浅谈pyd文件逆向
跳跳糖 - 安全与分享社区

浅谈pyd文件逆向 lanying37 • 5 hours ago

0   

APT Hackers Targeting Industrial Control Systems with ShadowPad Backdoor
thehackernews.com • Attack

APT 黑客组织利用 ShadowPad 后门攻击工业控制系统 lanying37 • 6 hours ago

0   

Abusing Cloudflare Workers - Christophe Tafani-Dereeper
blog.christophetd.fr

MITM at the Edge: Abusing Cloudflare Workers Jett • 14 hours ago

0   

CVE-2022-30522 - Apache httpd Denial of Service (DoS) vulnerability
jfrog.com

Apache httpd “mod_sed” filter 拒绝服务漏洞分析(CVE-2022-30522) Jett • 14 hours ago

0   

code white | Blog: Bypassing .NET Serialization Binders
codewhitesec.blogspot.com

Bypassing .NET Serialization Binders,实现 RCE(CVE-2022-28684、CVE-2022-23277) Jett • 14 hours ago

1   

The Open Cloud Vulnerability & Security Issue Database
www.cloudvulndb.org

云安全相关漏洞(issue)数据库 Jett • 14 hours ago

0   

Unrar Path Traversal Vulnerability affects Zimbra Mail
blog.sonarsource.com

企业邮箱服务 Zimbra 被发现 rar 解压导致的路径穿越漏洞 Jett • 14 hours ago

0   

FabricScape: Escaping Service Fabric and Taking Over the Cluster
unit42.paloaltonetworks.com

Unit 42 研究员在微软 Azure Service Fabric 微服务发现 Linux 容器 root 提权漏洞 Jett • 15 hours ago

1   

Novel Exploit in Mitel VOIP Appliance | CrowdStrike
www.crowdstrike.com

Mitel VOIP 产品被发现 CVE-2022-29499 漏洞利用攻击 Jett • 15 hours ago

0   

De-anonymizing ransomware domains on the dark web
blog.talosintelligence.com

Talos 对如何检测勒索软件攻击者在公网 IP 上架设的暗网网站的研究 Jett • 15 hours ago

0   

DCSync 技术的攻击和检测
跳跳糖 - 安全与分享社区

DCSync 技术的攻击和检测 lanying37 • 1 day ago

1   

Spring Function Cloud DoS (CVE-2022-22979) and Unintended Function Invocation | Checkmarx.com
checkmarx.com

Spring Function Cloud DoS (CVE-2022-22979) and Unintended Function Invocation Jett • 1 day ago

0   

Analyzing CVE-2022–22980 to discover a real exploitable path in the source code review process with CodeQL | by Frentzen Amaral | Jun, 2022 | InfoSec Write-ups
infosecwriteups.com

用 CodeQL 挖掘 VMware Spring Data MongoDB CVE-2022-22980 漏洞的利用路径 Jett • 1 day ago

1   

Access Denied
Blog • Malware

Panchan - 近期 Akamai 发现的 P2P Botnet,以 SSH 蠕虫的方式渗透 Linux 服务器 Jett • 1 day ago

0   

GitHub - hardenedvault/vaultboot
github.com

VaultBoot - 下一代固件安全解决方案的开源实现 Jett • 1 day ago

0   

Revive: from spyware to android banking trojan | Cleafy Labs
www.cleafy.com • Malware Android

Revive Android 银行木马分析 Jett • 1 day ago

0   

Release v0.4.0
github.com

Rizin - 逆向框架 radare2 的 fork 版本,目前更新 0.4.0 版本,支持自动化特征识别、FLIRT 特征生成等特性 Jett • 1 day ago

1   

cypress-io/cypress
github.com • Tools

Cypress - 浏览器前端自动化测试工具 Jett • 1 day ago

0   

star-sg/NotQuite0day
github.com

因报告的漏洞被拒绝修复,Starlabs 公开了几个 PoC Jett • 1 day ago

0   

[PDF] https://www.usenix.org/system/files/sec21-wang-yan.pdf
www.usenix.org

MAZE - 基于 S2E 实现自动化地 Heap Feng Shui 布局 Jett • 1 day ago

0   

Tags

Tools Malware Windows Vulnerability Browser Web Android Attack iOS Linux Pentest Conference macOS Network IoT Wireless Fuzzing Reverse Engineering Defend Virtualization CTF Crypto Data Breach Programming Machine Learning Firmware Report Forensics PoC Mitigation SCADA Backdoor Blockchain Side Channel Threat Intelligence Hardware Exploit Supply Chain Bug Bounty Privacy Power Analysis
Loading