Aggregator
2022网鼎杯白虎组部分wp(新增re-junk)
3 years 1 month ago
2022网鼎杯白虎组部分wp(新增re-junk)
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
Springboot之Actuator信息泄露漏洞利用
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
Springboot之Actuator信息泄露漏洞利用
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
Springboot之Actuator信息泄露漏洞利用
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
2022网鼎杯白虎组部分wp(新增re-junk)
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
3 years 1 month ago
Springboot之Actuator信息泄露漏洞利用
New Prolexic Partner Megaport Now Live in Australia
3 years 1 month ago
As part of Akamai’s focus on serving local market needs, we are thrilled to announce new Prolexic connectivity options via Megaport Elastic Fabric in Australia.
Greg Burns
PureCrypter is busy pumping out various malicious malware families
3 years 1 month ago
In our daily botnet analysis work, it is common to encounter various loaders.Compared to other types of malware, loaders are unique in that they are mainly used to "promote", i.e., download and run other malware on the infected machine. According to our observations, most loaders are
wanghao
方法论 | 我与入侵检测的二三事儿
3 years 1 month ago
总结毕业后的六年经历,从扫描器萌新,到入侵检测的“青年”油条,希望能对各位有一些参考价值。一、扫描器18年的
CVE-2022-26911 Skype for Business 任意文件读取漏洞分析与复现
3 years 1 month ago
微软发布 Skype for Business 存在一个信息泄露漏洞 CVE-2022-26911。
CVE-2022-26911 Skype for Business 任意文件读取漏洞分析与复现
3 years 1 month ago
微软发布 Skype for Business 存在一个信息泄露漏洞 CVE-2022-26911。
CVE-2022-26911 Skype for Business 任意文件读取漏洞分析与复现
3 years 1 month ago
微软发布 Skype for Business 存在一个信息泄露漏洞 CVE-2022-26911。
1password6 在chromeV99复活 - sevck
3 years 1 month ago
自己的chrome一直有新版本就更新,结果之前更新chrome 1password6的扩展就不能用了,新版本的扩展还要保存在服务端,显然不可接受。网上找到解决办法,整理如下: 1、我的1password6 版本(1Password 6 Version 6.8.9 (689001) AgileBits
sevck
Machine Learning Attack Series: Backdooring Pickle Files
3 years 1 month ago
Recently I read this excellent post by Evan Sultanik about exploiting pickle files on Trail of Bits. There was also a DefCon30 talk about backdooring pickle files by ColdwaterQ.
This got me curious to try out backdooring a pickle file myself.
Pickle files - the surprises Surprisingly Python pickle files are compiled programs running in a VM called the Pickle Machine (PM). Opcodes control the flow, and when there are opcodes there is often fun to be had.
利用Azure Attest Service持久化
3 years 1 month ago
YangHao
PureCrypter Loader持续活跃,已经传播了10多个其它家族
3 years 1 month ago
在我们的日常botnet分析工作中,碰到各种loader是常事。跟其它种类的malware相比,loader的特殊之处在于它主要用来“推广”,
wanghao
【自动化赏金之路】初试3个月 收入10000块的总结
3 years 1 month ago
大家好,我是BaCde。今天就跟大家聊聊自动化赏金尝试上的一些总结,从结果上来看,具备一定的可行性。