11
5月

Tittle: 2018.5.12

0 作者:admin

New report: Malware attacks Chilean banks and bypasses SmartScreen, by exploiting DLL Hijacking within popular software

Bypassing Mitigations by Attacking JIT Server in Microsoft Edge

How to exploit the recursive stack overflow bug in the iOS 7 bootchain

Microsoft Word Document Upload to Stored XSS: A Case Study

RCE with spring-security-oauth2 分析-【CVE-2018-1260】

BobLobBlob - Hiding data in removed GitHub commits

Throwhammer: Rowhammer Attacks over the Network and Defenses (Rowhammering with 10G and RDMA)

SMB hash hijacking & user tracking in MS Outlook

Evolution of 3GPP over-the-air security

Exploiting Row-Level Temporal Locality in DRAM to Reduce the Memory Access Latency

php 一句话木马检测绕过研究

Characterizing, Exploiting, and Mitigating Vulnerabilities in MLC NAND Flash Memory Programming

When Disappearing Messages Don't Disappear-the 'dark' side of (macOS) notifications

SysTaint uses PANDA and taint analysis to understand malware's network communications.

Censys.io Guide: Discover SCADA and Phishing Sites

The Human FACTOR REPORT 2018-People-centered threats define the landscape

改机工具在黑灰产中的应用

【知识库】DDCTF 2018 writeup(一) WEB篇

How I used a simple Google query to mine passwords from dozens of public Trello boards

tools Implements the POP/MOV SS (CVE-2018-8897) vulnerability by bugchecking the machine (local DoS).

tools iPhone BlackDot crash bug PoC (iOS 11/10)

tools Win_ZIP_password:Python script to hook ZIP files passwords in Windows 10

tools auto_re:IDA PRO auto-renaming plugin with tagging support

tools retire-js:Burp/ZAP extension that integrate Retire.js repository to find vulnerable Javascript libraries.

tools rsink-logger:Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.

tools multiverse:A static binary rewriter that does not use heuristics


评论


当前没有评论,快来评论吧!





来说点什么吧