Aggregator

Binabsinspector是一款是由Keenlab开发的一款基于ghidra的二进制静态分析工具。现有文章主要介绍安装部署以及如何基于GUI插件的方式使用该工具，但是对如何基于该工具进行二次开发着墨较少。因此，本文旨在通过介绍该工具的常见接口，基于笔者日常使用过程中的实际需求，剖析其代码实现，希望能够为安全研究人员使用该工具和二次开发提供参考。

Submit #580201 / VDB-309659

Submit #580195 / VDB-309658

Submit #580198 / VDB-300677

Submit #580197 / VDB-300675

Cybersecurity and Infrastructure Security Agency (CISA) has added a cross-site scripting (XSS) vulnerability affecting MDaemon Email Server to its Known Exploited Vulnerabilities (KEV) Catalog on May 19, 2025. This critical addition, identified as CVE-2024-11182, highlights a security flaw that allows attackers to inject malicious JavaScript code via crafted HTML emails. Federal agencies now have until […]

The post CISA Includes MDaemon Email Server XSS Flaw in KEV Catalog appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #580196 / VDB-251553

CC11 + Controller 内存马

Submit #580192 / VDB-309657

国际前沿技术 AI+Fuzz 实现细节、LLM + Fuzzer、CKGFuzzer

Microsoft is introducing artificial intelligence capabilities directly into Windows 11’s File Explorer, allowing users to manipulate files without opening dedicated applications.  Announced in Windows 11 Insider Preview Build 26200.5603 (KB5058488) released to the Dev Channel on May 19, 2025, this integration represents a significant advancement in Microsoft’s AI strategy for its flagship operating system. AI […]

The post Microsoft to Integrate AI With Windows 11 File Explorer appeared first on Cyber Security News.

java之jdk17反射机制绕过深入剖析问题分析先写一个测试代码，通过反射调用 defineclass 方法加载恶意字节码，然后进行运行的时候发现报错，看报错信息不难发现是在 setAccessible 出的问题，跟进该方法调用了 checkCanSetAccessible 方法，继续跟进看着逻辑有点多，但是发现如果满足下面这几种情况是可以返回 true 就可以进行反射调用了。第一个 if：调用者

Cynet announced a major update to CyAI, its proprietary AI engine that powers advanced threat detection across the Cynet platform. By reducing false positives by 90%, CyAI advances Cynet’s mission to maximize purpose-built protection for managed service providers and small-to-medium businesses, backed by 24/7 SOC support. Leveraging machine learning models trained on millions of samples, CyAI continuously analyzes every executable file across all endpoints to detect known and zero-day threats before damage can be done. … More →

The post Cynet boosts AI-powered threat detection accuracy appeared first on Help Net Security.

Russian organizations have become prime targets of a sophisticated malware campaign deploying the Pure malware family, first identified in mid-2022. Distributed via a Malware-as-a-Service (MaaS) model, Pure malware allows cybercriminals to purchase and deploy it with ease. While the campaign began in March 2023, the first third of 2025 witnessed a staggering fourfold increase in […]

The post Hackers Use Weaponized RAR Archives to Deliver Pure Malware in Targeted Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

该漏洞允许通过路径遍历任意写入或读取文件。具体来说，漏洞存在于Ollama对digest字段验证不正确的问题上，服务器错误地将有效负载解释为合法的文件路径，攻击者可在digest字段中包含路径遍历payload的恶意清单文件，利用该漏洞实现任意文件读取/写入或导致远程代码执行。

Submit #569966 / VDB-309652

Yak.exe滥用作C2木马 免杀360火绒内存扫描

Crypto POS机，同样不安全

内核中一些结构体的常见利用方式

Submit #565992 / VDB-309651