Aggregator
开赛!第四届中国研究生网络安全创新大赛报名开启!
1 year 2 months ago
Tomcat内存马学习与探究
1 year 2 months ago
文章剖析Tomcat内存马,涵盖Listener、Filter、Servlet和Valve的编写与分析,介绍通过JSP编写及反射操作动态加载恶意代码的方法,同时探讨反序列化注入内存马的实践,总结经验并展望未来研究。
CTF@CIT 2025
1 year 2 months ago
Name: CTF@CIT 2025 (an CTF@CIT event.)
Date: April 25, 2025, 9 p.m. — 27 April 2025, 19:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://ctf.cyber-cit.club/
Rating weight: 24.57
Event organizers: HACK@CIT
Date: April 25, 2025, 9 p.m. — 27 April 2025, 19:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://ctf.cyber-cit.club/
Rating weight: 24.57
Event organizers: HACK@CIT
UMDCTF 2025
1 year 2 months ago
Name: UMDCTF 2025 (an UMDCTF event.)
Date: April 25, 2025, 10 p.m. — 27 April 2025, 22:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://umdctf.io/
Rating weight: 70.86
Event organizers: UMDCSEC
Date: April 25, 2025, 10 p.m. — 27 April 2025, 22:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://umdctf.io/
Rating weight: 70.86
Event organizers: UMDCSEC
BSidesSF 2025 CTF
1 year 2 months ago
Name: BSidesSF 2025 CTF (an BSidesSF CTF event.)
Date: April 25, 2025, 11 p.m. — 27 April 2025, 23:00 UTC [add to calendar]
Format: Jeopardy
On-line
Location: San Francisco, CA
Offical URL: https://ctf.bsidessf.net/
Rating weight: 25.00
Event organizers: BSidesSF
Date: April 25, 2025, 11 p.m. — 27 April 2025, 23:00 UTC [add to calendar]
Format: Jeopardy
On-line
Location: San Francisco, CA
Offical URL: https://ctf.bsidessf.net/
Rating weight: 25.00
Event organizers: BSidesSF
网络安全领域的GPS?风险暴露评估平台EAP指南
1 year 2 months ago
在网络安全领域,安全团队面临着大量警报、过时报告的困扰,并且常常缺乏对新兴威胁的实时可见性。这种传统的漏洞管理 […]
aqniu
三六零发布2024年报,营收降12.23%,安全业务营收降27.06%;TikTok被曝遭入侵,超90万用户凭证疑被泄露 |牛览
1 year 2 months ago
新闻速览 •工信部CSTIS提醒:防范WinRAR安全绕过漏洞的风险 •第一季度159个CVE遭到野外利用,近 […]
aqniu
fuzzuf: Fuzzing Unification Framework
1 year 2 months ago
fuzzuf fuzzuf (fuzzing unification framework) is a fuzzing framework with its own DSL to describe a fuzzing loop by constructing building blocks of fuzzing primitives. Why use fuzzuf? fuzzuf enables a flexible definition of a fuzzing loop...
The post fuzzuf: Fuzzing Unification Framework appeared first on Penetration Testing Tools.
ddos
cuddlephish: Weaponized multi-user browser-in-the-middle (BitM) for penetration testers
1 year 2 months ago
CuddlePhish Weaponized multi-user browser-in-the-middle (BitM) for penetration testers. This attack can be used to bypass multi-factor authentication on many high-value web applications. It even works for applications that do not use session tokens, and...
The post cuddlephish: Weaponized multi-user browser-in-the-middle (BitM) for penetration testers appeared first on Penetration Testing Tools.
ddos
远控锁屏恶意软件样本分析
1 year 2 months ago
远控锁屏恶意软件样本分析
远控锁屏恶意软件样本分析
1 year 2 months ago
远控锁屏恶意软件样本分析
CVE-2022-3705 | Apple macOS Vim use after free (HT213605 / Nessus ID 211239)
1 year 2 months ago
A vulnerability has been found in Apple macOS and classified as critical. Affected by this vulnerability is an unknown functionality of the component Vim. The manipulation leads to use after free.
This vulnerability is known as CVE-2022-3705. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
.NET 总第 69 期红队武器库和资源汇总
1 year 2 months ago
文中福利 | 国内最专业、最全面的 [ .NET 代码审计 ] 体系化学习社区
1 year 2 months ago
攻防演练:通过 Sharp4TransferPort 实现任意端口转发
1 year 2 months ago
受关税影响,美电商商品价格普涨;京东外卖扩招 10 万骑手;苹果 AI 智能眼镜有望 2027 年推出|极客早知道
1 year 2 months ago
雷军回应小米手机重回第一:人车家全生态;
古尔曼:苹果 Vision Pro 轻量版最早有望今年末上市;
全球访问量最大网站 TOP20:谷歌位居榜首,YouTube 访问时长最长
CVE-2015-2326 | PCRE up to 8.36 pcre_compile2 out-of-bounds (ID 123825)
1 year 2 months ago
A vulnerability classified as problematic was found in PCRE up to 8.36. Affected by this vulnerability is the function pcre_compile2. The manipulation leads to out-of-bounds read.
This vulnerability is known as CVE-2015-2326. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0471 | Google Chrome up to 109.0.5414.74 WebTransport use after free
1 year 2 months ago
A vulnerability was found in Google Chrome and classified as critical. This issue affects some unknown processing of the component WebTransport. The manipulation leads to use after free.
The identification of this vulnerability is CVE-2023-0471. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0472 | Google Chrome up to 109.0.5414.74 WebRTC use after free
1 year 2 months ago
A vulnerability was found in Google Chrome. It has been classified as critical. Affected is an unknown function of the component WebRTC. The manipulation leads to use after free.
This vulnerability is traded as CVE-2023-0472. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com