28
9月

Tittle: 2017.9.29

0 作者:admin

Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability

Mac OS X 10.12 Quarantine Bypass

Mac OS X存在Javascript沙箱绕过漏洞,可造成任意文件读取!(含PoC)

Banking Trojan Attempts To Steal Brazillion$

Threat Actors Target Government of Belarus Using CMSTAR Trojan

蹭中印热点,伪装成优酷360,“白象”攻击仍持续

Money-making machine: Monero-mining malware

CVE-2017-14620 SmarterStats V11.3.6347 will Render HTML Tags from the Referer Field of HTTP Logfiles

Over The Air - Vol. 2, Pt. 1: Exploiting The Wi-Fi Stack on Apple Devices

BlueBorne 蓝牙漏洞深入分析与PoC

ILLUSION GAP – ANTIVIRUS BYPASS PART 1

Your Exploit is Mine: Automatic Shellcode Transplant for Remote Exploits

Borrowing Microsoft Code Signing Certificates

the State of Kernel-Mode RCE Defense

Linux Kernel Self Protection Project

用深度学习检测WAF恶意请求

popunder payload 1

popunder payload 2

POC of CVE-2017-7821: WebExtensions can download and open non-executable files without user interaction

tools IDA Pro 7.0 + HexRays 2 (ARM64/ARM/x64/x86) (Windows, Mac)下载地址汇总

tools GHRecommender:根据你的GitHub加星项目自动推荐开源项目

tools Useful_Websites_For_Pentester :Collection of the websites that can be used by pentesters

tools Shellcode Via AppDomainManager

tools dbeaver:Free multi-platform database tool for developers, SQL programmers, database administrators and analysts.

tools ILSpy is the open-source .NET assembly browser and decompiler.

tools sublist3r rewritten, refactored, active, and added sub-takeover checks

tools SecLists:It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.


评论


当前没有评论,快来评论吧!





来说点什么吧