Aggregator

Frida 作为一款强大的动态插桩工具，在安全研究和 CTF 竞赛中得到了广泛应用。本文结合 PicoCTF 2025 的两道 Binary Instrumentation 题目，详细介绍 Frida 的环境配置、Windows API Hook 原理，并通过案例展示如何利用 Frida 解决问题。

在渗透测试中，遇到 API 数据采用 AES 加密传输的场景时，需通过脚本实现自动化解密。

Dell Technologies has released a critical security update addressing multiple severe vulnerabilities in its Unity enterprise storage systems that could allow attackers to execute arbitrary commands as root, delete critical system files, and perform other malicious activities without authentication.  Security researchers identified sixteen distinct vulnerabilities affecting Dell Unity, Dell UnityVSA, and Dell Unity XT running […]

The post Multiple Dell Unity Vulnerabilities Let Attackers Compromise Affected System appeared first on Cyber Security News.

This post first appeared on blog.netwrix.com and was written by Farrah Gamboa.
An Introduction to Microsoft Copilot for Security In the constantly evolving world of cybersecurity, defense teams need all the resources they can get to keep up. Fortunately, the massive advances in generative AI present SOC teams with a powerful set of tools to optimize security practices and match even fully automated adversaries using natural language … Continued

A vulnerability was found in Apache ActiveMQ Artemis up to 2.39.0. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to permission issues. The identification of this vulnerability is CVE-2025-27427. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Black Duck Coverity. It has been declared as problematic. This vulnerability affects unknown code of the component Administrative Interface. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-12021. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Three critical bypasses in Ubuntu Linux’s unprivileged user namespace restrictions allow local attackers to escalate privileges and exploit kernel vulnerabilities.  These bypasses affect Ubuntu 23.10 and 24.04 LTS systems, where AppArmor-based protections were introduced to limit namespace misuse.  While not granting full system control independently, they become potent when combined with kernel flaws requiring administrative […]

The post New Ubuntu Security Bypasses Allow Attackers to Exploit Kernel Vulnerabilities appeared first on Cyber Security News.

A critical unauthenticated remote code execution (RCE) vulnerability in HPE Insight Cluster Management Utility (CMU) v8.2 allows attackers to bypass authentication and execute commands as root on high-performance computing (HPC) clusters, researchers revealed today. Tracked as CVE-2024-13804, the flaw exposes HPC environments to full cluster compromise through weaponized Java client applications. Technical Breakdown The vulnerability stems from […]

The post Hewlett Packard RCE Vulnerability Allows Attackers to Bypass Authentication and Execute Remote Commands appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

俄黑客利用Windows零日漏洞投放后门，窃取敏感数据！