14
3月

Tittle: 2018.3.15

0 作者:admin

Tropic Trooper (also known as KeyBoy) levels its campaigns against Taiwanese, Philippine, and Hong Kong targets, focusing on their government, healthcare, transportation, and high-tech industries.

Hermes ransomware distributed to South Koreans via recent Flash zero-day

(CVE-2018-5551, CVE-2018-5552): DocuTrac Office Therapy Installer Hard-Coded Credentials and Cryptographic Salt

AppWeb Authentication Bypass (Digest, Basic and Forms)

Arbitrary Shortcode Execution & Local File Inclusion in WOOF (50,000+WordPress plugins)

Information Leakage Through Child Tab - Mozilla

渗透技巧——获得Windows系统的远程桌面连接历史记录

A Deep Dive into Database Attacks(Part III): Why Scarlett Johansson’s Picture Got My Postgre Database to Start Mining Monero

FineCMS的GetShell姿势

CTF线下赛writeup&tinyblog代码审计

KPTI补丁分析

Reveal Facebook Employees' Identity Behind“Did You Know”Questions

GraphQL Abuse

tools PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM

tools AndHook is a lightweight hook framework for android. It is primarily written in C++ and easy to use.

tools Uitkyk is a custom Android Frida libary which provides an API to analyze Android applications for malicious activity.

tools SMBCrunch:3 tools that work together to simplify reconaissance of Windows File Shares

tools msf-autopwn:Autoexploitation of some of the most common vulnerabilities in wild

tools TPM Genie is designed to aid in vulnerability research of Trusted Platform Modules.


评论


当前没有评论,快来评论吧!





来说点什么吧