每日安全推送
订阅

近期历史最近 100 条记录

2021-09-26 疑似APT-C-56透明部落攻击预警 mp.weixin.qq.com
2021-09-24 emmutaler github.com
2021-09-24 Detecting and Hunting for the PetitPotam NTLM Relay Attack – NCC Group Research research.nccgroup.com
2021-09-24 Catching the big fish: Analyzing a large-scale phishing-as-a-service operation www.microsoft.com
2021-09-24 [PDF] https://www.nksc.lt/doc/en/analysis/2021-08-23_5G-CN-analysis_env3.pdf www.nksc.lt 0
2021-09-24 IAM Vulnerable - Assessing the AWS Assessment Tools labs.bishopfox.com
2021-09-24 Financially motivated actor breaks certificate parsing to avoid detection blog.google 0
2021-09-24 GitHub - Kleptocratic/DNS-Fender: A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using S... github.com
2021-09-24 Disclosure of three 0-day iOS vulnerabilities and critique of Apple Security Bounty program habr.com 0
2021-09-24 Using CodeQL to detect client-side vulnerabilities in web applications | Raz0r.name raz0r.name
2021-09-24 虚假的 RCE vs 真实的 RCE evilpan.com 0
2021-09-24 Monitoring Threat Actors Cobalt Strike C2 Infrastructure with Shodan michaelkoczwara.medium.com
2021-09-24 A guide to OWASP’s secure coding cybersecurity.att.com 0
2021-09-23 PoC-CVE-2021-30632 github.com
2021-09-23 Microsoft Exchange Autodiscover bugs leak 100K Windows credentials www.bleepingcomputer.com 0
2021-09-23 Resetting Expired Passwords Remotely www.n00py.io 0
2021-09-23 Kernel Vmalloc Use-After-Free in the ION Allocator labs.taszk.io 0
2021-09-23 [PDF] https://nesa.zju.edu.cn/download/pgn_pdf_V-SHUTTLE.pdf nesa.zju.edu.cn 0
2021-09-23 Distroless Builds Are Now SLSA 2 Google Online Security Blog 0
2021-09-23 Zero Day Initiative — CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug www.zerodayinitiative.com 0
2021-09-23 Car Hacking 101: Practical Guide to Exploiting CAN-Bus using Instrument Cluster Simulator — Part I: Setting Up medium.com
2021-09-23 Linux X86 Assembly – How To Test Custom Shellcode Using a C Payload Tester secureideas.com
2021-09-23 【技术推荐】Ysoserial Commons-Collections 利用链分析 paper - Last paper 0
2021-09-22 Apache Dubbo: All roads lead to RCE securitylab.github.com 0
2021-09-22 RCE in Citrix ShareFile Storage Zones Controller (CVE-2021-22941) – A Walk-Through codewhitesec.blogspot.com 0
2021-09-22 SSD Advisory – macOS Finder RCE - SSD Secure Disclosure ssd-disclosure.com
2021-09-22 Google to Auto-Reset Inactive Android App Permissions for Billions of Devices www.canadavpns.com
2021-09-22 Mama Always Told Me Not to Trust Strangers without Certificates blog.grimm-co.com 0
2021-09-22 CVE-2021-38112: AWS WorkSpaces Remote Code Execution rhinosecuritylabs.com 0
2021-09-22 Beginners Guide to 0day/CVE AppSec Research 0xboku.com 0
2021-09-22 Detection evasion in CLR and tips on how to detect such attacks Securelist
2021-09-22 Hello Lionel Richie intrusiontruth.wordpress.com
2021-09-22 About the security content of iOS 15 and iPadOS 15 - Apple 支持 (中国) support.apple.com 0
2021-09-19 DEF CON 29 Cloud Village - Cassandra Young - Exploiting the O365 Duo 2FA Misconfiguration www.youtube.com 0
2021-09-19 Graphql Exploitation - Part 1- Understanding Graphql & Enumeration of Graphql Schema payatu.com
2021-09-17 漏洞百出 Topics 20 github.com 0
2021-09-17 Pentest Notes: Google Cloud Edition infosecwriteups.com
2021-09-17 CVE-2021-3437 | HP OMEN Gaming Hub Privilege Escalation Bug Hits Millions of Gaming Devices www.sentinelone.com
2021-09-17 Fully Weaponized CVE-2021-40444 github.com
2021-09-17 What is Datree? github.com 0
2021-09-17 README.md github.com 0
2021-09-17 Objective-See's Blog objective-see.com 0
2021-09-17 Shellcode Detection Using Real-Time Kernel Monitoring www.countercraftsec.com 1
2021-09-17 evil mass storage - roapt v1 AT90USBKEY2 www.driverentry.com 1
2021-09-17 On Flask, Semgrep, and Secure Coding | by Michael Hidalgo | Sep, 2021 | Medium michaelhidalgo.medium.com 0
2021-09-16 突破防火墙 NAT 的内外网隔离,真黑客想访问谁就访问谁! paper - Last paper 0
2021-09-16 dll 劫持和应用 paper - Last paper 0
2021-09-16 感谢信!感谢百度搜索的推广让我被钓鱼中毒了一次 www.zhihu.com
2021-09-16 Silently Unmasking Virgin Media VPN Users in Seconds (CVE-2019-16651) - Fidus Information Security fidusinfosec.com 0
2021-09-16 Unauthenticated Remote Code Execution in Motorola Baby Monitors - Randy Westergren randywestergren.com 0
2021-09-16 PetitPotam – NTLM Relay to AD CS pentestlab.blog
2021-09-16 CVE-2021-40539 attackerkb.com 0
2021-09-16 [PDF] https://arxiv.org/pdf/2105.12266.pdf arxiv.org
2021-09-16 Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus www.trendmicro.com
2021-09-16 iOS14.8: Patch CVE-2021-1740 again silently jhftss.github.io
2021-09-16 ELFant in the Room – capa v3 Threat Research Blog 0
2021-09-16 Exploit Development: Leveraging Page Table Entries for Windows Kernel Exploitation connormcgarr.github.io 0
2021-09-15 About the Unsuccessful Quest for a Deserialization Gadget (or: How I found CVE-2021-21481) codewhitesec.blogspot.com 0
2021-09-15 [PDF] https://www.sstic.org/media/SSTIC2020/SSTIC-actes/pool_overflow_exploitation_since_windows_10_19h1/SSTIC2020-Article-pool_overflow_exploitation_... www.sstic.org
2021-09-15 Windows Debugger API — The End of Versioned Structures www.driverentry.com 0
2021-09-15 “Secret” Agent Exposes Azure Customers To Unauthorized Code Execution | Wiz Blog www.wiz.io 0
2021-09-15 Microsoft Patches Actively Exploited Windows Zero-Day Bug Threatpost
2021-09-15 The Recent iOS 0-Click, CVE-2021-30860, Sounds Familiar. An Unreleased Write-up: One Year Later blog.zecops.com 0
2021-09-15 More ProxyShell? Web Shells Lead to ZeroLogon and Application Impersonation Attacks Fortinet Threat Research Blog 0
2021-09-15 Fuzzing Closed-Source JavaScript Engines with Coverage Feedback Project Zero
2021-09-15 What’s New in Tenet v0.2 RET2 Systems Blog
2021-09-15 Analysis of CVE-2021-1758 (CoreText Out-Of-Bounds Read) starlabs.sg 0
2021-09-14 [复现] 8月30日 Cream 被攻击事件 paper - Last paper 0
2021-09-14 浅析 Hacking Team 新活动 paper - Last paper 0
2021-09-14 BinDiff二进制比较简介 mp.weixin.qq.com 1
2021-09-14 About the security content of iOS 14.8 and iPadOS 14.8 support.apple.com
2021-09-14 [PDF] https://nebelwelt.net/files/21CCS.pdf nebelwelt.net 0
2021-09-14 VaultFuzzer: A state-based approach for Linux kernel : netsec www.reddit.com 0
2021-09-14 darkr4y/geacon github.com
2021-09-14 Linh tinh về Oracle Business Intelligence [part 1] testbnull.medium.com 0
2021-09-14 FORCEDENTRY NSO Group iMessage Zero-Click Exploit Captured in the Wild citizenlab.ca 0
2021-09-14 Hacking CloudKit - How I accidentally deleted your Apple Shortcuts - Detectify Labs labs.detectify.com 0
2021-09-13 Reverse Engineering Resources pewpewthespells.com
2021-09-13 蚂蚁安全光年实验室 Usenix Security 2021 中稿论文解读 paper - Last paper 0
2021-09-13 Black Hat USA 2021 议题分享——莫比乌斯环:探索 Hyper-V 攻击面 paper - Last paper 0
2021-09-13 GitHub - boku7/azureOutlookC2: Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat ... github.com
2021-09-13 IAM Vulnerable - An AWS IAM Privilege Escalation Playground labs.bishopfox.com
2021-09-13 Cross-Account Container Takeover in Azure Container Instances unit42.paloaltonetworks.com 0
2021-09-13 Offensive WMI - Interacting with Windows Registry (Part 3) 0xinfection.github.io 0
2021-09-13 CVE-2021-40444 Analysis/Exploit xret2pwn.github.io 0
2021-09-13 Introduction docs.google.com
2021-09-13 Analysis of CVE-2021-26897 DNS Server RCE www.coresecurity.com 0
2021-09-13 Fuzzing ICS Protocols dreamlab.net
2021-09-13 Change home directory and bypass TCC aka CVE-2020-27937 wojciechregula.blog 0
2021-09-12 [Fuzzing with AFL] How to install AFL on Ubuntu www.youtube.com
2021-09-10 Good attacks make good detections make good attacks make.. thinkst Thoughts... 0
2021-09-10 attack_data github.com 0
2021-09-10 Hook Heaps and Live Free www.arashparsa.com 0
2021-09-10 ZDI-21-1053: Bypassing Windows Lock Screen halove23.blogspot.com
2021-09-10 Code execution as root via AT commands on the Quectel EG25-G modem nns.ee 0
2021-09-10 Thousands of Fortinet VPN Account Credentials Leaked Threatpost 0
2021-09-10 Introducing Android’s Private Compute Services Google Online Security Blog 0
2021-09-10 Tickling VMProtect with LLVM: Part 1 secret.club 0
2021-09-10 Analysis of a Parallels Desktop Stack Clash Vulnerability and Variant Hunting using Binary Ninja www.zerodayinitiative.com 0
2021-09-10 Introduction to OWASP Top 10 2021 owasp.org 0

匿名用户只展示最新 100 条榜单历史,更多历史数据请登录后查看,支持时光机按天筛选

Sponsors

会员优惠聚合-各类互联网平台会员月卡优惠聚合
天天免单福利聚合

猜你喜欢