Aggregator

从理论到实践，从系统调用到自定义堆栈

基于飞书云文档实现C2的流量转发(demo)

文章介绍了提权中的shell类型（反向shell和绑定shell）、相关工具（netcat、socat、msfvenom、Metasploit）及其使用方法，并详细讲解了如何通过Python、rlwrap等技术稳定shell环境。此外，还涉及WebShell的使用及在Linux和Windows系统中进行提权的实践步骤。

对aflgo中利用LLVM的pass进行运行时操作以及距离插桩的代码进行分析

币安与新加坡海湾银行合作推出美元直购加密货币功能，支持巴林账户用户快速合规购买加密货币。

刚睡醒，就看到群里都在转发一个洞，而且官方还很贴心，代码和思路都有，那就也来跟着学习思路了 1Panel hvv 倒是遇到了一些，不过确实没有打 https://github.com/1Panel-dev/1Panel

利用向日葵 RCE 漏洞可远程命令执行获取 shell；借助 nxc、evil-winrm 及已知账号密码实现横向移动；域内通过用户权限关系（如 GenericAll 等）形成权限链滥用；用 targetedKerberoast.py 提取 TGS 哈希，结合 hashcat 破解；利用 U2U 委派获取管理员票据，通过 wmiexec 执行命令提权。

第十届上海市大学生网络交全大赛 pwn&re&crypo全解

LLMs can make mistakes, leak data, or be tricked into doing things they were not meant to do. Garak is a free, open-source tool designed to test these weaknesses. It checks for problems like hallucinations, prompt injections, jailbreaks, and toxic outputs. By running different tests, it helps developers understand where a model might fail and how to make it safer. Garak works with a wide range of models and platforms. It supports Hugging Face Hub … More →

The post Garak: Open-source LLM vulnerability scanner appeared first on Help Net Security.

Schneider Electricが提供する複数の製品には、境界外書き込みの脆弱性が存在します。

EG4 Electronicsが提供するEG4インバーターには、複数の脆弱性が存在します。

Появилась универсальная библиотека для отладки.

加拿大共享服务局(SSC)指出联邦系统每年面临6.5万亿次网络威胁，强调数字化转型与网络安全紧迫性。该机构通过多层防御、零信任架构及AI技术提升防护能力，并致力于整合小机构与优化采购策略以应对供应链风险。

谷歌承认开放互联网因AI快速衰落，用户减少点击搜索结果导致网站流量和广告收入下降。在垄断案中提交文件称不应干预市场重塑。

Organizations often operate as if their security controls are fully effective simply because they’re deployed, configured, and monitored. Firewalls are in place, endpoints are protected, and SIEM rules are running. All good, right? Not so fast. Appearances can be deceiving. And deception can be devastating. Picus Security’s Blue Report 2025 shows that even well-configured environments continue to miss a substantial portion of attacks. In fact, across more than 160 million attack simulations, Picus Labs found … More →

The post Fixing silent failures in security controls with adversarial exposure validation appeared first on Help Net Security.

Rockwell Automationが提供する複数の製品には、複数の脆弱性が存在します。

A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Alfredo Oliveira and David Fiser of Trend Research' was reported to the affected vendor on: 2025-09-10, 149 days ago. The vendor is given until 2026-01-08 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by '김명규' was reported to the affected vendor on: 2025-09-10, 149 days ago. The vendor is given until 2026-01-08 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Lucas Miller of Trend Research' was reported to the affected vendor on: 2025-09-10, 47 days ago. The vendor is given until 2026-01-08 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2025-09-10, 89 days ago. The vendor is given until 2026-01-08 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.