9
1月

Tittle: 2018.1.11

0 作者:admin

New Mobile Malware Uses Layered Obfuscation and Targets Russian Banks

First Kotlin-Developed Malicious App Signs Users Up for Premium SMS Services

2018年微软修复的首个Office 0day漏洞(CVE-2018-0802)分析

Android: Hardware Service Manager Arbitrary Service Replacement due to getpidcon(CVE-2017-13209)

Windows kernel exploitation: Complete walkthrough of how CVE-2018-5189 found in JUNGO WINDRIVER 12.5.1

VMware Horizon (V4H/V4PA) desktop agent privilege escalation vulnerability (CVE-2017-4946)

jackson rce via spel(CVE-2017-17485)

CVE-2018-5318:D-Link soap.cgi 缓冲区溢出

织梦前台任意用户密码修改

Apache Batik XXE(CVE-2017-5662)

AppStore Preferences lock is a lie

Lack of authentication leaks customer details in SinVR - an adult VR application

Attack of the Week: Group Messaging in WhatsApp and Signal

Web Application Firewall (WAF) Evasion Techniques 2

Perfect SAP Penetration testing. Part 3: The Scope of Vulnerability Search

article on injecting shared objects in FreeBSD

On Low-Cost Privacy Exposure Attacks in LTE Mobile Communication

Understanding Bluetooth Security

Microsoft Office DDE Detection

A Death Match of Domain Generation Algorithms

Fishing for Miners – Cryptojacking Honeypots in Kubernetes

针对国内一大厂的后渗透 – 持续

渗透中利用postgresql getshell

挖洞技巧:支付漏洞之总结

tools spectre-meltdown-checker:Spectre & Meltdown vulnerability/mitigation checker for Linux

tools ReflectiveDnsExfiltrator allows for transfering (exfiltrate) a file over a DNS resolution covert channel.

tools Wu/Manber是非常高效的字符串/文本搜索/查询/匹配算法

tools SELKS is a free and open source Debian (with LXDE X-window manager) based IDS/IPS platform

tools listkmods.py:ida/vmware kernel debugging helper


评论


当前没有评论,快来评论吧!





来说点什么吧