令人惊艳的ChatGPT
ChatGPT,或许是一个新的里程碑
Aggregator
5 Cybersecurity Predictions for 2023
1 year 10 months ago
F5 Labs and experts across F5 share their experience from the past twelve months to predict what might be the biggest causes for concern in 2023.
Not Every Cloud Is Meant for Every Workload
1 year 10 months ago
Understanding which cloud platforms are the best fit for which workloads can maximize your return on investment and your customers? output.
Pavel Despot
CIS关于网络安全的18条安全控制措施
1 year 10 months ago
CIS是互联网安全中心的缩写,该组织从安全领域专家的视角,针对企业网络不同层面的安全问题,提出了相应的安全保护措施和操作规范,供不同规模的企业参考实施。
TextFormattingRunProperties 利用链 - nice_0e3
1 year 10 months ago
分析 反序列化时会自动调用与GetObjectData函数同样参数的构造函数。所以会走到这里。 TextFormattingRunProperties实现ISerializable接口,在其序列化的构造函数中,进行this.GetObjectFromSerializationInfo("Foregr
nice_0e3
sql注入随笔 - 飘渺红尘✨
1 year 10 months ago
最近挖了一些漏洞,还挺有意思的。这边分享两个需要细节一点才能挖到的sql注入,希望给大家带来一些漏洞挖掘思路。 黑盒是很有意思的,有趣的。 1.搜索功能的隐藏sql注入,post data数据内容如下: {"product":"","offer":"DIV","variant":"*","searc
飘渺红尘✨
Elkeid 社区版 v1.9.1 正式发布
1 year 10 months ago
Elkeid 社区版 v1.9.1 发布
二进制代码相似性检测也能对抗?
1 year 10 months ago
二进制代码相似性检测(BCSD),即两个二进制可执行代码的相似性检测,有着广泛的用途,如软件成分分析、恶意软件检测和软件剽窃检测等应用场景。
Principles and how they can help us with assurance
1 year 10 months ago
Explaining the forthcoming NCSC Technology Assurance Principles.
A Closer Look at Ransomware Attack Trends in APJ
1 year 10 months ago
Read about the surge of ransomware as a service (RaaS) cyberattack trends in APJ, and the infamous (and prolific) Conti group?s role in them.
Badette Tribbey
ObjectDataProvider 利用链 - nice_0e3
1 year 10 months ago
前置介绍 ObjectDataProvider 命名空间: System.Windows.Data 程序集: PresentationFramework.dll 包装和创建可以用作绑定源的对象。 ObjectDataProvider,顾名思义就是把对象作为数据源提供给Binding 数据源 WPF
nice_0e3
PostgreSQL-JDBC-Driver_远程代码执行分析[CVE-2022-21724]
1 year 10 months ago
CVE-2020-9273 ProFTPd RCE漏洞分析与利用
1 year 11 months ago
漏洞描述:UAF类型的漏洞,通过伪造pool_rec内存池控制结构,可以篡改函数指针,从而达到任意命令执行。
C# 委托 - nice_0e3
1 year 11 months ago
C# 中的委托(Delegate)类似于 C 或 C++ 中函数的指针。 委托(Delegate) 是存有对某个方法的引用的一种引用类型变量。引用可在运行时被改变。 委托就是用来储存方法的结构 委托(Delegate)特别用于实现事件和回调方法。所有的委托(Delegate)都派生自 System.
nice_0e3
Accidentally Crashing a Botnet
1 year 11 months ago
As part of our research into the cryptomining botnet kmsdbot, we rendered it useless.
Larry Cashdollar
NCSC For Startups: Vistalworks cracking down on illicit trade
1 year 11 months ago
Vicky Brock of Vistalworks describes how the 'NCSC For Startups' programme has helped her organisation develop solutions to tackle illicit online trade.
SentinelOne がAmazon Security Lake 連携によりクラウドのセキュリティ侵害調査を強化
1 year 11 months ago
Ingest OCSF security data from AWS into Singularity™ XDR data lake to power-up SecOps. More signal, less noise. More results, less stress. Learn how.
The post SentinelOne がAmazon Security Lake 連携によりクラウドのセキュリティ侵害調査を強化 appeared first on SentinelOne JP.
SentinelOne
Expanding API Security Awareness at API World
1 year 11 months ago
API security should be a primary concern for organizations. Learn about the three principles of APIs to help protect against attacks.
Abigail Ojeda
A Ride on the Wild Side with Hacking Heavyweight Sick Codes
1 year 11 months ago
Beverage of Choice: Krating Daeng (Thai Red Bull)
Industry Influencer he Admires: Casey John Ellis
What did you want to be when you grew up? A physician and nearly did
Hobbies (Present & Past): Motorcycling & Australian Football
Bucket List: Continuing to discover new software
Fun Fact: He currently has 2,000 tabs open
使用冰蝎连接原始版本PHP一句话
1 year 11 months ago
冰蝎连接原始版本PHP一句话Shell