9
10月

Tittle: 2017.10.10

0 作者:admin

QNAP HelpDesk SQL Injection

海洋CMS(SEACMS)0day漏洞

OilRig Group Steps Up Attacks with New Delivery Documents and New Injector Trojan

Strudels Attack - Update information (2017, October)

“锁大师”暗刷流量劫持主页,已影响百万用户

Browser attack points still abused by banking trojans

Coinhive攻防解说(日语)

Reverse engineering a Gameboy ROM with radare2

MetaTwin – Borrowing Microsoft Metadata and Digital Signatures to “Hide” Binaries

Google Chrome pdfium stack-based buffer overflow vulnerability with PoC (CVE-2017-5095)

Android Reverse Engineering tools-Not the Usual Suspects

How to try to predict the output of Micali-Schnorr Generator (MS-DRBG) knowing the factorization

SecWiki周刊(2017/10/02-2017/10/08)

HTML中,闭合优先的神奇标签

Discuz!X 前台任意文件删除漏洞深入解析

另类WebShell监测机制--基于auditd

tools #gayhub获取敏感信息系列#GithubCloner:A script that clones Github repositories of users and organizations.

tools #gayhub获取敏感信息系列#GitMiner:Tool for advanced mining for content on Github

tools #gayhub获取敏感信息系列#github-dorks:Collection of github dorks and helper tool to automate the process of checking dorks

tools #gayhub获取敏感信息系列#Hawkeye:GitHub 泄露监控系统

tools #gayhub获取敏感信息系列#gitem:A Github organization reconnaissance tool.

tools #gayhub获取敏感信息系列#GitPrey是根据企业关键词进行项目检索以及相应敏感文件和敏感文件内容扫描的工具

tools #gayhub获取敏感信息系列#Bandit is a tool designed to find common security issues in Python code.

tools #gayhub获取敏感信息系列#gitrob:Reconnaissance tool for GitHub organizations

tools #gayhub获取敏感信息系列#truffleHog:Searches through git repositories for high entropy strings, digging deep into commit history

tools #gayhub获取敏感信息系列#git-all-secrets:A tool to capture all the git secrets by leveraging multiple open source git searching tools

tools Cameradar: a tool to attack CCTV cameras

tools FOCA扫描器开源

tools Mythril is a reverse engineering and bug hunting framework for the Ethereum blockchain.

tools (SQLiv):massive SQL injection vulnerability scanner

tools vdexExtractor:Tool to extract Android DEX bytecode from VDEX files

tools PEtoJSON:serialize pe to json with metadata informations

tools AthenaX is a streaming analytics platform that enables users to run production-quality, large scale streaming analytics using Structured Query Language (SQL).

tools Nzyme collects 802.11 management frames directly from the air and sends them to a Graylog (Open Source log management) setup for WiFi IDS, monitoring, and incident response.


评论


当前没有评论,快来评论吧!





来说点什么吧