CVE-2022-30190 (Follina) explained
Follina is a Microsoft Office vulnerability where the document uses the Word remote template feature to retrieve an HTML file from a remote web server, which in turn uses the ms-msdt MSProto
Aggregator
How Akamai Protects Customers from HTTP/2 Rapid Reset DDoS Attacks
1 year ago
Dennis Birchard & Sandeep Rath
Apache Dubbo框架风险解读
1 year ago
Dubbo介绍Dubbo定位Dubbo一开始把自己定位为一个RPC框架,专注于服务之间的调用。
安卓逆向初体验
1 year ago
一次简单的安卓内购破解
善于自我欺骗的动物
1 year ago
现在人们可能很难想象,当年以色列总理拉宾遇刺身亡,巴勒斯坦解放组织领导人阿拉法特曾冒险前往以色列,去拉宾遗孀家里吊唁。
10月安全招聘-中国电信&观安信息
1 year ago
中国电信招聘攻防专家&工具研发,观安信息招聘产品&安全研发&Java后端,等你来~
某路由器RCE漏洞分析
1 year ago
COOPER:用协同变异测试脚本语言的绑定码|技术进展
1 year ago
作者提出了COOPER,使用统计方法关联文件输入和脚本进行协同变异。
Friday October 13 2023 Security Releases
1 year ago
处理公告丨2023年8月腾讯外部安全报告处理公告
1 year ago
2023年8月,共81位安全专家通过安全问题反馈平台向腾讯报告安全问题,感谢。
通达OA <12.4 反序列化漏洞分析
1 year ago
通达OA < 12.4 反序列化漏洞分析
转转喊你挖漏洞了!
1 year ago
ARM与RISC-V开发板/设备编译内核开eBPF选项,最快方法这样干就行!
1 year ago
ARM与RISC-V开发板/设备编译内核开eBPF选项,最快方法这样干就行!
知识星球2023年10月PHP函数小挑战
1 year ago
前几天在『代码审计』知识星球里发了一个小挑战:https://t.zsxq.com/13bFX1N8F
<?php $password = trim($_REQUEST['password'] ?? ''); $name = trim($_REQUEST['name'] ?? 'viewsource'); function viewsource() {show_source(__FILE__...phithon
Fake Account Creation Bots – Part 2
1 year ago
Part two of a series investigating how automation is used to create fake accounts for fraud, disinformation, scams, and account takeover.
Akamai?s Perspective on October?s Patch Tuesday 2023
1 year ago
Akamai Security Intelligence Group
Episode 008 - Yorkvik Jacqmin
1 year ago
In the ever-evolving world of cybersecurity, staying one step ahead of malicious actors is critical. What used to be an effective security strategy five years ago may now leave you vulnerable to emerging threats. To safeguard sensitive data and assets, continuous innovation and adaptability are essential.
In this month’s Blue Team Diaries episode, host Peter Manev engages in a thought-provoking discussion with guest Yorkvik Jacqmin, a senior SOC analyst at the European Commission.
Yorkvik shares some captivating stories from the cybersecurity frontlines and explains the development of a new rule detection framework, how it differs from SIGMA, and what is the impact it has on the threat detection process.
注意:发现针对医疗实验室的APT攻击
1 year ago
发现针对医疗实验室的APT攻击
【漏洞预警】libcue内存损坏漏洞威胁通告
1 year ago
1. 通告信息近日,安识科技A-Team团队监测到libcue 库中存在内存损坏漏洞(CVE-2023-43
基于神经机器翻译的程序自动修复
1 year ago
基于神经机器翻译的程序自动修复