Aggregator
Top 10 Malware Q3 2023
2 years 3 months ago
The Top 10 Malware in Q3 2023 saw some significant shifts from the previous quarter. Here's what the CTI team at the MS-ISAC® observed.
CIS Benchmarks December 2023 Update
2 years 3 months ago
Here is an overview of the CIS Benchmarks that the Center for Internet Security updated or released for December 2023.
Multiple Vulnerabilities In Extreme Networks ExtremeXOS
2 years 4 months ago
The post Multiple Vulnerabilities In Extreme Networks ExtremeXOS appeared first on Rhino Security Labs.
David Yesland
TitanFuzz:基于大语言模型对深度学习库进行模糊测试|技术进展
2 years 4 months ago
本文提出并实现了TitanFuzz,第一个通过大型预训练语言模型对深度学习库进行模糊测试的例子。展示了直接利用现代LLM进行模糊测试的前景。
记一次逆向分析解密还原Class文件 - magic_zero
2 years 4 months ago
前言 前阵子我的一位朋友发来一份代码让我帮忙看看。具体就是所有的jsp文件内容和大小都一样,漏洞挖掘无从下手。经过分析发现所有的Class都使用了自定义的加密工具加密,经过逆向分析,顺利解密,因而有了此文。 初步分析 文件内容如下所示: 其他文件亦如是: 接着在tomcat work目录找到了编译后
magic_zero
见证雷池成为 GitHub 全球第一的 WAF 项目
2 years 4 months ago
听雷池与开源社区的故事,见证雷登顶 GitHub 全球第一的过程
政策解读 | 2024电子数据取证分析师报考条件迎来新变化
2 years 4 months ago
2023年9月人力资源社会保障部办公厅印发了关于《国家职业标准编制技术规程(2023年版)》的通知,对《国家
政策解读 | 2024电子数据取证分析师报考条件迎来新变化
2 years 4 months ago
2023年9月人力资源社会保障部办公厅印发了关于《国家职业标准编制技术规程(2023年版)》的通知,对《国家
政策解读 | 2024电子数据取证分析师报考条件迎来新变化
2 years 4 months ago
2023年9月人力资源社会保障部办公厅印发了关于《国家职业标准编制技术规程(2023年版)》的通知,对《国家
《网络弹性法案》协议达成,欧盟立法进一步临近实施
2 years 4 months ago
欧盟议会和理事会就《网络弹性法案》达成协议,旨在提高数字产品的网络安全,强制要求制造商为所有硬件和软件提供持续安全更新,增强消费者和企业安全。该法案受到一些批评,指其某些提议可能带来新的安全威胁。
CVE-2022-28958: Remote Code Execution Vulnerability in D-Link REJECTED
2 years 4 months ago
Through further investigation into CVE-2022-28958 revealed that the vulnerability did not actually exist. This case serves as a reminder of the importance of thorough and rigorous vulnerability verification.
CVE-2023-49105, WebDAV Api Authentication Bypass in ownCloud
2 years 4 months ago
While the 10/10 CVE-2023-49103 got all the attention last week, organizations should not quickly overlook CVE-2023-49105!
Healthcare Trends in 2024: Challenges and Opportunities
2 years 4 months ago
Carley Thornell
Akamai Account Protector’s New Protection Against Account Opening Abuse
2 years 4 months ago
Christine Ferrusi Ross
【连载】纯鸿蒙应用安全开发指南-Web组件安全
2 years 4 months ago
对于移动端应用来说,web组件的安全问题是比较常见的。本文将从webview应用开发和安全隐患两方面来介绍纯
【连载】纯鸿蒙应用安全开发指南-Web组件安全
2 years 4 months ago
对于移动端应用来说,web组件的安全问题是比较常见的。本文将从webview应用开发和安全隐患两方面来介绍纯
【连载】纯鸿蒙应用安全开发指南-Web组件安全
2 years 4 months ago
对于移动端应用来说,web组件的安全问题是比较常见的。本文将从webview应用开发和安全隐患两方面来介绍纯
NCCoE 5G Cybersecurity: Connecting the Dots Between IT and Teleco Cybersecurity Capabilities in 5G Systems
2 years 4 months ago
5G will eventually impact every single industry—from healthcare to financial to even agriculture and transportation...and its impact is only increasing over time. Despite its benefits, it comes with privacy and security risks. An increasing number of interconnected devices increases the attack surface. In addition, there are also increased supply chain vulnerabilities and network visibility issues (companies may have issues identifying attacks since there may be a lot of new web traffic from mobile devices and/or more sophistication when it comes to attacks). The goal of the NCCoE 5G
Jeffrey Cichonski
上海公安学院侦查系与奇安盘古战略合作签约暨“产学研合作基地”揭牌仪式成功举行
2 years 4 months ago
近日,上海公安学院侦查系与奇安盘古战略合作签约——暨“产学研合作基地”揭牌仪式在奇安信上海总部成功举行。