Aggregator

JNDI注入

M1kael‘s Blog
1 year 10 months ago
前言记录笔记JNDI简介什么是JNDIJNDI是Java Naming and Directory Interface(JAVA命名和目录接口)的英文简写,它是为JAVA应用程序提供命名和目录访...
M1kael

汽车APP产品分析-亿盾加固1 - 我是小三

我是小三
1 year 10 months ago
一、前言 二、加固整体构架 三、壳java层分析 四、壳so静态分析 五、壳so动态分析 六、脱壳二次打包 七、总结 一、前言 1.1、app加固的本质 代码安全只是表面,核心是帮助客户满足业务不被阻断、关键数据资产不被窃取的安全需求。因为加固自身不创造价值,加固的价值必须和公司业务挂钩,来间接体现
我是小三

MYSQL JDBC反序列化解析

跳跳糖 - 安全与分享社区
1 year 10 months ago

JDBC(Java DataBase Connectivity)是一种用于执行Sql语句的Java Api,即Java数据库连接,是Java语言中用来规范客户端程序如何来访问数据库的应用程序接口,可以为多种关系数据库提供统一访问,提供了诸如查询和更新数据库中数据的方法,是Java访问数据库的标准规范。简单理解为链接数据库、对数据库操作都需要通过jdbc来实现。

白给

Welcome to Blue Team Diaries

The Blue Team Diaries
1 year 10 months ago

For cybersecurity defense professionals seeking entertaining stories from their peers, Blue Team Diaries celebrates defenders by giving them a platform to tell their experiences. Blue Team Diaries is 100% focused on honoring those who work to defend their organizations and to build tools for defenders.

Each episode is an interview-style conversation between the host and one guest. Blue Team Diaries is a podcast by Stamus Networks that is available in audio and video formats wherever you get your podcasts. 

Phishing Resistance – Protecting the Keys to Your Kingdom

NIST | Cybersecurity Insights
1 year 10 months ago
If you own a computer, watch the news, or spend virtually any time online these days you have probably heard the term “phishing.” Never in a positive context…and possibly because you have been a victim yourself. Phishing refers to a variety of attacks that are intended to convince you to forfeit sensitive data to an imposter. These attacks can take a number of different forms; from spear-phishing (which targets a specific individual within an organization), to whaling (which goes one step further and targets senior executives or leaders). Furthermore, phishing attacks take place over multiple
Andrew Regenscheid, Ryan Galluzzo

Managed ad