Verifying Windows binaries, without Windows
Trail of Bits Blog • Windows

μthenticode - 一款用于验证 Windows 文件签名的跨平台工具 Jett • 2 hours ago

0   

MindShaRE: How to “Just Emulate It With QEMU”
Zero Day Initiative - Blog • Firmware

MINDSHARE - 基于 QEMU 的 IoT 设备模拟执行 Jett • 2 hours ago

0   

From Azure AD to Active Directory (via Azure) – An Unanticipated Attack Path
Active Directory Security

From Azure AD to Active Directory (via Azure) – An Unanticipated Attack Path Jett • 2 hours ago

0   

Red Team Maturity Model
redteams.fyi • Tools

衡量红队成熟度模型指导建议。 lanying37 • 14 hours ago

0   

ChirpOTLE: A Framework for Practical LoRaWAN Security Evaluation
arxiv.org • Wireless

ChirpOTLE:实用低功耗广域网(LoRaWAN)安全评估框架. lanying37 • 14 hours ago

0   

Pivotnacci - A Tool To Make Socks Connections Through HTTP Agents
www.kitploit.com • Tools

一个借助http实现Socks客户端和服务端通信的工具 靓仔 • 14 hours ago

0   

💻 Building a Cyber Security Lab 🔬
medium.com

如何开始搭建自己的网络安全实验室 靓仔 • 16 hours ago

0   

From Agent.BTZ to ComRAT v4: A ten‑year journey | WeLiveSecurity
www.welivesecurity.com • Attack

Turla 已经将它的 C&C 基础设施从 ComRAT 后门换成 Gmail Jett • 17 hours ago

0   

[PDF] https://nebelwelt.net/publications/files/20SEC3.pdf
nebelwelt.net • Fuzzing Tools

USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation Jett • 17 hours ago

0   

Kelvinhack/ThreadSpy
github.com

ThreadSpy - 基于硬件实现的 Thread Hijacker Jett • 17 hours ago

0   

gdabah/win32k-bugs
github.com

研究员 Gil Dabah 公开了一个 win32k 漏洞的 PoC Jett • 17 hours ago

0   

High-performance garbage collection for C++
V8

V8 引擎 C++ 垃圾回收(GC)机制介绍 Jett • 17 hours ago

0   

Checking your browser before accessing bleepingcomputer.com.
www.bleepingcomputer.com • Android

研究人员公布最高可影响到 Android 9.0 的 StrandHogg 2.0 特权提升漏洞 Schwarrzz • 19 hours ago

0   

A Guide to Threat Modelling for Developers
martinfowler.com • Tools

开发人员威胁建模指南。 lanying37 • 1 day ago

2   

Kerberos and Attacks 101 | Red Siege Information Security
www.redsiege.com

Kerberos攻击与工作原理在线会议视频。 lanying37 • 1 day ago

0   

Batch Binary Analysis with IDA Pro 7.4 Automation
irq5.io • Tools

使用IDA Pro 7.4 Automation进行对二进制文件分析指南。 lanying37 • 1 day ago

0   

[PDF] https://people.inf.ethz.ch/omutlu/pub/Revisiting-RowHammer_isca20.pdf
people.inf.ethz.ch

Revisiting RowHammer - 比较新的 DRAM 芯片仍然存在 RowHammer 漏洞 Jett • 1 day ago

0   

BishopFox/rmiscout
github.com • Tools

Enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities Jett • 1 day ago

0   

CVE-2020-0655
cpr-zero.checkpoint.com • Windows

KernelBase.dll!PathCanonicalize 被发现反斜杠路径穿越漏洞,影响所有版本 Windows 系统 Jett • 1 day ago

0   

googleprojectzero/fuzzilli
github.com • Fuzzing Tools

fuzzilli Fuzzer 项目新增对云上环境部署的支持 Jett • 1 day ago

1   

Tags

Tools Malware Windows Browser Android Attack Web Vulnerability iOS Linux Conference Pentest macOS Network IoT Defend Wireless Fuzzing Reverse Engineering Virtualization Crypto CTF Programming Data Breach Machine Learning Firmware Report Forensics PoC Mitigation Backdoor SCADA Threat Intelligence Blockchain Side Channel Hardware Exploit Supply Chain Bug Bounty Privacy Power Analysis
Loading