Aggregator

本文章主要记录cyberstrikelab的Honeypot打靶过程

从web3安全角度解析Uniswap V2源码，阐述AMM机制与防重入。重点剖析swap验证、mint铸造及最小流动性防御，理清架构逻辑，理解实现以及安全问题。

非栈上+有限次+保护全开的思路

接上一篇的研究，我们这里学习protobuf的堆布局的利用以及总结的apple2的分地址写的模版

2026楚慧杯Web方向全解

前言这个漏洞是英国 MDSecLabs 的 Filip Dragovic 发现的，据作者讲述，这个漏洞由于很巧妙，它们在红队评估中从2025年1月就开始使用，直到2026年2月报告给微软后，才在3月的补丁星期二修复，这么看也用够本了，原文只是讲了漏洞的核心部分，本文会讲清楚这个漏洞涉及的概念、如何形成的，如何利用它原文地址：https://www.mdsec.co.uk/2026/03/rip-r

2026年Django爆出的SQL注入漏洞CVE-2026-1312: Potential SQL injection via QuerySet.order_by and FilteredRelation 看描述有点意思，似乎是解决了我一直无法bypass的一个点，于是进行深入分析下

该样本采用**VBS→PowerShell→.NET三层嵌套混淆**，结合**AES加密**与**Process Hollowing内存注入**技术，最终释放**Remcos RAT远控木马**。全程依托AI辅助分析：快速理清混淆代码逻辑、识别API调用模式、解析进程镂空特征，显著提升多层嵌套恶意代码的分析效率。

本文先分析Hessian1/2的序列化与反序列化过程，接着给出反序列化临时修复的代码，然后分析整理常见的Hessian反序列化利用链，最后补充其他的Hessian知识点。

逆向利用CFG绕过、堆栈欺骗、DLL Hollowing等技术的加载器

本文旨在研究 PDF 解析器 Xpdf 中的深度递归漏洞（CVE-2019-13288）。通过使用 AFL++ 模糊测试工具对 Xpdf 3.02 进行压力测试，成功捕获了由于畸形 PDF 文件引起的拒绝服务（DoS）崩溃

A vulnerability labeled as problematic has been found in Apache Seata up to 2.1.x. This impacts an unknown function. Executing a manipulation can lead to deserialization. This vulnerability is registered as CVE-2024-47552. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

A vulnerability described as problematic has been identified in Apache Seata up to 2.2.x. This affects an unknown part. The manipulation results in deserialization. This vulnerability is reported as CVE-2025-32897. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 7.0-rc2. It has been rated as critical. Affected by this vulnerability is the function bcm_tx_setup of the component can. The manipulation leads to improper initialization. This vulnerability is referenced as CVE-2026-23362. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.76/6.18.16/6.19.6/7.0-rc1. Affected by this issue is the function dw_pcie_ep_raise_msix_irq of the component PCI. The manipulation results in privilege escalation. This vulnerability is identified as CVE-2026-23361. The attack can only be performed from the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.76/6.18.16/6.19.6/7.0-rc2. This affects the function acpi_lock of the component i2c. This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2026-23369. The attack is only possible within the local network. No exploit exists. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.76/6.18.16/6.19.6/7.0-rc2. Affected is the function mt7925_mac_write_txwi_80211 of the component wifi. The manipulation results in out-of-bounds read. This vulnerability was named CVE-2026-23363. The attack needs to be approached within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability labeled as problematic has been found in Linux Kernel up to 7.0-rc1. Affected by this issue is the function memcmp of the component ksmbd. Such manipulation leads to observable timing discrepancy. This vulnerability is referenced as CVE-2026-23364. The attack needs to be initiated within the local network. No exploit is available. The affected component should be upgraded.

A vulnerability classified as critical has been found in Linux Kernel up to 7.0-rc1. This issue affects some unknown processing of the component USB Endpoint. The manipulation leads to denial of service. This vulnerability is listed as CVE-2026-23365. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.18.16/6.19.6/7.0-rc1. Impacted is the function drm_client_modeset_probe. The manipulation results in null pointer dereference. This vulnerability is cataloged as CVE-2026-23366. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is advised.