1
11月

Tittle: 2018.11.2

0 作者:admin

Perl-Based Shellbot Looks to Target Organizations via C&C

Trickbot Shows Off New Trick: Password Grabber Module

Korea's latest APT attack, Operation Mystery Baby Attention!

CVE-2018-5407: new side-channel vulnerability on SMT/Hyper-Threading architectures

CVE-2018-3971 Sophos HitmanPro.Alert vulnerability

Google Chrome WebAudio "blink::ExecutionContext()" Use-after-free Vulnerability (CVE-2018-17457)

The problem with snprintf: a vulnerability in Icecast (CVE-2018-18820)

php-fpm环境的一种后门实现

自动化反弹Shell防御技术

AmsiScanBuffer Bypass - Part 3

Abusing PowerShell Desired State Configuration for Lateral Movement

Cryptanalysis of OCB2 - Practical attacks against OCB2

以太坊合约审计 CheckList 之“以太坊智能合约编码隐患”影响分析报告

从机器学习在垂直领域的应用探索第三届阿里云安全算法挑战赛

tools CodeScraper is Slackbot that searches sites such as Github, Gitlab, Pastebin with pre-registered keywords and notifies you when it finds new ones.

tools Dragnet is a social engineering framework which leverages AI to conduct spear-phishing & vishing at scale.

tools SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime.

tools AggressorAssessor, a collection of Cobalt Strike Aggressor Scripts for a pen test or red team assessment

tools MSFRottenPotato built as a Reflective DLL. Work in progress. Gotta love Visual C++

tools jarjarbigs:Merge jar files to simplify remote debugging of closed source java applications

tools gshark:Scan for sensitive information in Github easily and effectively.


评论


当前没有评论,快来评论吧!





来说点什么吧