11
12月

Tittle: 2017.12.13

0 作者:admin

The ROBOT Attack:ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server.

BLOCKBUSTED: Lazarus, Blockbuster, and North Korea

OSX.Pirrit Mac Adware Part III: The DaVinci Code

Mac 下的软件绕过激活之iMazing

Decrypt php VoiceStar encryption extension

Hunting in the Dark - Blind XXE

XXE - Things Are Getting Out of Band

Attacking Big Business by using trusted online services as a delivery and command and control (C2) channels in simulated attack scenarios.

attacking encrypted systems with qemu and volatility

DEEP INSERT – Card Skimmer Research

BlueHat v17 || Dangerous Contents - Securing .Net Deserialization

blackhat eu 2017-Lost in Transaction: Process Doppelgänging

Process Refund:An attempt to implement Process Doppelgänging

Hunting for iOS Kernel Symbols

blackhat eu 2017 ppt打包下载

CTF-All-In-One:一本 CTF 领域的大杂烩指南

Features of Safari in client-side attacks(俄语)

Don't Trust All SSL/TLS Certificates, a nice writeup about certificates as unexpected XSS vector

Metasploitable 3 CTF - A Walk-through

Metasploitable3 CTF Write-up

tools Jailbreak.me 4.0 for iOS 9.1 - iOS 9.3.4 (32bit only)

tools get uid: 0 - iOS 11

tools Detect anti-debug techniques by injecting a DLL that hooks suspicious functions (runtime analysis)

tools xsec-traffic为一款轻量级的恶意流量分析程序,包括传感器sensor和服务端server 2个组件

tools Anubis, a subdomain enumerator and information gathering tool.

tools ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

tools Program synthesis based deobfuscation framework for the USENIX 2017 paper "Syntia: Synthesizing the Semantics of Obfuscated Code"

tools ProcDump is a Linux reimagining of the classic ProcDump tool from the Sysinternals suite of tools for Windows.


评论


当前没有评论,快来评论吧!





来说点什么吧