3
8月

Tittle: 2018.8.6

0 作者:admin

Analyzing DarkHydrus's Powershell Malware

Goblin Panda: they target Russian Telecoms Firms with Sisfader RAT(CVE-2017–11882)

Malware sent in spear phishing campaign to Pakistani targets uses 2015 EPS exploit to drop Netwire RAT

GOLDFIN: A Persistent Campaign Targeting CIS Countries with SOCKSBOT (w/ some interesting overlaps with FIN7)

Diving into the Latest "Ramnit" Banker Malware via "sLoad" PowerShell

Kovter click fraud malware analysis

针对钢铁行业的定向攻击分析报告

Google Chrome FileReader "FileReaderLoader::OnCalculatedSize()" Use-after-free Vulnerability (CVE-2018-6123)

CS:GO RCE 0-day - Real World CTF Qualifiers 2018

Creating a key generator to reset a Hikvision IP camera's admin password

半夜钱款莫名被转走!睡觉手机到底该不该关机

Padding Oracle attack against Telegram Passport

某开发工具沙箱绕过导致RCE

Capturing NetNTLM Hashes with Office DOT XML Documents

hashcat:New attack on WPA/WPA2 using PMKID

The default OpenSSH key encryption is worse than plaintext

Backdooring PE-File (with ASLR)

Proxmark 3 Cheat Sheet and RFID Thief Instructions

Ghost Tunnel复现

风云再起,签名冒用引发信任危机

The Art of Detecting Kerberoast Attacks

VBS and VSM Internals

Chaff Bugs: Deterring Attackers by Making Software Buggier

Google Scholar Metrics 2018

A collection of awesome lists, manuals, blogs, hacks, one-liners and tools for Awesome Ninja Admins

Coinbase AngularJS DOM XSS via Kiteworks

Content spoofing and potential Cross-Site Scripting vulnerability on www.hackerone.com

tools graftcp 可以把任何指定程序(应用程序、脚本、shell 等)的 TCP 连接重定向到 SOCKS5 代理

tools POC of Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) - Local Privilege Escalation(CVE-2015-4077)

tools UBoat:HTTP Botnet Project

tools Remote-Desktop-Caching-:This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files.

tools PowerShell Injection Hunter: Security Auditing for PowerShell Scripts

tools VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor

tools HeapHopper is a bounded model checking framework for Heap-implementations

tools HugeGraph:百度安全大规模图数据库


评论


当前没有评论,快来评论吧!





来说点什么吧