Aggregator

发表于安全客 KASAN 简述 KASAN是内核用于动态检测内存错误的工具, 简单来说, 数据区域可分为两种:可访问区域，不可访问区域(red_zone).KASAN存在影子内存(shadow memory), 他和正常内存的比例是1:8, 即1byte shadow memory可以代表8bytes 正常内存的可访问性. 128TB(内核正常内存) : 16TB(影子内存) — Documentation/x86/x86_64/mm.rst x86-64 内存布局显示如下: ffffec0000000000 | -20 TB | fffffbffffffffff | 16 TB | KASAN shadow memory 具体规则(+: byte可访问, -: byte不可访问) 如果1byte shadow memory对应的8bytes 内存都可访问, 则*(shadow memory) == 0 [0] -> [+, +, +, +, +, +, +, +] 如果1byte shadow memory对应的8bytes 内存都不可访问, 则*(shadow memory)为负数 [-1] -> [-, -, -, -, -, -, -, -] 如果1byte shadow memory对应的8bytes 内存中有N bytes可访问, 则*(shadow memory) == N if N = 3 [3] -> [+, +, +, -, -, -, -, -] 实现原理

不懂

Summary Using a new programming language, Rust, threat actors have turned their attention to the creation of adware. SecureList posted a blog detailing the language and its use in the creation of adware. Threat Type Malware, Adware Overview A new adware program dubbed Convuster has been seen in the wild. The adware is written in a little known programming language called Rust. Analysts were able to identify the language through the use of Rust specific language and the file extension .rs. The malware works

Summary The Cofense Phishing Defense Center (PDC) takes a brief look at Mekotio, also known as Metamorfo, a banking Trojan with Latin American origins that is now expanding its reach to victims across Europe. This trojan is one that makes use of a little known scripting language known as AutoHotKey (AHK). Threat Type Malware, Phishing, Keylogger, Infostealer, Trojan Overview The Cofense Phishing Defense Center (PDC) takes a brief look at Mekotio, also known as Metamorfo, a banking Trojan with Latin American

You probably heard of NFTs (non-fungible tokens). They are receiving a lot of interest over the last several months. I did some digging and realized that there are some bigger issues with the standards and various interpretations and implementations of it, and how centralized many offerings are. What is an NFT The idea behind it is simple, use a blockchain (and cryptography) to assign and be able to proof ownership over a specific piece of digital content.

The edge is becoming more critical in a world of 5G and IoT. I've seen the evolution from 1x to 3G to 4G and now 5G over the many years I've worked in the mobile space, and 5G and IoT will drive the biggest changes we have seen on the edge in 10 or 20 years.

Akamai Technologies India Pvt. Ltd. has chosen the grantees for Cohort 2 of Accelerator Program for Early-Stage Innovations in Water.

Passwords are inherently flawed, and not just because of credential stuffing. The future of authentication looks very different, but there are steps you can take now to control risk.

Passwords are inherently flawed, and not just because of credential stuffing. The future of authentication looks very different, but there are steps you can take now to control risk.

美国情报机构17日表示，具有种族动机的极端分子和武装激进团体是最致命的国内恐怖主义威胁，并警告称这些威胁可能

网传米哈游的《原神》近日遭到攻击，并由此导致即将推出的大量1.5版本游戏内容泄露。其泄露的内容从游戏机制、到

Metasploit最新资讯更新！添加了新功能！

Metasploit最新资讯更新！添加了新功能！

Summary NimzaLoader is a new initial access malware that is relatively unique in its usage of the Nim programming language. Proofpoint observed this malware being distributed in a TA800 email campaign in place of BazaLoader. Threat Type Malware, Loader Overview Proofpoint published a blog post analyzing the NimzaLoader malware, a loader written in the Nim programming language. This malware is being distributed by TA800 in their email campaigns; previously the group used BazaLoader for initial access. The em

Summary Cisco has published a Security Advisory which is rated as High. Threat Type Vulnerability Overview Cisco has published a Security Advisory which is rated as High. In the advisory summarized below, it is noted that Cisco's Product Security Incident Response Team (PSIRT) is "not aware of any public announcements or malicious use of the vulnerabilities" that are described in the advisory. Cisco Small Business RV132W and RV134W Routers Management Interface Remote Command Execution and Denial of Service

Metasploit最新资讯更新！添加了新功能！

大家好，我是BaCde。今天给大家分享一下我这个月提交鹅厂漏洞的一个挖掘思路。

首先说一下结果，一个SQL注入（可报错回显）、弱口令（审核后发现是域名解析IP错误）和一个有限的SSRF漏洞。

当然今天我要说的不是直接查询子域名，那就没必要写这篇文章了。

像鹅厂这样规模的企业，其资产数量众多。同样的，其盯着他的大佬们也非常多。而目前收集信息的方法大多数都差不多。本身厂商自己也会对其进行监控、检测。基本上很多被筛选了很多遍。那应该如何去挖掘呢？其中一种思路就是找到别人未发现的一些资产，这将增加挖掘的概率。

RapidDNS网站在2020年12月的时候增加了5000万的HTTPS证书数据。暂时还没有对证书查询独立（将在新上线的版本独立查询）。

美国国家情报总监办公室（Office of the Director of National Intelli

简单说一下最近在TSRC挖到漏洞的思路

简单说一下最近在TSRC挖到漏洞的思路