8
1月

Tittle: 2018.1.10

0 作者:admin

ESET:Diplomats in Eastern Europe bitten by a Turla mosquito

黄金鼠组织(APT-C-27)叙利亚地区的定向攻击活动

近期大量光猫感染新型IOT蠕虫威胁

RIG exploit kit campaign gets deep into crypto craze

CPUs: information leak using speculative execution(公布了一堆POC)

Multiple Vulnerabilities in the CPP and Parity Ethereum Client

Parity Browser <=1.6.8 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information by requesting other websites via the Parity web proxy engine(CVE-2017-18016)

关于Android平台WebView控件存在跨域访问高危漏洞的安全公告

Webview跨源攻击老文-1

Webview跨源攻击老文-2

Many Formulas, One Calc – Exploiting a New Office Equation Vulnerability

Exploiting cheap labor! - How to Exploit a D-Link 815N

Web Application Firewall (WAF) Evasion Techniques

Four Ways to Bypass Android SSL Verification and Certificate Pinning

一些CTF中pwn小技巧,实际写exp中也能用到

#poc2017#Exposing Vulnerabilities in Deep Learning Frameworks

VulDeePecker: A Deep Learning-Based System for Vulnerability Detection

各种cheatsheet(vim,Bash,Go......)

Command and Control Checklist

iOS-Swift-Demos 是一份精心收集并分类整理的 Swift 开发学习资料,包括 Apple 官方提供的示例代码和文档,以及 GitHub上的项目和国内外开发者的技术博客

安全客2017季刊—第4期

POC2017 ppt

write-ups for the white_russian and miner challenges of 34c3ctf

tools nmap使用的nse脚本列表

tools Spectre attack against SGX enclave

tools meltdown:This repository contains several applications, demonstrating the Meltdown bug.


评论


当前没有评论,快来评论吧!





来说点什么吧