21
12月

Tittle: 2017.12.25

0 作者:admin

Mac Malware of 2017-a comprehensive analysis of the new mac malware of '17

Satori僵尸网络事件分析:华为路由器0day漏洞(CVE-2017-17215)曝光

Jailbreak for 32-bit 10.x devices.(All 32-bit devices supported.)

Google Chrome "CFFL_InteractiveFormFiller::OnBeforeKeyStroke" Use-after-free Vulnerability (CVE-2017-5127)

Google Chrome "CPWL_Edit::OnKillFocus()" Use-after-free Vulnerability (CVE-2017-5126)

CVE-2017-7344 Fortinet FortiClient Windows privilege escalation at logon

Vitek RCE and Information Disclosure (and possible other OEM)

Ubiquiti UniFi Video 3.7.3 (Windows) Local Privilege Escalation

TimThumb version 2.8.13 XSS / Path Disclosure vulnerability

Weblogic XMLDecoder RCE分析

由CVE-2017-17562引发的一些探索

Apache Commons Collections反序列化漏洞学习

30 Unusual x86 ASM Instructions

Stack Based Buffer Overflows on x86 (Windows) – Part II

Not Even Coppersmith's Attack(512-bit ROCA vulnerable RSA keys)

Acoustic Denial of Service Attacks on HDDs

NIST Special Publication 800-187-Guide to LTE Security

Psychology of Intelligence Analysis(CIA)

codeblue 2017 slides

Yahoo! RCE via Spring Engine SSTI

tools exploit是一个自动化渗透测试框架

tools 230-OOB:An Out-of-Band XXE server for retrieving file contents over FTP.

tools SSRF Proxy is a multi-threaded HTTP proxy server designed to tunnel client HTTP traffic through HTTP servers vulnerable to Server-Side Request Forgery (SSRF).

tools nexmon_debugger:Debugger with hardware breakpoints and memory watchpoints for BCM4339 Wi-Fi chips

tools idapython6to7:a script to translate between the old idapython 6.x API and the new IDA 7.0 one

tools fastboot3DS: A custom android-like bootloader for the Nintendo 3DS

tools PassGAN:A Deep Learning Approach for Password Guessing

tools Private API manager - a project providing usefull classes for reverse engineering iOS Private APIs on-device


评论


当前没有评论,快来评论吧!





来说点什么吧