaction. Enter the mobile phone number to get the verification code. The user experience is super simple. However, simplicity comes at a cost. In terms of security control, programmers have to think about it.   In the field of system security, information security and system security defense, SMS […]

  • Overview of NTP network time service server (network clock server)

    Time:2020-9-22

    Overview of NTP network time service server (network clock server) Overview of NTP network time service server (network clock server) Beijing Zhun electronic technology official micro enterprise — ahjzsz Beijing Zhun electronic technology hr-901gb NTP time service server summary Beijing Zhun electronic technology hr-901gb NTP time service server is a high-tech clock product with high […]

  • Some loopholes in the front end of DOM

    Time:2020-9-21

    The most direct XSS —-dom xss function trackSearch(query) { document.write(”); } var query = (new URLSearchParams(window.location.search)).get(‘search’); if(query) { trackSearch(query); } You can see from the window.location.search Get the search parameter value and write it to the IMG tagSo double quotation marks close XSS payload https://www.xxxx.com/xxx?search=”> —-jQuery dom xss Back $(function() { $(‘#backLink’).attr(“href”, (new URLSearchParams(window.location.search)).get(‘returnPath’)); }); […]

  • Beidou GPS synchronous clock makes acquisition system more accurate

    Time:2020-9-19

    Beidou GPS synchronous clock makes acquisition system more accurate Beidou GPS synchronous clock makes acquisition system more accurate Beijing Zhun electronic technology official micro enterprise — ahjzsz Nowadays, there are many data acquisition systems, some based on DSP and some based on FPGA. Although the ability of collecting and processing data is not bad, most […]

  • Learn bypass CSP record

    Time:2020-9-18

    Recently, I saw a Bypas CSP record, and then I learned it again Configure CSP Here, set the HTML header directly to achieve the effect of configuring CSP. Content-Security-Policy: script-src ‘self’ ‘unsafe-inline’ Create HTML and load JS. The code is as follows, It can be executed normally Change JS to external JS You can see […]

  • Detailed explanation and analysis of GPS satellite timer (Beidou timing equipment)

    Time:2020-9-17

    Detailed explanation and analysis of GPS satellite timer (Beidou timing equipment) Detailed explanation and analysis of GPS satellite timer (Beidou timing equipment) Beijing Zhun electronic technology official micro enterprise — ahjzsz Beijing Zhun electronic technology hr-901gb Beidou time service equipment Product introduction Beijing Zhun electronic technology hr-901gb Beidou time service equipment is a high-tech clock […]

  • Application of ieee1588ptp in clock synchronization of digital substation

    Time:2020-9-16

    Application of ieee1588ptp in clock synchronization of digital substation Beijing Zhun electronic technology official micro enterprise — ahjzsz 1、 General situation of time synchronization in power system With the development of the research on IEC 61850 standard, scholars at home and abroad put forward the development idea of building digital substation based on IEC61850 communication […]

  • HTTP request smuggling CL.TE

    Time:2020-9-15

    CL.TE brief introduction The front-end processes the request through content length, and forwards the request to the back-end through reverse proxy or load balancing. The back-end transfer encoding has a higher priority, and Te is used to process the request, causing security problems. testing Send the following packets POST / HTTP/https://www.cnblogs.com/pickmea/p/1.https://www.cnblogs.com/pickmea/p/1 Host: ac39https://www.cnblogs.com/pickmea/p/1f7ehttps://www.cnblogs.com/pickmea/p/1e9af82https://www.cnblogs.com/pickmea/p/1806e890300db00d6.web-security-academy.net Connection: close […]

  • A complete list of network penetration data — vulnerability database

    Time:2020-9-14

    A complete list of network penetration data — vulnerability databaseVulnerability database NVD ——US national vulnerability database →http://nvd.nist.gov/。 CERT ——National Emergency Response Center →https://www.us-cert.gov/ OSVDB ——Open source vulnerability Library →http://osvdb.org Bugtraq ——Symantec →http://www.securityfocus.com/ Exploit-DB ——Library of exp →https://www.exploit-db.com/ Fulldisclosure ——Fulldisclosure mailing list →http://seclists.org/fulldisclosure/ MS Bulletin ——Microsoft Security Bulletin →https://technet.microsoft.com/en-us/security/bulletins MS Advisory ——Microsoft Security Report →https://technet.microsoft.com/en-us/security/advisories Inj3ct0r […]

  • Application and principle of NTP clock server

    Time:2020-9-13

    Application and principle of NTP clock serverApplication and principle of NTP clock server Anhui Jingzhun Electronic Technology Co., LtdOfficial micro blog——ahjzsz Principle of Beidou time service Time service means that the receiver obtains the clock difference between the local time and the Beidou standard time in some way, and then adjusts the local clock to […]

  • Using Beidou satellite system to design NTP network time server

    Time:2020-9-12

    Using Beidou satellite system to design NTP network time server Using Beidou satellite system to design NTP network time server Anhui Jingzhun Electronic Technology Co., LtdOfficial wechat — ahjzsz summary NTP network time server is a high-tech clock product with high precision, large capacity and high quality, which supports NTP and SNTP network time synchronization […]

  • Detailed interpretation of various time synchronization methods in power system

    Time:2020-9-11

    Detailed interpretation of various time synchronization methods in power system Detailed interpretation of various time synchronization methods in power system Anhui Jingzhun electronic technology official micro – ahjzsz, for more information, please add VX The satellite synchronous clock is a standard time display and transmission device developed by Beijing Zhun company, which is based on […]