Aggregator

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

更新日志新增支持jspjs/aspxcsharp类型除内存马/内存马管理模块以外，均支持Tomcat10内存

As-Exploits 1.5更新内容

As-Exploits 1.5更新内容

As-Exploits 1.5更新内容

这是一本能让你从零开始学习AWD并深入AWD的手册，我也会根据经验和需求逐步完善相关内容。如果你要参加AWD相关比赛，相信本项目能给你带来帮助~

一站跟进国内外最新云安全热点资讯~

如果你要参加AWD相关比赛，相信本项目能给你带来帮助~手册版本号：V1.2.2-2023/10/21这是一本能让你从零开始学习AWD并深入AWD的手册，我也会根据经验和需求逐步完善相关内容如果你...

使用langchain-chatchat搭建安全知识库

使用langchain-chatchat搭建安全知识库

使用langchain-chatchat搭建安全知识库

Explore an in-depth analysis of the critical software Web UI Privilege Escalation Vulnerability, CVE-2023-20198, in Cisco IOS XE. Learn about its exploitation in the wild, the threat it poses, and the current lack of a patch. Understand how it's leveraged for initial access and the subsequent delivery of an implant through an undetermined mechanism. Also discover how GreyNoise can help provide timely intelligence surrounding activity related to these Cisco IOS XE systems.‍

Large Language Model (LLM) applications and chatbots are quite commonly vulnerable to data exfiltration. In particular data exfiltration via Image Markdown Injection is frequent. This post describes how Google Cloud’s Vertex AI - Generative AI Studio had this vulnerability that I responsibly disclosed and Google fixed. A big shout out to the Google Security team upfront, it took 22 minutes from report submission to receiving a confirmation from Google that this is a security issue that will be fixed.