Aggregator
欢迎报名!新课《Frida源码情景分析》
11 months ago
情景分析课程助你构建强大的动态分析能力
CTF自毁程序密码:逆向分析
11 months ago
看雪论坛作者ID:西贝巴巴
欢迎报名!新课《Frida源码情景分析》
11 months ago
Frida,作为一款强大的动态分析工具,已经在软件安全领域走过了15个年头,深受安全研究人员的喜爱。近年来,Frida在移动安全领域的应用更是成为热门话题。为了帮助大家更好地理解和掌握Frida的内部
CTF自毁程序密码:逆向分析
11 months ago
一背景这一题很有迷惑性,看似简单的代码逻辑,一眼看到的答案,其实并不是真相,重点在他的反检测。大多数的时候我们通过静态分析(java层还是so层)找到他的加密算法,再逆向还原其算法就能找到最终的答案,
Fluent Read:上下文语境的人工智能翻译引擎(浏览器插件)
11 months ago
流畅阅读(Fluent Read)是什么流畅阅读(Fluent Read)是一款高效、开源的浏览器翻译插件,利用基于上下文语境的人工智能翻译引擎,为用户提供接近母语的阅读体验。它支持多种翻译模式(仅译
Fluent Read:上下文语境的人工智能翻译引擎(浏览器插件)
11 months ago
流畅阅读(Fluent Read)是什么流畅阅读(Fluent Read)是一款高效、开源的浏览器翻译插件,利用基于上下文语境的人工智能翻译引擎,为用户提供接近母语的阅读体验。它支持多种翻译模式...
黑海洋
CVE-2024-42175 | HCL DRYiCE MyXalytics 6.3 input validation (KB0118149)
11 months ago
A vulnerability, which was classified as problematic, was found in HCL DRYiCE MyXalytics 6.3. Affected is an unknown function. The manipulation leads to improper input validation.
This vulnerability is traded as CVE-2024-42175. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-12412 | magepeopleteam Rental and Booking Manager for Bike, Car, Dress, Resort with WooCommerce Integration Plugin cross site scripting
11 months ago
A vulnerability, which was classified as problematic, has been found in magepeopleteam Rental and Booking Manager for Bike, Car, Dress, Resort with WooCommerce Integration Plugin up to 2.2.1 on WordPress. This issue affects some unknown processing. The manipulation of the argument active_tab leads to cross site scripting.
The identification of this vulnerability is CVE-2024-12412. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2013-5640 | Raoul Proenca Gnew 2013.1 user_email sql injection (Advisory 123482 / EDB-28684)
11 months ago
A vulnerability was found in Raoul Proenca Gnew 2013.1 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument user_email leads to sql injection.
This vulnerability is handled as CVE-2013-5640. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-0391 | Guangzhou Huayi Intelligent Technology Jeewms up to 20241229 CgFormBuildController. java saveOrUpdate sql injection (IBFKA8)
11 months ago
A vulnerability, which was classified as critical, has been found in Guangzhou Huayi Intelligent Technology Jeewms up to 20241229. This issue affects the function saveOrUpdate of the file org/jeecgframework/web/cgform/controller/build/CgFormBuildController. java. The manipulation leads to sql injection.
The identification of this vulnerability is CVE-2025-0391. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
日常想法的摘录
短文:对现实里网络安全领域的新认识
11 months ago
终端对抗-反虚拟环境指南https://www.anquanke.com/post/id/297436GPT总结:本文介绍了如何对抗虚拟环境进行木马和恶意软件的制作,主要包括检查终端环境和利用延时对抗