安全研究 Security Research
浅谈安全运营平台中数据分析交互逻辑的设计
https://zhuanlan.zhihu.com/p/339629476
CVE-2020-26217/26259 Xstream远程代码执行/任意文件删除漏洞分析
https://xz.aliyun.com/t/8694
cobalt strike笔记-listener利用手法和分析
https://mp.weixin.qq.com/s?__biz=MzUyMTA0MjQ4NA==&mid=2247499650&idx=1&sn=9754656a2f0ed04ba46e32e91174c7e6
安全工具 Security Tools
CobaltStrike4.2
https://mp.weixin.qq.com/s?__biz=MzU0MjUxNjgyOQ==&mid=2247486516&idx=1&sn=d2019f3ad5cc9d884bcf9c5104252e66
AutoGadgetFS:一款针对USB设备的安全测试工具
https://github.com/ehabhussein/AutoGadgetFS
EHole:红队重点攻击系统指纹探测工具
https://mp.weixin.qq.com/s?__biz=MzUyMTA0MjQ4NA==&mid=2247499650&idx=2&sn=d29f0b3baf344b9775e3023dfb1ac708
安全资讯 Security Information
SolarWinds发布有关新SUPERNOVA恶意软件的更新公告
https://www.bleepingcomputer.com/news/security/solarwinds-releases-updated-advisory-for-new-supernova-malware/
Emotet僵尸网络又回来了,每天有10万名收件人
https://securityaffairs.co/wordpress/112650/malware/december-emotet-redacted.html
疑似双尾蝎APT组织以CIA资助哈马斯相关信息为诱饵
https://www.freebuf.com/articles/paper/256422.html
安全事件 Security Incident
VMware最近确认在SolarWinds黑客攻击中遭到破坏
https://www.bleepingcomputer.com/news/security/vmware-latest-to-confirm-breach-in-solarwinds-hacking-campaign/
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论