Aggregator

本文先分析Hessian1/2的序列化与反序列化过程，接着给出反序列化临时修复的代码，然后分析整理常见的Hessian反序列化利用链，最后补充其他的Hessian知识点。

本文详细剖析了一个由配置失误（JWT 密钥硬编码）与后端沙箱设计缺陷导致RCE

该样本采用**VBS→PowerShell→.NET三层嵌套混淆**，结合**AES加密**与**Process Hollowing内存注入**技术，最终释放**Remcos RAT远控木马**。全程依托AI辅助分析：快速理清混淆代码逻辑、识别API调用模式、解析进程镂空特征，显著提升多层嵌套恶意代码的分析效率。

针对在 Agent Tesla 等知名 .NET 恶意软件中泛滥的 XORStringsNet 混淆器，本文详细记录了分析师如何抛弃繁琐的传统手动逆向分析，开发出一款高效、全自动的 Python 批量解密工具的实战全过程。

skill介绍、skill使用、开发属于自己的skill。

Currently trending CVE - Hype Score: 4 - In createSessionInternal of PackageInstallerService.java, there is a possible run-as any app due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Currently trending CVE - Hype Score: 4 - A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate ...

Currently trending CVE - Hype Score: 4 - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges.

Currently trending CVE - Hype Score: 4 - The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server. Unauthenticated sessions remain open, causing resource consumption. For example, an attacker can send a recognized username (such as root), or can send arbitrary ...

Currently trending CVE - Hype Score: 8

Currently trending CVE - Hype Score: 11 - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, iOS 16.7.5 and iPadOS 16.7.5, iOS 15.8.7 and iPadOS 15.8.7. Processing maliciously crafted web content may lead to arbitrary code execution. ...

Currently trending CVE - Hype Score: 10 - The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.

Currently trending CVE - Hype Score: 11 - A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on ...

Currently trending CVE - Hype Score: 5 - The 'Saisies pour formulaire' (Saisies) plugin for SPIP versions 5.4.0 through 5.11.0 contains a critical Remote Code Execution (RCE) vulnerability. An attacker can exploit this vulnerability to execute arbitrary code on the server. Users should immediately update to version ...

Currently trending CVE - Hype Score: 5 - n8n is an open source workflow automation platform. Versions starting with 0.211.0 and prior to 1.120.4, 1.121.1, and 1.122.0 contain a critical Remote Code Execution (RCE) vulnerability in their workflow expression evaluation system. Under certain conditions, expressions ...

src漏洞挖掘分享，人生中第一个src漏洞

HisModules ERP 系统存在的严重安全缺陷