13
3月

Tittle: 2019.3.14

0 作者:admin

The fourth horseman: CVE-2019-0797 vulnerability-The new zero-day in the Windows OS exploited in targeted attacks

GlitchPOS: New PoS malware for sale

‘DMSniff’ POS Malware Actively Leveraged to Target Small-, Medium-Sized Businesses

SimBad: A Rogue Adware Campaign On Google Play

DanaBot control panel revealed

Analysing ISFB – The First Loader

OrangeWorm group - Kwampirs dropper analysis update

CVE-2019-0604: Details of a Microsoft SharePoint RCE Vulnerability

A Saga of Code Executions on Zimbra

CVE-2019-5420 Possible Remote Code Execution Exploit in Rails Development Mode

pacman utility—package manager could allow malicious remote servers to execute arbitrary code as root(CVE-2019-9686)

Analysis and Reproduction of iOS/OSX Vulnerability: CVE-2019-728

FlexPaper <= 2.3.6 RCE

WordPress 5.1 CSRF to Remote Code Execution

SdoKeyCrypt.sys(冒险岛键盘保护) - Local Privilege Elevation Vulnerability(CVE-2019-9729)

Stealing encryption keys for bitlocker, for both TPM1.2 and TPM2.0 devices

Abusing dynamic loading of shellcode to bypass VirusTotal and how threat hunters can fight back

.NET高级代码审计(第三课)Fastjson反序列化漏洞

安卓APP测试之HOOK大法-Frida篇

安卓APP测试之HOOK大法-Xposed篇

安卓APP测试之双向证书认证

tools Exchange_proxy是由go语言开发的Exchange安全代理,可以将内网的Exchange服务器的https服务安全地发布出去

tools TrustMeAlready - Disable SSL verification and pinning on Android, system-wide

tools powershellveryless:Constrained Language Mode + AMSI bypass all in one


评论


当前没有评论,快来评论吧!





来说点什么吧