Aggregator

欢迎来到我们的微信公众号，我们现在接入了ChatGPT，由AI驱动的语言模型，可以提供自然语言处理的服务，与您进行对话式交互。尝试问我任何问题，我将尽力提供准确和有用的答案，帮助您更好地理解和解决问题。

Disclaimer: the following blog post is mostly generated by GPT-4. The image is generated by Midjourney. I used the following prompt to produce a diagram and a short blog post for highlights:

Over the past several years, domain name queries – a critical element of internet communication – have quietly become more secure, thanks, in large part, to a little-known set of technologies that are having a global impact. Verisign CTO Dr. Burt Kaliski covered these in a recent Internet Protocol Journal article, and I’m excited to […]

The post Minimized DNS Resolution: Into the Penumbra appeared first on Verisign Blog.

outlook CVE-2023-23397 域内零点击提权

gpt4 当面卷我

征集文章。

Lindy Cameron, CEO, introduces changes to the NCSC’s cyber security resources specifically designed for board members.

带你初识Java agent类型内存马

At GreyNoise, we're excited to announce that our Voluntary Product Accessibility Template (VPAT) is now available. We believe that everyone should have equal access to our product and service, regardless of their disabilities or abilities.

Google’s Threat Analysis Group (TAG) tracks actors involved in information operations (IO), government backed attacks and financially motivated abuse. For years, TAG has…

微软终于带着GPT-4，杀到了安全行业。空气中弥漫着一股焦虑的味道。它虽然不够性感，但却可能带来产业的改变

Summary Microsoft has addressed an authorization misconfiguration for multi-tenant applications that use Azure AD, initially discovered by Wiz, and reported to Microsoft, that impacted a small number of our internal applications. The misconfiguration allowed external parties read and write access to the impacted applications. Microsoft immediately corrected the misconfiguration and added additional authorization checks to address the issue and confirmed that no unintended access had occurred.

1.反射和动态加载 1.在java反序列化中，反射被频繁使用，使用反射修改，提取 2.动态代理的特性非常强大，java框架的过滤器就使用了动态加载这个特性 动态代理:https://juejin.cn/post/6844903591501627405 不仅在开发上，在安全领域，也广泛受用。 动态代理

Balckhat 2023 & ISC 2022

**漏洞简单描述：
Nacos是一套帮助发现、配置和管理微服务的程序。提供一组简单易用的特性集，能够快速的实现动态服务发现、服务配置、服务元数据以及流量管理。

2020年12月29日，Nacos官方在github发布的issue中披露Alibaba Nacos 存在一个由于不当处理User-Agent导致的未授权访问漏洞 。通过该漏洞，攻击者可以进行任意操作，包括创建新用户并进行登录后操作。

https://github.com/alibaba/nacos/issues/1105

在Nacos 2.0版本存在未授权访问漏洞，程序未有效对于用户权限进行判断，导致能够添加任意用户、修改任意用户密码等等问题。

危害等级：高危

影响范围 : Nacos <= 2.0.0-ALPHA.1

*1. 漏洞环境查找：

直接使用fofa、hunter、zoomeye等公网环境，虽然公网环境的nacos 不是很多。但是存在漏洞的环境还不少。 我这里用的是hunter，title="nacos" 就可以直接使用。

*2.然后使用google hackbar发送数据包：
POC：
http://IP:端口/nacos/v1/auth/users?pageNo=1&pageSize=9

密码很慢解密，后期利用方法可以使用添加账号、修改账号poc。此类poc公网环境测试风险比较大。

4 个帖子 - 4 位参与者

阅读完整话题

What the UK Cyber Security Council's Chartership programme means for the CCP scheme and the organisations who use CCP for recruitment and development.

推荐群友的一个开源作品，文末模仿了一下播客交谈的形式，和作者聊了开发软件背后的故事。rakshasaraks