2
6月

Tittle: 2017.6.3

0 作者:admin

incorrect patch for CVE-2017-1000367 leads to another possible sudo privesc

Untrusted Java serialization in Soffid IAM console allows remote attackers to achieve remote code execution

New version of MWI using CVE-2017-0199 to load an HTA for payload delivery/execution and reports about the system

Threat actors leverage EternalBlue exploit to deliver non-WannaCry payloads

How we found a vulnerability in IBM's backup product - the workaround and a bit about the Responsible Disclosure process

Why Your Encrypted Database Is Not Secure

MISP Galaxy Cluster including Exploit-Kit, Microsoft Activity Group actor, Preventive Measure, Ransomware, TDS...

Deploying Microsoft Advanced Threat Analytics

Arbitrary File Reading in Next.js < 2.4.1

phone number exposure for riders/drivers given email/uuid in Uber

WAF Bypass at PHDays VII: Results and Answers

A book-in-progress about the linux kernel and its insides.

tools LazyDroid:bash script to facilitate some aspects of an Android application assessment

tools PowerLessShell : Rely on MSBuild.exe to remotely execute PowerShell scripts/cmds without spawing powershell.exe

tools httpstat:curl statistics made simple

tools MultiScanner is a file analysis framework that assists the user in evaluating a set of files by automatically running a suite of tools for the user and aggregating the output.

tools Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

tools praetorian在github分享了一堆他们的工具


评论


当前没有评论,快来评论吧!





来说点什么吧