Aggregator

极客公园创新大会2025 全嘉宾阵容官宣！

Находка в пещере Мальтравьесо доказывает: люди сильно недооценивают неандертальцев.

获奖项目：《云环境敏感数据侵犯行为分析与安全防护关键技术》

获奖项目：《云环境敏感数据侵犯行为分析与安全防护关键技术》

获奖项目：《云环境敏感数据侵犯行为分析与安全防护关键技术》

笔者毕业即开始带团队，遗憾欠缺了许多技术沉淀，但又多了团队管理经验，本文归纳了笔者对于技术团队建设的观点和做法，希望给走团队管理或项目管理路线的同学能够有一些启发，这里不局限于安全团队，同样适用于研发团队或其他类型技术团队。

ISC Stormcast For Friday, December 6th, 2024 https://isc.sans.edu/podcastdetail/9244, (Fri, Dec 6th)

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

A European law enforcement operation took down a specialized online marketplace that operated as a central hub for the trade of illegally obtained information

解决Android-CTF的难点和空白，在实战中学习如何快速解题

文末投递简历

勒索软件组织Brain Cipher宣称入侵德勤英国公司，窃取1TB敏感数据，并要求私下谈判，暗示赎金支付可能。

马先越

NSFOCUS’s Coogo: An Automated Penetration Testing Tool

法国团队成功对苹果Mac Studio专有存储模块实现逆向 明年起将提供实惠的升级

Как перейти на новую версию Windows, сохранив безопасность данных.

看似正经实则荒诞，重磅行业新闻只是病毒传播式的谣言。

Linux DFIR Training recommendations?

A vulnerability was found in dactum Clickbank Plugin up to 1.7 on WordPress. It has been classified as problematic. This affects an unknown part of the component Setting Handler. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-11336. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in ONLYOFFICE Docs Plugin up to 2.0.0 on WordPress and classified as problematic. Affected by this issue is the function onlyoffice of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-11450. The attack may be launched remotely. There is no exploit available.