Aggregator

ProxyLogon 利用链复现~~~~~

Documenting my journey from ground 0 to (hopefully) more modern browser exploitation.

Summary A software company specializing in auditing tools suffered an attack over the course of the the past four months and disclosed this month. Several news outlets have reported on the attack and the vulnerability used to exploit a zero-day vulnerability. Threat Type Vulnerability, Breach Overview An investigation by Codecov led to the discovery of a supply-chain attack that has been occurring since January 2021. The maker of auditing tools stated a threat actor had modified Bash Uploader script and exp

【一】有日媒报道称，与中国军方相关的一个黑客组织对日本发动了近200次网络袭击。对此，外交部发言人汪文斌20

吕某做过两个月快递员，知道如何在快递公司系统内查询个人信息，现在有了这样一个销售渠道，吕某就动员了几个同样无所事事的年轻人，以刷单或者跟踪邮件动态的名义，以每天租金500元的高价，先后租来五个快递公司员工的登录账号，从快递公司系统内窃取公民个人信息，吕某把窃取来的公民信息打包卖给他的上线，再由上线直接卖给境外诈骗团伙。

前言 今天在landgrey师傅的博客上看到一篇将Spring Boot FatJar任意写目录漏洞如何来GetShell的方法，因为在Spring Boot中处理逻辑的控制层Controller是通过注解等方式来添加进Spring容器中，已经摒弃了JSP的方式。这样的方式导致JSP就算上传在网站目

Summary The ICS-CERT has published two advisories that affect the Schneider Electric C-Bus Toolkit, and the EIPStackGroup OpENer Ethernet/IP. Threat Type Vulnerability Overview The ICS-CERT has published two advisories that affect the Schneider Electric C-Bus Toolkit, and the EIPStackGroup OpENer Ethernet/IP. Further information is available from the advisories which are summarized below. ICS Advisory ICSA-21-105-01 - Schneider Electric C-Bus Toolkit CVE-2021-22716 - The affected product is vulnerable to Im

数据显示，到2022年，30%的5人以上的安全团队将会采用SOAR（安全编排与自动化响应）。你是那30%吗？

数据显示，到2022年，30%的5人以上的安全团队将会采用SOAR（安全编排与自动化响应）。你是那30%吗？

谈谈 Kubernetes 在多集群管理和一些应用场景中的局限性，大集群、联邦集群、应用分发、批处理调度和多租户等

群里看到一张来自twitter的截图，分享了一下excel 0day的demo，对demo简单分析了一下。

Summary Google has released an update to its Chrome web browser for Windows, Mac, and Linux that provides fixes for thirty-seven vulnerabilities. Of the nineteen CVE-numbered vulnerabilities noted in the advisory, Google has six of them rated as High, ten as Moderate, and three as Low. Threat Type Vulnerability Overview Google has released an update, version 90.0.4430.72, to its Chrome web browser for Windows, Mac, and Linux that provides fixes for thirty-seven vulnerabilities. Of the nineteen CVE-numbered

当年的微博

同一条命令运行一个游戏

strace

利用strace记录进程的syscall,需要root权限

• -e tr

谈谈 Kubernetes 在多集群管理和一些应用场景中的局限性，大集群、联邦集群、应用分发、批处理调度和多租户等

展望RSA Conference 2021创新沙盒竞赛，在应用安全开发领域有Apiiro和WABBI两家公司入选，本文主要介绍这两家公司的特点。

Akamai has been named a Gartner Peer Insights Customers' Choice for Web Application Firewalls (for the second time).

在基础安全领域中，通过实体画像技术可以从多维度对检测对象进行描绘。这些描绘的成果将成为复杂安全检测，与复杂网络攻击调研的数据基础。

在基础安全领域中，通过实体画像技术可以从多维度对检测对象进行描绘。这些描绘的成果将成为复杂安全检测，与复杂网络攻击调研的数据基础。

A nifty way for adversaries to acquire passwords during post-exploitation is to spoof credential dialogs and perform a local phishing attack. This means tricking a user on a compromised computer to enter their password. Unfortunately, users are conditioned to enter their credentials frequently and therefore don’t question random passwords prompts too much. Long, long time ago… but nothing has changed The idea to spoof a credential dialog is one of the most simple ideas one might come up with.