乘KCon 2024场域之势 赴网络安全「同道」盛宴
胡金鱼
Aggregator
RemoteKrbRelay: Advanced Kerberos Relay Framework
1 year 9 months ago
RemoteKrbRelay Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework Details Now, you have four folders in front of you: Checker – old version of the checker for detecting vulnerable DCOM objects; Checkerv2.0 – new version...
The post RemoteKrbRelay: Advanced Kerberos Relay Framework appeared first on Penetration Testing Tools.
ddos
PsMapExec: assess and compromise an Active Directory environment
1 year 9 months ago
PsMapExec A PowerShell tool heavily inspired by the popular tool CrackMapExec / NetExec. PsMapExec aims to bring the function and feel of these tools to PowerShell with its own arsenal of improvements. PsMapExec is...
The post PsMapExec: assess and compromise an Active Directory environment appeared first on Penetration Testing Tools.
ddos
苹果良心发现?消息称搭载M4芯片的Mac将全系列配备至少16GB内存
1 year 9 months ago
苹果官宣 iPhone16 新品发布时间;罗永浩:已还债 8.24 亿;传索尼PS5 Pro下月发布,性能暴涨 | 极客早知道
1 year 9 months ago
小鹏自研智驾芯片成功流片;IBM 关闭中国研发部门,涉及员工数量超过 1000 人;曝滴滴拟出售智能座舱业务。
.NET 内网攻防实战电子报刊
1 year 9 months ago
欢迎加入.NET安全工具交流群:仅限技术交流
1 year 9 months ago
.NET 一款模拟管道和传递哈希的工具
1 year 9 months ago
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
High-value Web Application Post-RCE Penetration Research
1 year 9 months ago
叙述-高价值Web应用RCE后利用研究
英伟达正在调查Linux版显卡驱动程序导致的内核错误 看视频和玩游戏都会卡顿
1 year 9 months ago
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
1 year 9 months ago
This post describes vulnerability in Microsoft 365 Copilot that allowed the theft of a user’s emails and other personal information. This vulnerability warrants a deep dive, because it combines a variety of novel attack techniques that are not even two years old.
I initially disclosed parts of this exploit to Microsoft in January, and then the full exploit chain in February 2024. A few days ago I got the okay from MSRC to disclose this report.
Complete Guide to Protecting Seven Attack Vectors
1 year 9 months ago
The quicker a cyberattack is identified, the less it costs. Jon Clay, VP of Threat Intelligence, reviews seven key initial attack vectors and provides proactive security tips to help you reduce cyber risk across the attack surface.
Jon Clay
派早报:国内无线充电新规即将施行,奇安信公布 Steam 被攻击细节等
1 year 9 months ago
你可能错过的新鲜事国内无线充电新规 9 月 1 日起施行由工信部制定的《无线充电(电力传输)设备无线电管理暂行规定》将在 2024 年 9 月 1 日起正式实施,该规定明确了国内无线充电设备的工作
First Commonwealth Federal Credit Union: What Is the Situation Two Months After the Data Breach?
1 year 9 months ago