Aggregator

从前的日子很慢车，马，邮件都慢一生只够爱一个人从前的日子很慢鲁磨路的房子，八百一平所有人都感叹，好贵从前的日子很慢西三门外的录像厅，整夜放着VCD传来阵阵，“老板换碟”从前的日子很慢在宿舍...

Gartner将Rapid7的InsightIDR评为2021年安全信息和事件管理领域的领导者

Ransomware payment amounts declined in Q2 as several high profile attacks escalated the attention of the US government and law enforcement.

团队招聘安全开发工程师，有意私聊

写给jiayuan师傅的CodeQL手摸手教程。

windows 服务器/PC 常驻那么多RPC接口, 能可控机器账号/域账号走smb/webdav/http外发认证的，还有多少?

助力公益，爱只有传递下去，才不会消失。

前言 我们知道，像 Nginx、Workerman 都是单 Master 多 Worker 的进程模型。 Master 进程用于创建监听套接字、创建 Worker 进程及管理 Worker 进程。 Worker 进程是由 Master 进程通过 fork 系统调用

如何通过 JS 热更新 HTTP 缓存

At 15:45 UTC on July 22, 2021, a software configuration update triggered a bug in our Secure Edge Content Delivery Network impacting that network's domain name service (DNS) system (the system that directs browsers to websites for that specific service). This caused a disruption impacting availability of some customer websites. The disruption lasted up to an hour. Upon rolling back the software configuration update, the services resumed normal operations.

Elkeid 数据说明

福利很大，你看一下。

作者简介胡哲宁，西安邮电大学计算机科学与技术专业大二学生。Google SwitchTo由于协程本身对操作系统的不可见性，协程中出现的 BUG 往往不能通过一些已有的工具去排查。在谷歌内部...

The title of this report is not a typo. “The State of the State of Application Exploits in Security Incidents” is a meta-analysis of several prominent industry reports, each of which covers the state of application security.

在《近距离看GPU计算》系列第一篇里我们介绍了GPU的一些基础知识及其如何从图形加速设备演化到通用计算平台。本文我们会具体从处理单元设计和存储层次结构两个方面探讨GPU不同于CPU的特点，...

ENV

macos11.4 + iphone6 iOS 12.2

一次不一样的未授权访问到命令执行的案例。

Though Zero Trust is really quite simple and should be viewed as a very strong form of the age-old principle of least privilege, that does not mean that it is the same thing. In fact, one of the most significant differences from what came before is that when it comes to access, Zero Trust is based on application access, not network access. I was surprised, then, when Gartner's new SASE (secure access service edge) model included something called Zero Trust Network Access (ZTNA). This term is an oxymoron, and I make this point because it matters. The distinction between network access and application access is important.