Aggregator

Plaguards is a cutting-edge security tool built to streamline and automate the deobfuscation of obfuscated PowerShell scripts, empowering security teams to rapidly identify Indicators of Compromise (IOCs) and determine whether they represent valid threats...

The post Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams appeared first on Penetration Testing Tools.

· 知情人士称泡泡玛特年初已扩产能，但需求远超供应链反应速度； · 迪士尼和环球影业对AI公司提起版权诉讼；

轩辕杯”云盾砺剑CTF挑战赛-reverse方向全解

01.NET内网安全攻防报刊小报童电子报刊【.NET内网安全攻防】也正式上线了，引入小报童也是为了弥补知识星球

A vulnerability has been found in Microsoft Windows and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Storage Management Provider. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2025-33063. Attacking locally is a requirement. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in Microsoft Windows. Affected by this vulnerability is an unknown functionality of the component Storage Management Provider. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2025-24065. Attacking locally is a requirement. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Microsoft Windows. This affects an unknown part of the component Storage Management Provider. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2025-24069. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Microsoft Windows 11 22H2/11 23H2/11 24H2/Server 2025. This issue affects some unknown processing of the component Virtualization-Based Security. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2025-47969. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, has been found in Microsoft Windows Server 2016/Server 2019/Server 2022/Server 2022 23H2/Server 2025. Affected by this issue is some unknown functionality of the component DHCP Server Service. The manipulation leads to protection mechanism failure. This vulnerability is handled as CVE-2025-33050. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Local Security Authority. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2025-33057. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in Microsoft Windows 11 24H2/Server 2025. Affected by this vulnerability is an unknown functionality of the component App Control for Business. The manipulation leads to improper verification of cryptographic signature. This vulnerability is known as CVE-2025-33069. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in MIK CryptX up to 0.064 on Perl. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component LibTomCrypt. The manipulation leads to dependency on vulnerable third-party component. This vulnerability is known as CVE-2025-40912. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

某红队高级免杀样本分析

黑产猎人，Go！

该挑战涉及三个阶段渗透测试：首先利用CMSeasy SQL注入获取管理员账号并上传webshell获取flag01；然后搭建内网代理，利用SMB弱口令（administrator:qwe123!@#）获取域内机器用户凭证获得flag02；最后利用AD-CS漏洞，创建虚假机器账号申请证书，执行DCSync获取域控administrator哈希，成功拿下flag03。整个过程展示了完整的域渗透技巧链。

ChatGPT o3, which has been available via API, is now 80% cheaper for developers, and there's no visible impact on performance. [...]

各国动态既反映了全球化时代国家发展的共性（外交合作、经济改革、应对安全挑战），又因地缘位置、资源条件、政权特性等因素呈现差异化路径。改革与合作的推进速度、内部矛盾的解决能力，将决定各国未来在全球格局中的定位。

什么是马甲？马甲，也称为研究账户，是一种在线虚构身份，用于掩盖 OSINT 调查员的真实身份并获取需要账户才能访问的信息。