23
8月

Tittle: 2018.8.24

0 作者:admin

Operation AppleJeus: Lazarus hits cryptocurrency exchange with fake installer and macOS malware

Triout – Spyware Framework for Android with Extensive Surveillance Capabilities

An Android Package is no Longer a ZIP

Massive WordPress Redirect Campaign Targets Vulnerable tagDiv Themes and Ultimate Member Plugins

GlobeImposter勒索病毒攻击事件分析

DockerKiller:首个针对Docker的批量攻击与利用实例

CloudByte ElastiStor OS Unauthenticated Remote Code Execution

Adobe Flash: Out of Bounds Read in AVC Processing(CVE-2018-12827)

【Struts2-代码执行漏洞分析系列】S2-057

ImageMagick 漏洞凑热闹手札

对红芯浏览器的一次安全测试

Last Winner(类 Fomo3D)的最后赢家:智能合约超大规模黑客攻击手法曝光

Pwning Web Applications via Telerik Web UI

the use of HTTP Referer headers to execute DNS rebinding attacks on AWS-hosted analytics systems, leading to a compromise of the cloud environment.

EviHunter: Identifying Digital Evidence in the Permanent Storage of Android Devices via Static Analysis

24-core CPU:page tables, a vmmap bug, decoding CFG bitmaps, unfair locks, a WPA bug, and WMI(part one)

24-core CPU:page tables, a vmmap bug, decoding CFG bitmaps, unfair locks, a WPA bug, and WMI(part two)

iOS-Security-Guides:Collections of iOS security white paper

A huge list of tools for CTF / Bug Bounties.

tools Scrounger: An open source, modular and extensible iOS & Android mobile application penetration testing framework

tools St2-057 在线靶机环境及poc

tools Gopherus:This tool generates gopher link for exploiting SSRF and gaining RCE in various servers.

tools cryptagraph is a tool for linear and differential cryptanalysis of block ciphers

tools Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

tools LimeRAT | Simple, yet powerful remote administration tool for Windows

tools LimeCrypter:An obfuscation tool for .Net + Native files. Applying some evasion techniques to bypass anti-virus software and install a persistence in the machine.

tools GTFOBins is a curated list of Unix binaries that can be exploited by an attacker to bypass local security restrictions.


评论


当前没有评论,快来评论吧!





来说点什么吧