Linux ELF无文件执行技术剖析:从原理到攻击模拟
在传统网络安全的核心逻辑是“文件即威胁”,杀毒软件扫描磁盘文件识别恶意代码等这些防御措施基于对文件和进程的监控,比较依赖文件的存在作为判断威胁的依据。然而,无文件执行技术正在颠覆这一逻辑:恶意代码无需落地磁盘,直接在内存中加载执行。
Aggregator
Linux ELF无文件执行技术剖析:从原理到攻击模拟
5 months 1 week ago
在传统网络安全的核心逻辑是“文件即威胁”,杀毒软件扫描磁盘文件识别恶意代码等这些防御措施基于对文件和进程的监控,比较依赖文件的存在作为判断威胁的依据。然而,无文件执行技术正在颠覆这一逻辑:恶意代码无需落地磁盘,直接在内存中加载执行。
Linux ELF无文件执行技术剖析:从原理到攻击模拟
5 months 1 week ago
在传统网络安全的核心逻辑是“文件即威胁”,杀毒软件扫描磁盘文件识别恶意代码等这些防御措施基于对文件和进程的监控,比较依赖文件的存在作为判断威胁的依据。然而,无文件执行技术正在颠覆这一逻辑:恶意代码无需落地磁盘,直接在内存中加载执行。
.NET 总第 63 期红队武器库和资源汇总
5 months 1 week ago
01阅读须知此文所提供的信息只为网络安全人员对自己所负责的网站、服务器等(包括但不限于)进行检测或维护参考,未
.NET内网实战:通过系统白名单文件 Fodhelper.exe 绕过 UAC 实现提权
5 months 1 week ago
01阅读须知此文所节选自小报童《.NET 内网实战攻防》专栏,主要内容有.NET在各个内网渗透阶段与Windo
Sharp4ADInformation:Active Directory 域信息收集与内网渗透必备工具
5 months 1 week ago
Weekly Report: 複数のマイクロソフト製品に脆弱性
5 months 1 week ago
複数のマイクロソフト製品には、脆弱性があります。同社は、今回修正された一部の脆弱性を悪用する攻撃をすでに確認しているとのことです。この問題は、Microsoft Updateなどを用いて、更新プログラムを適用することで解決します。詳細は、開発者が提供する情報を参照してください。
US DOGE Staffer Sent Unencrypted Treasury Data over Email
5 months 1 week ago
Agency Official Says Ex-DOGE Staffer's Data Breach Violated Security Policy
An ex-Department of Government Efficiency staffer violated Treasury rules by sending unencrypted personal data to two senior Trump administration officials without approval, raising concerns about the task force’s apparent disregard for or lack of knowledge about critical data security policies.
An ex-Department of Government Efficiency staffer violated Treasury rules by sending unencrypted personal data to two senior Trump administration officials without approval, raising concerns about the task force’s apparent disregard for or lack of knowledge about critical data security policies.
2025全国高校计算机类课程教学高峰论坛日程
5 months 1 week ago
2025年3月21至23日,广西南宁凯利国际酒店,欢迎参会!
2025全国高校计算机类课程教学高峰论坛日程
5 months 1 week ago
2025年3月21至23日,广西南宁凯利国际酒店,欢迎参会!
2025全国高校计算机类课程教学高峰论坛日程
5 months 1 week ago
2025年3月21至23日,广西南宁凯利国际酒店,欢迎参会!
2025全国高校计算机类课程教学高峰论坛日程
5 months 1 week ago
2025年3月21至23日,广西南宁凯利国际酒店,欢迎参会!
[webapps] Loaded Commerce 6.6 - Client-Side Template Injection(CSTI)
5 months 1 week ago
Loaded Commerce 6.6 - Client-Side Template Injection(CSTI)
[webapps] Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)
5 months 1 week ago
Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)
[webapps] TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)
5 months 1 week ago
TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)
[webapps] Gitea 1.24.0 - HTML Injection
5 months 1 week ago
Gitea 1.24.0 - HTML Injection
[local] VeeVPN 1.6.1 - Unquoted Service Path
5 months 1 week ago
VeeVPN 1.6.1 - Unquoted Service Path
2025全国高校计算机类课程教学高峰论坛日程
5 months 1 week ago
2025年3月21至23日,广西南宁凯利国际酒店,欢迎参会!
CVE-2024-2640 | Watu Quiz Plugin up to 3.4.1.1 on WordPress Setting cross site scripting
5 months 1 week ago
A vulnerability, which was classified as problematic, was found in Watu Quiz Plugin up to 3.4.1.1 on WordPress. This affects an unknown part of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-2640. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-2696 | WP-FeedStats socialdriver-framework Plugin 2024.0.0 on WordPress Setting cross site scripting
5 months 1 week ago
A vulnerability has been found in WP-FeedStats socialdriver-framework Plugin 2024.0.0 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-2696. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com