Aggregator
.NET 内网实战:通过 Windows 系统服务注册表值实现权限维持
9 months 1 week ago
雷军隔月首发声:创立小米以来最难的日子;Altman向马斯克服软「AGI比恩怨重要」;酷玩等明星抗议AI滥用 | 极客早知道
9 months 1 week ago
来自 FCC 代表的信函显示 SpaceX 星际飞船第九次测试发射即将启动;2025 款奥迪 Q6 车型新增 quattro 纪念版羽林套装 7 座车型上市,售 46.76 万元;英伟达首款 ARM 超级芯片 GB10 曝光
雷军隔月首发声:创立小米以来最难的日子;Altman向马斯克服软「AGI比恩怨重要」;酷玩等明星抗议AI滥用 | 极客早知道
9 months 1 week ago
来自 FCC 代表的信函显示 SpaceX 星际飞船第九次测试发射即将启动;2025 款奥迪 Q6 车型新增 quattro 纪念版羽林套装 7 座车型上市,售 46.76 万元;英伟达首款 ARM 超级芯片 GB10 曝光
雷军隔月首发声:创立小米以来最难的日子;Altman向马斯克服软「AGI比恩怨重要」;酷玩等明星抗议AI滥用 | 极客早知道
9 months 1 week ago
来自 FCC 代表的信函显示 SpaceX 星际飞船第九次测试发射即将启动;2025 款奥迪 Q6 车型新增 quattro 纪念版羽林套装 7 座车型上市,售 46.76 万元;英伟达首款 ARM 超级芯片 GB10 曝光
Spyndicapped: COM ViewLogger — new malware keylogging technique
9 months 1 week ago
Spyndicapped Spy of your users with Microsoft UIA! MS UIA (Microsoft User Interface Automation) is a special framework designed to automate the use of the Windows GUI. With its help you can read any text...
The post Spyndicapped: COM ViewLogger — new malware keylogging technique appeared first on Penetration Testing Tools.
ddos
CVSS 10 满分漏洞:CVE-2025-32432 Craft CMS RCE 及未公开利用链深度解构
9 months 1 week ago
近期 Craft CMS 曝出了 CVSS 10 分的高危漏洞 CVE-2025-32432 ,可以看成是 CVE-2023-41892 的延续,都尝试利用 Yii 框架 createObject 函数触发可控类实例化来实现 RCE 。
CVSS 10 满分漏洞:CVE-2025-32432 Craft CMS RCE 及未公开利用链深度解构
9 months 1 week ago
近期 Craft CMS 曝出了 CVSS 10 分的高危漏洞 CVE-2025-32432 ,可以看成是 CVE-2023-41892 的延续,都尝试利用 Yii 框架 createObject 函数触发可控类实例化来实现 RCE 。
RPCMon: RPC Monitor tool based on Event Tracing for Windows
9 months 1 week ago
RPCMon A GUI tool for scanning RPC communication through Event Tracing for Windows (ETW). The tool was published as part of research on RPC communication between the host and a Windows container. Overview RPCMon...
The post RPCMon: RPC Monitor tool based on Event Tracing for Windows appeared first on Penetration Testing Tools.
ddos
Rams CTF 2025
9 months 1 week ago
Name: Rams CTF 2025 (an Rams CTF event.)
Date: May 10, 2025, 3:11 p.m. — 10 May 2025, 15:11 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://rams-ctf.com/
Rating weight: 0
Event organizers: RAM Overflow
Date: May 10, 2025, 3:11 p.m. — 10 May 2025, 15:11 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://rams-ctf.com/
Rating weight: 0
Event organizers: RAM Overflow
transformer库中的kv cache分析与调试
9 months 1 week ago
Terenceli
【资料】CIA的书籍和情报研究
9 months 1 week ago
今天给大家推送美国中央情报局(CIA)的《情报研究》和一些书籍,330余篇相关资料原文已上传AI开源大模型。
【资料】CIA的书籍和情报研究
9 months 1 week ago
今天给大家推送美国中央情报局(CIA)的《情报研究》和一些书籍,330余篇相关资料原文已上传AI开源大模型。
印巴冲突期间网络与信息战密集爆发
9 months 1 week ago
印度与巴基斯坦冲突已蔓延至数字领域
印巴冲突期间网络与信息战密集爆发
9 months 1 week ago
印度与巴基斯坦冲突已蔓延至数字领域
Weekly Update 451
9 months 1 week ago
The Have I Been Pwned Alpine Grand Tour is upon us! I've often joked that work is always either sitting at my desk at home in isolation or on the other side of the world, and so it is with this trip. As we've done with
Troy Hunt
CVE-2019-20517 | ERPNext 11.1.47 contact/ PATH_INFO Reflected cross site scripting
9 months 1 week ago
A vulnerability was found in ERPNext 11.1.47. It has been rated as problematic. This issue affects some unknown processing of the file contact/. The manipulation of the argument PATH_INFO leads to cross site scripting (Reflected).
The identification of this vulnerability is CVE-2019-20517. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2019-20518 | ERPNext 11.1.47 project/ PATH_INFO Reflected cross site scripting
9 months 1 week ago
A vulnerability classified as problematic has been found in ERPNext 11.1.47. Affected is an unknown function of the file project/. The manipulation of the argument PATH_INFO leads to cross site scripting (Reflected).
This vulnerability is traded as CVE-2019-20518. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2019-20519 | ERPNext 11.1.47 Email Address user/ PATH_INFO Reflected cross site scripting
9 months 1 week ago
A vulnerability classified as problematic was found in ERPNext 11.1.47. Affected by this vulnerability is an unknown functionality of the file user/ of the component Email Address Handler. The manipulation of the argument PATH_INFO leads to cross site scripting (Reflected).
This vulnerability is known as CVE-2019-20519. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2019-20520 | ERPNext 11.1.47 api/method/ PATH_INFO Reflected cross site scripting
9 months 1 week ago
A vulnerability, which was classified as problematic, has been found in ERPNext 11.1.47. Affected by this issue is some unknown functionality of the file api/method/. The manipulation of the argument PATH_INFO leads to cross site scripting (Reflected).
This vulnerability is handled as CVE-2019-20520. The attack may be launched remotely. There is no exploit available.
vuldb.com