Aggregator

Today we’re publishing the August 2013 Security Bulletin Webcast Questions & Answers page. We fielded 13 questions on various topics during the webcast, with specific bulletin questions focusing primarily on Exchange Server (MS13-061) and Windows Kernel (MS13-063). There were 3 additional questions during the webcast that we were unable to answer on air, and we have also answered those on the Q&A page.

Today we’re publishing the August 2013 Security Bulletin Webcast Questions & Answers page. We fielded 13 questions on various topics during the webcast, with specific bulletin questions focusing primarily on Exchange Server (MS13-061) and Windows Kernel (MS13-063). There were 3 additional questions during the webcast that we were unable to answer on air, and we have also answered those on the Q&A page.

有朋友问是否可以不得到密码解析出聊天记录内容，答案肯定是不可以，不然tx设计如此复杂的登陆协议纯粹没事找事闲的了，因此做了一张图来让大家直观的明白其中的奥妙。

在破解iOS应用的过程中，需要经常使用 otool 获取程序本身的信息（比如：是否启用了PIE），获取加密信息， 但是CLI的程序在直观性上还是不如GUI的， 下面描述使用MachOView来查看到相关信息。 1、加载可执行文件。 运行 MachOView 后，会提示选择文件，选择将要分析的文件， 会在后台进行分析，等待分析完毕，如下图： 2、文件头信息。

+[UIImage imageNamd:]的实现分析：如果查找图片，查找哪些图片，查找顺序，缓存等。 注释过的反汇编代码：http://pan.baidu.com/share/link?shareid=3491166579&uk=537224442 伪代码（不精确，仅供参考）：    NSString* _UICacheNameForImageAtPath(NSString *imageName, NSBundle *bundle); NSString* ProductSu

Today we’re providing advance notification for the release of seven bulletins, six Critical and one Important, for July 2013. The Critical bulletins address vulnerabilities in Microsoft Windows, .NET Framework, Silverlight, Internet Explorer and GDI+. Also scheduled for inclusion among these Critical bulletins is an update to address CVE-2013-3660, which is a publicly known issue in the Kernel-Mode Drivers component of Windows.

Today we’re providing advance notification for the release of seven bulletins, six Critical and one Important, for July 2013. The Critical bulletins address vulnerabilities in Microsoft Windows, .NET Framework, Silverlight, Internet Explorer and GDI+. Also scheduled for inclusion among these Critical bulletins is an update to address CVE-2013-3660, which is a publicly known issue in the Kernel-Mode Drivers component of Windows.

1.1    00CD Send Message 1.1.1   [2013/6/8 14:45:02:740] 发送 02 32 59 00 CD 25 02 35 37 BB 44 02 00 00 00 01 01 01 00 00 66 3F AF B4 32 1B 21 76 C4 7E B1 63 D7 04 B6 3E FB 7E 07 67 93 D8 9A EC E1 7

1.1    0828 Login GetInfo 1.1.1   [2013/6/8 14:35:13:780] 发送 原文 02 32 59 08 28 72 F1 35 37 BB 44 02 00 00 00 01 01 01 00 00 66 3F 00 30 00 3A 00 38 1F C4 25 63 9C 49 CF F1 EC 47 3F 04 E3 84 42 3D

1.1    0826 Login verify 1.1.1   [2013/6/8 14:35:13:675] 发送 原文 02 32 59 08 26 02 0E 35 37 BB 44 03 00 00 00 01 01 01 00 00 66 3F 00 00 00 00 D1 78 9D 14 67 F6 A3 BA 91 6C A5 C8 68 1F 23 CF 07

索引 4 协议 UDP 本地地址 10.196.7.11 远程地址 112.90.86.200 本地端口 4000 远程端口 8000 本地主机 test 远程主机 服务名称