Aggregator

A New Attack Surface on MS Exchange Part 3 - ProxyShell!

DEVCORE 戴夫寇爾
3 years 7 months ago

This is a guest post DEVCORE collaborated with Zero Day Initiative (ZDI) and published at their blog, which describes the exploit chain we demonstrated at Pwn2Own 2021! Please visit the following link to read that :)

If you are interesting in more Exchange Server attacks, you can also check our series of articles:

With ProxyShell, an unauthenticated attacker can execute arbitrary commands on Microsoft Exchange Server through an exposed 443 port! Here is the demonstration video:

Cloudy with a chance of transparency

NCSC Feed
3 years 7 months ago
In part 2 of his Cloud Blog Trilogy, Andrew explains why it's better for everyone if cloud providers are willing to be open about how they run their services.

外部打点的大技巧——绕过人机验证 - zha0gongz1

博客园_H4ck3R-XiX
3 years 7 months ago
1.更改请求方式 这是一种检查绕过验证码的简单方法,只需更改“请求的请求方法”并删除验证码参数 示例 POST — — -> GET (POST请求转GET) #更有效 POST — — -> PUT (POST请求转PUT) 2.删除参数或使用先前使用的验证码 3.修改JSON请求到正常请求 有时
zha0gongz1

丰富化威胁情报平台的能力

小刀志
3 years 7 months ago
翻译自英文文章:《Enriching Threat Intelligence Platforms Capabilities》。文章讲述一个丰富化的威胁情报平台的实现思路,以扩展当前 TIP 中的...
Leeqwind

【原创】Java内存攻击技术漫谈 - rebeyond

rebeyond
3 years 8 months ago
前言 Java技术栈漏洞目前业已是web安全领域的主流战场,随着IPS、RASP等防御系统的更新迭代,Java攻防交战阵地已经从磁盘升级到了内存里面。 在今年7月份上海银针安全沙龙上,我分享了《Java内存攻击技术漫谈》的议题,个人觉得PPT承载的信息比较离散,技术类的内容还是更适合用文章的形式来分
rebeyond

Dogged Persistence?The Name of the Game for One DDoS Attacker

The Akamai Blog
3 years 8 months ago
With DDoS, we typically observe a moderate degree of attacker persistence. DDoS attacks are relatively easy to launch from a number of online booter services, and the availability of cryptocurrencies for payment has made it easy to remain anonymous. Attackers can try their hand at DDoS for little effort and money, and in relative safety. They give it a go, try a few things (vector, endpoint, and scale changes), and for those with effective defenses, the attacker eventually burns out.
Tom Emmons

Managed ad