分類: 資安

防禦

[資安]隱藏php 版本跟apache版本

隱藏php版本需要修改php.ini找到 把它修改成 隱藏apache版本則需要到httpd.conf 裡面手 […]

Be the First to comment. Read More
防禦

[資安]Insecure Inline Frame (iframe)

發現網頁使用內聯框架(“iframe”)嵌入資源,例如不同的網頁。內聯框架配置不安全,或者不如預期的安全。此漏 […]

Be the First to comment. Read More
防禦

[資安]HTTP Strict Transport Security (HSTS) not implemented

HTTP Strict Transport Security (HSTS) not implemented 就 […]

Be the First to comment. Read More
防禦

[資安]Cookies without HttpOnly flag set

Cookies without HttpOnly flag set 請參考:HttpOnly – […]

Be the First to comment. Read More
cyber kill chain手法

SSH Tunneling (Port Forwarding)

SSH Port Forwarding 有下列三種模式: Local Port Forwarding Remo […]

Be the First to comment. Read More