12
4月

Tittle: 2018.4.13

0 作者:admin

EITest: Sinkholing the oldest infection chain

Another APT heavily targeting Middle Eastern targets

Sophisticated Mutli-stage Malware (hosted on pussyhunters.ru)

New 'Early Bird' Code Injection Technique Discovered

A high level look at Trickbot banking Trojan

Drupal命令执行漏洞Drupalgeddon 2分析

tools Drupalgeddon 2 poc

Spring Data Commons Remote Code Execution 分析-【CVE-2018-1273】

tools POC for CVE-2018-1273

A Cryptographic Flaw in Zerocoin (and Two Critical Coding Issues)

Directory Traversal with Spring MVC on Windows(cve-2018-1271)

Multiple Vulnerabilities in NASA CFITSIO library

type confusion vuln in Microsoft Edge analysis(CVE-2016-7189)

inverting your assumptions: a guide to jit comparisons

Java反序列 Jdk7u21 Payload 学习笔记

一个CTF GAME引发的php内核分析

HTTPS Payload and C2 Redirectors

Putting data in Alternate data streams and how to execute it

Putting data in Alternate data streams and how to execute it – part 2

A longish historical paper on FindSck shellcode-Stealing the Socket for Policy and Profit

#HITB2018AMS#The Life And Death of Kernel Object Abuse

Discovering Smart Contract Vulnerabilities with GOATCasino

#HITB2018AMS#Smashing Smart Contracts for Fun and Real Profit

WinDbg: using pykd to dump private symbols

Fun with FRIDA - Dynamic Binary Instrumentation on Android

awesome-firmware-security:Awesome Firmware Security & Other Helpful Documents

hitbsecconf2018ams ppt

APT Trends report Q1 2018

tools RottenPotatoNG:New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.

tools poc of CredSSP Remote Code Execution Vulnerability(CVE-2018-0886)

tools analyzePF is a command line tool for parsing information from Prefetch files taken from systems running Windows.


评论


当前没有评论,快来评论吧!





来说点什么吧