14
11月

Tittle: 2017.11.15

0 作者:admin

HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL

Muddying the Water: Targeted Attacks in the Middle East

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode

Emotet Goes More Evasive. Here's a DIY Vaccine to Prevent It

Potential Malware Campaign Targeting JustSystems Ichitaro Users

New Android Malware Found in 144 GooglePlay Apps

商业软件暗藏后门病毒 疯狂扒取阿里、微信上的注册企业信息

Root OnePlus5 without unlocking the bootloader

Skeleton in the closet. MS Office vulnerability you didn’t know about(CVE 2017-11882)

How to exploit BlueBorne RCE on Nexus5 Android 6.0.1 (CVE-2017-0781)

OpenSSH ‘sftp-server’ Remote Security Vulnerability

Foosun DotNetCMS2.0登录绕过漏洞

Xplico Unauthenticated Remote Code Execution CVE-2017-16666

SQL Injection in bbPress

Chrome 61 UXSS exploit (CVE-2017-5124&俄语)

Windows Defender Exploit Guard ASR Rules for Office

Tricking blind Java deserialization for a treat

Firefox - settings cookie via DOMParser

objection – mobile runtime exploration

Exploiting Remote machine with Pastejacking

SpookFlare: Stay In Shadows(Bypass client-side and network-side countermeasures like a b0ss!)

kernel fuzzing in userspace

Character Assassination: Fun and Games with Unicode

PSAmsi - Minimizing Obfuscation to Maximize Stealth

Inside the fake Facebook profile industry

APT Trends report Q3 2017

WordPress plugin Formidable Forms SQL injection, stored XSS, RCE via iThemes Sync, etc

PHP代码审计分段讲解

tools ExternalC2:A library for integrating communication channels with the Cobalt Strike External C2 server

tools tcl_shellcode:A template project for creating a shellcode for the Cisco IOS in the C language

tools Scumblr is a web application that allows performing periodic syncs of data sources (such as Github repositories and URLs) and performing analysis (such as static analysis, dynamic checks, and metadata collection) on the identified results.

tools SpookFlare:Meterpreter loader generator with multiple features for bypassing client-side and network-side countermeasures.

tools plaso is a Python-based backend engine for the tool log2timeline


评论


当前没有评论,快来评论吧!





来说点什么吧