在即将春暖花开的日子,祝福每一位朋友都能守护好自己和家人,远离疫情。
在即将春暖花开的日子,祝福每一位朋友都能守护好自己和家人,远离疫情。
Aggregator
AKG:攻击者知识图谱
4 years ago
攻击者知识图谱作为一个数据中心,当数据累积到一定量级,可能完成数据、情报中心向决策中心的进化。
AKG:攻击者知识图谱
4 years ago
攻击者知识图谱作为一个数据中心,当数据累积到一定量级,可能完成数据、情报中心向决策中心的进化。
AKG:攻击者知识图谱
4 years ago
攻击者知识图谱作为一个数据中心,当数据累积到一定量级,可能完成数据、情报中心向决策中心的进化。
AKG:攻击者知识图谱
4 years ago
攻击者知识图谱作为一个数据中心,当数据累积到一定量级,可能完成数据、情报中心向决策中心的进化。
AKG:攻击者知识图谱
4 years ago
攻击者知识图谱作为一个数据中心,当数据累积到一定量级,可能完成数据、情报中心向决策中心的进化。
瞒天过海计之Tomcat隐藏内存马 - admin-神风
4 years ago
“备周则意怠;常见则不疑。阴在阳之内,不在阳之对。” 《三十六计·瞒天过海》 0x00 前言 关于这篇文章其实源自逛先知的一次经历,看到@4ra1n师傅写的一篇《从一个被Tomcat拒绝的漏洞到特殊内存马》,原文链接是:https://xz.aliyun.com/t/10577。看完之后顿时就提起了
admin-神风
Six Key Takeaways from the OMB Memo
4 years ago
In May 2021, following a number of high-profile security incidents, U.S. President Biden issued an executive order that set out a high-level agenda to modernize and improve the government’s cyber resilience. This January, the U.S. Office of Management and Budget (OMB) issued a memo to the heads of executive departments and agencies that gave much more detail on how the U.S. government will move toward Zero Trust security principles.
Jim Black
Exploit Development: Browser Exploitation on Windows - CVE-2019-0567, A Microsoft Edge Type Confusion Vulnerability (Part 1)
4 years ago
End-to-end 'modern' browser exploitation on Windows beginning with configuring a browser exploitation environment, exploring JavaScript intrinsics, and understanding type confusion vulnerabilities.
Connor McGarr
Exploit Development: Browser Exploitation on Windows - CVE-2019-0567, A Microsoft Edge Type Confusion Vulnerability (Part 1)
4 years ago
End-to-end 'modern' browser exploitation on Windows beginning with configuring a browser exploitation environment, exploring JavaScript intrinsics, and understanding type confusion vulnerabilities.
Connor McGarr
Exploit Development: Browser Exploitation on Windows - CVE-2019-0567, A Microsoft Edge Type Confusion Vulnerability (Part 1)
4 years ago
End-to-end 'modern' browser exploitation on Windows beginning with configuring a browser exploitation environment, exploring JavaScript intrinsics, and understanding type confusion vulnerabilities.
Connor McGarr
DNS Cybersquatting: The Case for Edge DNS Zone Protect
4 years ago
Cybersquatting, also known as domain squatting, is a type of scam that mimics a brand's domain to confuse potential victims and gain their trust. According to Revision Legal, “Cybersquatting is prohibited in the U.S. by federal law under the Anticybersquatting Consumer Protection Act (ACPA.)” These fake domains can be used in cyberattacks — especially phishing attacks.
Noy Aizenberg
In China and Japan, Malicious Botnets Surge Amidst Holiday Ecommerce Traffic
4 years ago
Akamai data shows that in the days leading up to and including Lunar New Year, the activity of malicious bots increased 15% in China over the previous month. While a similar surge occurs during the high-traffic seen at the end-of-year holidays in EMEA and the U.S. — China and Japan present a particularly enticing opportunity for successful cyberattacks because of the sheer volume in traffic: Retailers and ecommerce here serve some of the largest populations in the world.
Boaz Gelbord
Common Cyber Attacks: Reducing the Impact
4 years ago
This white paper explains how basic security controls can protect organisations from the most common cyber attacks.
DLL劫持漏洞
4 years ago
YangHao
DirtyPIPE漏洞分析从0到1
4 years ago
水平有限,如有错误欢迎联系指正vx:1084099570 或 bigric3_1. 环境搭建1)编译内核#
DirtyPIPE漏洞分析从0到1
4 years ago
水平有限,如有错误欢迎联系指正vx:1084099570 或 bigric3_1. 环境搭建1)编译内核#
DirtyPIPE漏洞分析从0到1
4 years ago
水平有限,如有错误欢迎联系指正vx:1084099570 或 bigric3_1. 环境搭建1)编译内核#
DirtyPIPE漏洞分析从0到1
4 years ago
水平有限,如有错误欢迎联系指正vx:1084099570 或 bigric3_1. 环境搭建1)编译内核#
DirtyPIPE漏洞分析从0到1
4 years ago
水平有限,如有错误欢迎联系指正vx:1084099570 或 bigric3_1. 环境搭建1)编译内核#