-
TL;DR: using MemProcFS Yara from Rust results in SIGSEGV
I am using yarac 4.5.0 (https://github.com/VirusTotal/yara/archive/refs/tags/v4.5.0.tar.gz compiled from source)
to compile the YARA forge …
-
if you run it like this, then the extended disk appears, but if you run a full-fledged script through powershell, nothing happens
good > C:\MemProcFS-Analyzer-v1.0\Tools\MemProcFS>MemProcFS.exe -de…
-
I made custom Multipass machine called BanditLab to perform for digital forensics and incident response primarily to run on Apple ARM machines. Project github: https://github.com/0CM/BinaryBanditsFore…
-
项目简介
一个 Red Team 攻击的生命周期,整个生命周期包括:
信息收集、攻击尝试获得权限、持久性控制、权限提升、网络信息收集、横向移动、数据分析(在这个基础上再做持久化控制)、在所有攻击结束之后清理并退出战场。
和一个著名的蓝队项目:https://github.com/meitar/awesome-cybersecurity-blueteam
另一个专门扫描破解的项目
…
-
Thank you for taking your time to read this!
I am using a android emulator to create a memory dump, in order for me to create a profile in volatility and then analyze the memory dump.
Device: Pixe…
-
# 每日安全资讯(2023-08-20)
- SecWiki News
- [ ] [SecWiki News 2023-08-19 Review](http://www.sec-wiki.com/?2023-08-19)
- 先知安全技术社区
- [ ] [tenda固件栈溢出漏洞挖掘和iot常用工具介绍和使用](https://xz.aliyun.com/t/12793)
- […
-
# 每日安全资讯(2023-07-23)
- Sploitus.com Exploits RSS Feed
- [ ] [Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Python Requests exploit](https://sploitus.com/exploit?id=1ACA7…
-
C:\Users\Dennis\Desktop\Forensics Tools\volatility3-2.5.0> python.exe .\vol.py -f "C:\Users\Dennis\Downloads\memdump.mem" windows.vadyarascan --yara-file .\stringsearch.yar
Volatility 3 Framework 2.5…
-
# 每日安全资讯(2023-08-27)
- HackerOne Hacker Activity
- [ ] [jdbc apache airflow provider code execution vulnerability](https://hackerone.com/reports/2065288)
- [ ] [odbc apache airflow provider code …
-
# 每日安全资讯(2023-07-12)
- HackerOne Hacker Activity
- [ ] [Rate limit missing sign-in page](https://hackerone.com/reports/1285441)
- [ ] [2M Reports on HackerOne Celebration! - Ability to bulk-submi…