Aggregator
Forrester将SOAR列入安全分析平台的关键能力集合
2 years 7 months ago
SOAR是SAP的关键组件,这已经成为当下的潮流
Meet Tim Vereecke: Technical Solutions Architect
2 years 7 months ago
Tim Vereecke, technical solutions architect at Akamai, discusses how he uses a developer-first mindset to find internet performance solutions.
Chuck Freedman
基于RDP协议识别主机操作系统版本与用户名
2 years 7 months ago
网络安全攻防技术必将愈发体现出人工智能及机器学习介入的影响,未来的网络安全将会越来越多地出现AI vs AI的攻防局面,墨云将一直专注人工智能在攻防安全领域的应用研究,打造智能化产品体系,为用户提供全方位的信息安全服务。
Intel Open AMT Cloud Toolkit Vulnerability
2 years 7 months ago
Summary
On August 8, 2022, Intel published 27 security advisories addressing multiple vulnerabilities. Among those vulnerabilities is a critical authentication bypass bug in Open AMT Cloud Toolkit, an open-source toolkit for integrating OOB management solutions.
Threat Type
Vulnerability
Overview
Intel has released patches for several vulnerabilities, one of which, includes a critical authentication bypass in the Open AMT Cloud Toolkit. This software in question is an open-source toolkit used in the manage
Akamai Has Addressed Browser-Powered Desync Attacks
2 years 7 months ago
On August 10, 2022, security researcher James Kettle presented a set of novel HTTP request smuggling attacks in his Black Hat talk,
Kaan Onarlioglu
Feature Spotlight: Extending Zero Trust Segmentation to the MacOS
2 years 7 months ago
Announcing our new agent for MacOS endpoints. Of all the leading Zero Trust segmentation providers, Akamai is the only vendor to support MacOS.
Ravit Greitser
和好友聊一聊企业安全建设
2 years 7 months ago
跟好友301聊聊企业安全建设,从甲乙两方的视角,也看看乙方是怎么看这个事情的
SNAT和DNAT的区别 - sevck
2 years 7 months ago
SNAT: Source Network Address Translation,是修改网络包源 src ip地址的。DNAT: Destination Network Address Translation,是修改网络包目的 dst ip地址的。 1. SNAT 场景:云上的vm主机用户作为客户端
sevck
Akamai?s Perspective on August Patch Tuesday
2 years 7 months ago
Want the rundown of what to focus on with Patch Tuesday in one place? Check out this blog, and patch, patch, patch!
Akamai Security Research
"容器逃逸失败"案例分析
2 years 7 months ago
背景红蓝对抗中的云原生漏洞挖掘及利用实录[1] 提到在容器内根据设备号创建设备文件,然后读写裸设备,来完成容
Java代码审计之ofcms | 技术精选0140
2 years 7 months ago
欢迎各位指导补充
Introducing the Sensor Intel Series: Top CVEs Jan-Jun 2022
2 years 7 months ago
Learn which CVEs attackers scanned for most in the first half of 2022.
Critical Vulnerability in Several VMWare Products
2 years 7 months ago
Summary
According to a report from Bleeping Computer and confirmed by VMWare, vulnerabilities in a multitude of products have been marked as critical. Patches have been issued.
Threat Type
Vulnerability
Overview
Update 01 (08/09/2022)
VMWare has published an update to this disclosure stating that there is now proof of concept code publicly available that can be used to exploit CVE-2022-31656 and CVE-2022-31659. The POC was released, as promised, by Security security researcher Petrus Viet. This is the sam
Is Your Security Strategy Focused?
2 years 7 months ago
Strategic security leadership is the overarching recommendation in ?How to Respond to the 2022 Cyberthreat Landscape,? a new report from Gartner�.
Download your complimentary copy in this blog.
Danielle Walter
腾讯云函数代理 - sevck
2 years 7 months ago
网上好多代码都是抄袭的,也有一些BUG,例如在3.6 做proxy 请求shell会404 解决如下: 原因获取headers中有host,直接带入requests headers,导致host不一致需要删除 支持GET请求转发 解决content-length # -*- coding: utf8
sevck
谈谈我对应急响应的一些拙见
2 years 7 months ago
应急响应有两个指标mttr和mttd,这两个指标衡量企业的应急响应能力,其实在乙方工作还有一个隐藏指标叫做客
abuse.ch appoints Spamhaus as a licensee to secure its future
2 years 7 months ago
团队招人(武汉云智)
2 years 7 months ago
招聘测试、SRE各两名,腾讯云子公司云智编制,工作地点武汉光谷。
思考先行测试先行演示先行
2 years 7 months ago