The .NET Export Portal - XPN InfoSec Blog
blog.xpnsec.com

The .NET Export Portal Jett • 8 hours ago

0   

Enter WAPDropper – An Android Malware Subscribing Victims To Premium Services By Telecom Companies - Check Point Research
research.checkpoint.com • Android

Checkpoint 对 Android 平台吸费恶意软件 WAPDropper 的分析 Jett • 8 hours ago

0   

Smart (and simple) ways to prevent symlink attacks in Go
Trail of Bits Blog

Smart (and simple) ways to prevent symlink attacks in Go Jett • 8 hours ago

0   

Detailing SaltStack Salt Command Injection Vulnerabilities
Zero Day Initiative - Blog

ZDI 对近期 SaltStack 被发现的几个命令注入漏洞的分析 Jett • 8 hours ago

0   

GEF extension to handle tagged and compressed pointers in v8 better (WIP)
gist.github.com

用于调试时辅助处理 V8 引擎 Tagged Pointer 的 GEF 扩展 Jett • 8 hours ago

0   

Exploiting a “Simple” Vulnerability – In 35 Easy Steps or Less!
windows-internals.com • Tools

Windows 内核 EtwpNotifyGuid 任意地址加 1 漏洞的利用过程分析 Jett • 8 hours ago

0   

A Fresh Outlook on Mail Based Persistence
www.mdsec.co.uk

A Fresh Outlook on Mail Based Persistence Jett • 8 hours ago

0   

MMU Virtualization Via Intel EPT: Technical Details
revers.engineering

通过Intel EPT进行MMU虚拟化:技术细节探讨。 lanying37 • 19 hours ago

0   

TA416 APT Rebounds With New PlugX Malware Variant
Threatpost

研究人员发现TA416 APT使用由Golang编写的PlugX恶意软件加载程序,并对非洲外交组织进行的组织鱼叉式网络钓鱼攻击威胁。 lanying37 • 19 hours ago

1   

Awesome Cybersecurity Blue Team
github.com

蓝队最好的学习资源项目。 lanying37 • 20 hours ago

1   

物联网安全系列之探索IoT通信安全的研究之道
腾讯安全响应中心

物联网安全系列之探索IoT通信安全的研究之道 Jett • 1 day ago

0   

Making Objective C Calls From Python Standard Libraries (Red Team Edition) | by Cedric Owens | Red Teaming with a Blue Team Mentality | Nov, 2020 | Medium
medium.com

在 Python 中调用 Objective C 代码 Jett • 2 days ago

0   

ImageMagick - Shell injection via PDF password
insert-script.blogspot.com

ImageMagick 被发现 Shell 注入漏洞 Jett • 2 days ago

0   

Before the BSD Kernel starts: Part One on AMD64
www.moritz.systems • macOS iOS

BSD 内核启动初始化过程分析 Jett • 2 days ago

0   

[PDF] https://cyberweek.ae/materials/2020/D2T1%20-%20Jailbreaks%20Never%20Die%20-%20Exploiting%20iOS%2013.7.pdf
cyberweek.ae • iOS

CyberWeek 会议关于 iOS 的一个议题《Jailbreaks Never Die: Exploiting iOS 13.7》 Jett • 2 days ago

0   

Detecting Cobalt Strike Default Modules via Named Pipe Analysis
/var/log/messages

通过对命令管道分析,检测 Cobalt Strike Jett • 2 days ago

0   

DMA explained
Systems Research

DMA 底层的 PCI Bus Packet 数据包分析 Jett • 2 days ago

0   

Hackfest - Advanced Fuzzing Workshop
github.com • Fuzzing

Hackfest - Advanced Fuzzing Workshop 的资料 Jett • 2 days ago

0   

Dynamic Invocation in .NET to bypass hooks
blog.nviso.eu

利用 .NET Bypass Inline/IAT Hooks 检测 Jett • 2 days ago

0   

探索先进自动化漏洞挖掘技术中的不足
paper - Last paper

探索先进自动化漏洞挖掘技术中的不足 Jett • 2 days ago

0   

Tags

Tools Malware Windows Browser Android Vulnerability Web Attack iOS Linux Conference Pentest macOS Network IoT Wireless Defend Fuzzing Reverse Engineering CTF Virtualization Crypto Data Breach Programming Machine Learning Firmware Report Forensics PoC Mitigation SCADA Backdoor Side Channel Threat Intelligence Blockchain Hardware Exploit Supply Chain Bug Bounty Privacy Power Analysis
Loading