28
9月
黑雀攻击:揭秘TF僵尸物联网黑客背后的黑客
“美人蝎”挖矿木马再度来袭,利用Windows系统组件启动恶意脚本
Google Chrome "gpu::gles2::StrictIdHandler::FreeIds()" Heap-based Buffer Overflow Vulnerability (CVE-2018-6154)
CVE-2018-0691 Certificate verification deficiency in +Message App
Bitcoin Core Bug CVE-2018–17144: An Analysis
Credential Leak Flaws in Windows PureVPN Client
Android进程保护研究分析报告
Off-Path TCP Exploit: How Wireless Routers Can Jeopardize Your Secrets
Three New DDE Obfuscation Methods
An Empirical Analysis of Single Sign on Account Hijacking and Session Management on the Web
Fuzzing WSL (Windows Linux Sybsystem) with syzkaller
New phrack paper - Twenty years of Escaping the Java Sandbox
Don't Trust the NIC: Attacking Windows NDIS Drivers
tools FuzzNDIS:A Fuzzer for Windows NDIS Drivers OID Handlers
网页挂马常见漏洞分析与检测
BloodHound: Attack Graphs Practically Applied to Active Directory
Vehicle Hacking Setup by Setup Guide
Introduction to the ELF Format Part II : Understanding Program Headers
tools injdrv is a proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC.
tools VMHunt: A Verifiable Approach to Partially-Virtualized Binary Code Simplification
tools SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.