Aggregator

It’s Raining Implants: How to Generate C2 Framework Implants At Scale

VMWare Security Blog - Threat Analysis
2 years 7 months ago

Command-and-control (C2) frameworks serve as a means to remotely manage and access compromised devices. They allow for the creation of various payload types, called implants, that are dropped on victim machines by attackers, enabling them to retain access and control over the infected victim.  While legitimate penetration testing utilizes C2 frameworks to evaluate system security … Continued

The post It’s Raining Implants: How to Generate C2 Framework Implants At Scale appeared first on VMware Security Blog.

Sebastiano Mariani

从0到1的ChatGPT - 入门篇

LoRexxar's Blog
2 years 7 months ago

在2023年年初,ChatGPT像一颗流星一样突然出现在大家的面前,围绕ChatGPT的探索也以各种各样的方式出现在大家的面前。

相比基于ChatGPT的探索,openai的平台和国内的对抗反倒在潜移默化的升级,我没有了解过openai到底有什么样的背景导致一直执着于国内使用者的封禁,这篇文章就先讲讲我在这个过程的所有探索以及相应的解决方案吧。

LoRexxar

从0到1的ChatGPT - 入门篇(二) - 如何与ChatGPT对话?

LoRexxar's Blog
2 years 7 months ago

在上篇文章的结尾,我提到了ChatGPT其实更像是一把铲子,在拥有这把铲子之前,我们只知道可以把土堆成房子,但是不知道用什么把土堆起来,但在有了这把铲子之后,铲土只是铲子最直白的利用,如何用铲子堆一个又大又漂亮的房子可能我们还不知道,但至少我们现在已经开始尝试做这样的事情了。

其实从ChatGPT诞生至今,所有从事相关研究的朋友都在努力的在ChatGPT上探索各种各样的使用方式,甚至现在已经诞生了所谓的prompt工程师。

这篇文章就聊聊很多现在已有的关于ChatGPT使用的技巧。

LoRexxar

Critical Flaw in Sophos Web Appliance

X-Force Exchange - Collection Feed
2 years 8 months ago
Summary Sophos has released an update to mitigate three vulnerabilities in the Sophos Web Appliance (SWA). The most important of these three flaws is rated as critical and if exploited could lead to the execution of arbitrary code. Threat Type Vulnerability Overview **Update 04/25/2023** According to multiple sources, now that the patch for this vulnerability has been reverse engineered, functional Proof of Concept (POC) exploit code has been released. The POC code is available now to the public on Github

Managed ad