Aggregator

py恶意样本分析实战

最近，spring cloud getway 又出了一个10.0分的 SpEL漏洞 这个漏洞和之前的CVE-2022-22947漏洞一样 依然是在热更新路由时触发表达式执行 之前的漏洞不是已经修复的非常完美了吗，为什么还能继续利用呢？

listener_gophertcp通信机制与流量解密分析

一句话背景：病毒通过某网页人机验证诱导执行恶意文件

本文基于阿里AI挑战赛靶场一与靶场二的实战经验，系统性拆解AI智能体在企业场景下的安全攻防逻辑。

本指南是一份系统化、实战化的验证码安全测试权威手册。我们摒弃了孤立看待验证码漏洞的视角，创新性地采用生命周期分析法，将验证码的安全性问题置于多个核心阶段进行深度剖析。

OpenAI готовится монетизировать память пользователей, несмотря на протесты Альтмана.

模糊测试作为自动化漏洞发现的核心技术，已成为现代软件安全测试的重要组成部分。libFuzzer作为LLVM生态中的代表性工具，凭借其覆盖率驱动的智能变异策略和易于集成的特性，广泛应用于各类软件项目的安全测试中 本文从模糊测试的基本原理出发，系统介绍libFuzzer的核心概念、环境配置、实战应用和调试技巧。通过具体的代码示例和实战案例，帮助读者掌握libFuzzer的基础使用方法，建立完整的模糊

Hessian2反序列化

前言微信公众号刷到了这个 cve，cvss 10 分，一个满分漏洞，去看了下其官方通告发现之前在学习 springboot 的利用时简单看了下和这个 cve 类似的一个洞， cve-2022-22947 ，当时是学了下咋打，没具体分析源码，这个满分漏洞其实就是对 2022 那个 cve 的一个，先分析下 2022 的洞，方便后续分析这个 cveCVE-2022-22947 SPEL RCE环境：h

分享阿里AI安全挑战赛三赛道实战经验，深入剖析大模型推理攻防、业务漏洞挖掘与安全产品绕过技术。

详解LOLBAS特性，利用系统自带的合法功能来实施隐蔽操作

在日常的渗透测试中，我们常会遇到一片空白的页面，让许多师傅感到无从下手。其实，这种“空白”往往只是表象，背后可能隐藏着未被发现的管理后台、API接口甚至是安全漏洞。本文总结了几种实用的思路，旨在将“空白页”变为突破口，打开渗透测试的新视角。

Как гравитационный щит предотвратил падение протопланет в адский огонь.

前几天都在研究高版本的fastjson，都知道高版本的fastjson对于@type多了非常多的限制，导致反序列化漏洞越来越难，特别是白名单让漏洞更难利用，不过需要探测 fastjson 是作为打入的第一道关卡，探测的手法也多种多样，下面来分析一个畸形 payload ，不符合 json 格式但是任然能够解析

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.10.140/5.15.64/5.19.6. Affected is the function smc_fback_replace_callbacks in the library lib/refcount.c. Executing manipulation of the argument sk_user_data can lead to improper update of reference count. This vulnerability is handled as CVE-2022-49979. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.19.6 and classified as critical. This impacts the function pvr_probe of the component media. The manipulation leads to memory leak. This vulnerability is traded as CVE-2022-49982. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.

A vulnerability was found in Linux Kernel up to 4.19.257/5.4.212/5.10.142/5.15.67/5.19.6 and classified as problematic. This issue affects the function acpi_find_last_cache_level of the component arm64. Such manipulation leads to insufficient verification of data authenticity. This vulnerability is uniquely identified as CVE-2022-49964. The attack can only be initiated within the local network. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.19.7. The impacted element is the function vc_do_resize of the component vt. Performing manipulation results in out-of-bounds read. This vulnerability is reported as CVE-2022-49948. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.19.7. Affected by this vulnerability is the function mark_chain_precision of the component bpf. Executing manipulation can lead to unchecked return value. This vulnerability appears as CVE-2022-49961. The attacker needs to be present on the local network. There is no available exploit. Upgrading the affected component is advised.