Exploring Common Threats to Cloud Security
www.trendmicro.com

探索云服务安全的常见威胁研究。 lanying37 • 9 hours ago

0   

Cisco ‘Critical Update’ Phishing Attack Steals Webex Credentials
Threatpost

思科安全公告:攻击者伪装成思科的“关键更新”电子邮件进行网络钓鱼攻击窃取Webex在线会议平台凭据。 lanying37 • 10 hours ago

0   

S1lkys/CVE-2020-11107
github.com • Windows

XAMPP 本地提权漏洞分析(CVE-2020-11107) Jett • 15 hours ago

0   

sibears/HRAST
github.com • Tools

用于修改 IDA HexRays AST 的工具 Jett • 15 hours ago

0   

OPCDE/2020/April/8 at master · comaeio/OPCDE · GitHub
github.com • Conference

OPCDE 2020 会议的部分议题公开了 Jett • 15 hours ago

0   

RetDec v4.0 is out – Avast Engineering
engineering.avast.io • Tools

RetDec 开源反编译器新增对 ARM64 架构的支持 Jett • 16 hours ago

0   

Google Books
www.google.com

Google 推出了一本新书《Building Secure and Reliable Systems - Best Practices for Designing, Implementing, and Maintaining Systems》 Jett • 16 hours ago

0   

LibreSSL and OSS-Fuzz
Doyensec's Blog • Fuzzing macOS

为 LibreSSL SSL 库提供对 OSS-Fuzz Fuzz 的支持 Jett • 16 hours ago

1   

LokiBot: dissecting the C&C panel deployments
www.virusbulletin.com • Malware

LokiBot的C&C后台登录面板以及部署环境分析 Schwarrzz • 16 hours ago

0   

Deep Dive Into TrickBot Executor Module "mexec": Hidden "Anchor" Bot Nexus Operations - SentinelLabs
labs.sentinelone.com • Malware

TrickBot新模块mexec详细分析 Schwarrzz • 16 hours ago

0   

Example x86
github.com • Tools

APT组织TA505所使用的SDBbot RAT解包工具发布,支持x86和x64 Schwarrzz • 17 hours ago

0   

XLMMacroDeobfuscator
github.com • Tools

针对 Zloader 宏木马的反混淆工具发布,该工具可以处理通过CHAR和FORMULA函数进行混淆的XML宏代码。 Schwarrzz • 17 hours ago

0   

Process Injection Part 1 | CreateRemoteThread()
sevrosecurity.com • Windows

Windows 进程注入教程第一部分,利用CreateRemoteThread API进行远线程注入 Schwarrzz • 17 hours ago

0   

TAU Threat Analysis: NetWire Variant Leveraging AutoIt Scripts and Windows Shortcut Links | VMware Carbon Black
www.carbonblack.com • Malware

活跃多年的 NetWire RAT 最近正在利用AutoIt脚本和windows lnk 传播 Schwarrzz • 17 hours ago

0   

Exploiting CVE-2020-0041 - Part 2: Escalating to root
labs.bluefrostsecurity.de • Windows

利用CVE-2020-0041-第2部分:升级到获取root权限。 lanying37 • 1 day ago

0   

Decade of the RATs: Novel APT Attacks Targeting Linux, Windows and Android
blogs.blackberry.com • Attack

BlackBerry发布研究分析报告《 RAT的十年:针对Linux,Windows和Android的跨平台APT间谍攻击》 lanying37 • 1 day ago

0   

RedELK Part 3 – Achieving operational oversight | Outflank Blog
outflank.nl • Pentest

RedELK SIEM 工具在渗透测试中的应用 Jett • 1 day ago

0   

Add some structureID integrity checks to various runtime functions. · WebKit/[email protected]
github.com • Tools

WebKit 新增运行时对 structureID 的完整性校验 Jett • 1 day ago

1   

‘Fake Fingerprints’ Bypass Scanners with 3D Printing
Threatpost

有研究员用 3D 打印的假指纹绕过了三星/Apple 手机、笔记本的指纹识别 Jett • 1 day ago

0   

Loading