21
4月

Tittle: 2017.4.22

0 作者:admin

Oracle VirtualBox Guest Additions (Shared Folders) double-free from unprivileged Windows user-mode guest code

Abusing corporate webmail for C&C and exfiltration

CVE-2017-7892

the different ways to abuse native Microsoft Office functionality to get persistence

Lazarus_Under_The_Hood

Magnitude EK delivers Cerber

Elusive Moker Trojan is back

ShadowBrokers-PASSFREELY: Oracle & SWIFT at risk

A DIG AT RIG EXPLOIT KIT (EITEST CAMPAIGN)

Monitoring SSH Bruteforce Attempts Using Splunk

Linksys Smart Wi-Fi Vulnerabilities

Expand Your Horizon Red Team – Modern SaaS C2

Recursive DNS Server Fingerprint

SKYPE internal browser exposure and exploitation aka “SPYKE”

A series of findings that has been discovered within various Symantec web services.

Exploration of HTTP security and other non-typical headers

Everything you need to know about HTTP security headers

How To Secure Your Web App With HTTP Headers

Hardening your HTTP response headers

What Happens When You Send a Zero-Day to a Bank?

How to fuzz a Rust program

tools pyt:Static analysis of Python web applications based on theoretical foundations (Control flow graphs, fixed point, dataflow analysis)

tools gitrob:a command line tool which can help organizations and security professionals find sensitive information lingering in publicly available files on GitHub.

fuzz工具 tlsfuzzer:TLS test suite and fuzzer

tools Checklist of security precautions for Ruby on Rails applications.

tools Gsm-Packets-Analysis-Framework:a python based gsm packets real time analysis framework.


评论


当前没有评论,快来评论吧!





来说点什么吧