4
3月

Tittle: 2019.3.5

0 作者:admin

New Python-based payload MechaFlounder used by Chafer

A New InfoStealer Campaign Targets APAC Windows Servers

Aurora(欧若拉)勒索病毒来袭

ProtonMiner挖矿蠕虫扩大攻击面加速传播

Remote Code Execution  in CA Privileged Access Manager(CVE-2018–9022)

SHAREit Multiple Vulnerabilities Enable Unrestricted Access to Adjacent Devices’ Files

Path traversal leading to RCE in Bluemind 3.5 and 4.0

Host header poisoning in IBM Websphere eCommerce (CVE-2017–1398). Inject password reset emails with malicious links.

WordPress WooCommerce XSS Vulnerability – Hijacking a Customer Account with a Crafted Image

『从补丁DIFF到EXP』:CVE-2019-0623漏洞分析与利用

对iOS某音乐App的逆向

jenkins 2.101 XStream rce 挖掘思路

Hacking a BLE smartlock using bettercap

Exploiting Spring Boot Actuators

Bypassing SMM(System Management Mode)-EP

The worst of both worlds: Combining NTLM Relaying and Kerberos delegation

潜伏+亮剑-大型内网渗透的实战

Different methods to run a command line via Excel file in order to spawn a Meterpreter reverse shell.

Detecting Malicious Behavior by Unmasking WebSockets

Explaining Apple's Page Protection Layer in A12 CPUs

Introduction to File Format Fuzzing & Exploitation

Kerberos协议探索系列之扫描与爆破篇

Mobile Systems and Smartphone Security (aka MOBISEC) course

Is MQTT secure? (A report)

APT40: Examining a China-Nexus Espionage Actor

2018年中国手机安全状况报告

GitLab:Exfiltrate and mutate repository and project data through injected templated service($11,000)


评论


当前没有评论,快来评论吧!





来说点什么吧