Aggregator

前言前面提到一些webshell的绕过手法，就是利用一些内置的函数去解析正常的业务逻辑，在正常的业务逻辑里面隐藏我们的恶意代码，再通过特定函数去进行解析提取业务逻辑里面的恶意代码，再进行拼接，从而达到绕过AI检测的效果但是比赛的要求是这样的：我们需要从外部获取参数来控制命令执行，一开始我以为很简单，毕竟我都绕过了命令执行了，那接收参数这个不是简简单单吗？但是我想错了遇到的困难比如说下面这段：利用分

Cybersecurity researchers have uncovered two critical security flaws in Chainlit, a widely used open-source AI framework with over 700,000 monthly downloads. The vulnerabilities allow attackers to steal sensitive cloud credentials, leak database files, and take control of enterprise AI environments without user interaction. Zafran Labs identified these flaws affecting internet-facing deployments across enterprises. Both vulnerabilities […]

The post Critical Chainlit AI Vulnerabilities Let Hackers Gain Control Over Cloud Environments appeared first on Cyber Security News.

A new security flaw in SmarterTools SmarterMail email software has come under active exploitation in the wild, two days after the release of a patch. The vulnerability, which currently does not have a CVE identifier, is tracked by watchTowr Labs as WT-2026-0001. It was patched by SmarterTools on January 15, 2026, with Build 9511, following responsible disclosure by the exposure management

JS逆向对抗——记一次渗透测试签名绕过

最近三年投入在威胁检测与杀毒能力建设方向，喜欢思考如何能解决最实际的网络安全问题，尽极大可能地提高检测系统的杀

Rho-alpha — это первая попытка ИИ выйти в офлайн, чтобы трогать, ронять и ощущать наш мир.

Blue Origin announced TerraWave, a satellite communications network designed to support enterprise, data center, and government users that rely on reliable connectivity for mission-critical operations. The network will provide symmetrical data speeds of up to 6 Tbps worldwide. The TerraWave architecture consists of 5,408 optically interconnected satellites in low Earth orbit (LEO) and medium Earth orbit (MEO), enabling ultra-high-throughput links between global hubs and multigigabit user connections in regions where diverse fiber paths are costly, … More →

The post TeraWave space-based network aims for 6 Tbps connectivity worldwide appeared first on Help Net Security.

A vulnerability was found in Hamastar MeetingHub. It has been rated as problematic. This impacts an unknown function. This manipulation causes absolute path traversal. This vulnerability is tracked as CVE-2026-1330. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability was found in Hamastar MeetingHub. It has been declared as critical. This affects an unknown function. The manipulation results in unrestricted upload. This vulnerability is identified as CVE-2026-1331. The attack can be executed remotely. There is not any exploit available.

A vulnerability was found in Discord up to 2026-01-16. It has been classified as problematic. The impacted element is an unknown function of the component WebSocket API Service. The manipulation leads to observable response discrepancy. This vulnerability is referenced as CVE-2026-24332. Remote exploitation of the attack is possible. No exploit is available. This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

精彩纷呈的2025已经落下帷幕，回顾这一年，吾爱破解论坛佳作频出，新秀崭露头角，老将宝刀不老，一篇篇技术文章鞭辟入里、深入浅出，络绎登场，令人目不暇接。

Поможет ли новая госкомпания победить дефицит процессоров?

2026腾讯犀牛鸟精英人才计划开放申请中，2026年2月26日申请截止。

A dangerous Android malware campaign has emerged, targeting users through mobile games and pirated streaming app modifications. The threat, known as Android.Phantom, employs machine learning technology to perform automated ad-click fraud on infected smartphones. Over 155,000 downloads of compromised games have been recorded, with additional infections spreading through modified versions of Spotify, YouTube, Netflix, and […]

The post New AI-Android Malware that Auto Clicks Ads from the Infected Devices appeared first on Cyber Security News.

python日志库远程代码执行漏洞(CVE-2025-27607)分析

Самый тяжелый «кот Шрёдингера» в истории.

EaseUS announced EaseUS Disk Copy 7.0.0, representing a shift in how disk cloning and backup workflows are handled on Windows. The update introduces disk imaging–based backup and restore capabilities, allowing users to create disk image and restore them to physical storage without being constrained by simultaneous hardware connections. Developed based on extensive user feedback and EaseUS’s long-term experience in data management technologies, the release reflects a strategic shift toward more flexible and scalable system protection … More →

The post EaseUS Disk Copy 7.0.0 enables backup, restore, and migration without multiple drives connected appeared first on Help Net Security.

伊朗的互联网封锁已长达 14 天。美国网络监测公司 Kentik 根据其收集的数据分析了伊朗的互联网封锁。除了互联网封锁，国际语音通信也被封锁，国内通信服务也长时间中断，对伊朗 9000 万国民而言这是历史上最严重的通信封锁事件。此次大规模封锁的第一个征兆是该国国有电信公司 TIC 的自治系统 AS49666 于 1 月 8 日 11:42 UTC 撤回其 IPv6 BGP 路由，伊朗的 IPv6 流量不到其总流量的不到 1%，对普通用户基本没影响，但它预示之后几小时发生的事。当地时间晚上 7 点（UTC 16:30）伊朗的流量开始暴降，UTC 18:45 伊朗进出流量降至几乎为零。伊朗的 IPv4 路由仍然在线，政府启用了白名单制度，只允许经过批准的用户或服务访问互联网，还有非常少的流量进出伊朗，1 月 9 日 AS6736 还为伊朗大学短暂恢复了数小时联网服务。