BruceFeIix / picker

GNU General Public License v3.0

46 stars 6 forks source link

[每日信息流] 2024-09-17 #1229

Open BruceFeIix opened 2 months ago

BruceFeIix commented 2 months ago

每日安全资讯（2024-09-17）

SecWiki News
- [ ] SecWiki News 2024-09-16 Review
Der Flounder
- [ ] Keychain Access app in new location on macOS Sequoia
- [ ] Blocking system extension disablement via System Settings on macOS Sequoia
Tenable Blog
- [ ] CloudImposer: Executing Code on Millions of Google Servers with a Single Malicious Package
Trustwave Blog
- [ ] Transforming IT Security with Microsoft Defender Suite
Recent Commits to cve:main
- [ ] Update Mon Sep 16 22:29:27 UTC 2024
- [ ] Update Mon Sep 16 14:32:54 UTC 2024
- [ ] Update Mon Sep 16 06:34:13 UTC 2024
Security Boulevard
- [ ] After CrowdStrike Crash, Microsoft Mulls New Windows Security Tools
- [ ] USENIX Security ’23 – AutoFR: Automated Filter Rule Generation for Adblocking
- [ ] A Personally Identifiable Cyber Jihadist Domain Portfolio
- [ ] Point Product vs. CDN for Bot Protection: Striking the Right Balance
- [ ] The Intersection Between a Snowden Slide and a Supposedly Malicious MD5
- [ ] The Top 7 AlgoSec Alternatives
- [ ] Randall Munroe’s XKCD ‘Asteroid News’
- [ ] Top 5 Enterprise Tufin Competitors
- [ ] Harnessing the Power of GRC Software for Enhanced Business Resilience and Compliance
- [ ] Apple Seeks to Drop Its Lawsuit Against Spyware Maker NSO
Files ≈ Packet Storm
- [ ] VICIdial SQL Injection / Remote Code Execution
- [ ] Rejetto HTTP File Server 2.3m Template Injection / Arbitrary Code Execution
- [ ] Calibre 7.14.0 Remote Code Execution
- [ ] Veeam Backup And Replication 12.1.2.172 Remote Code Execution
- [ ] Unleashing Worms And Extracting Data
- [ ] Debian Security Advisory 5769-1
- [ ] Red Hat Security Advisory 2024-6667-03
- [ ] Ship Ferry Ticket Reservation System 1.0 SQL Injection
- [ ] Reservation Management System 1.0 Cross Site Request Forgery
- [ ] Red Hat Security Advisory 2024-6663-03
- [ ] Online Job Recruitment Portal Project 1.0 Arbitrary File Upload
- [ ] Red Hat Security Advisory 2024-6662-03
- [ ] IFSC Code Finder Portal 1.0 Insecure Settings
- [ ] Red Hat Security Advisory 2024-6661-03
- [ ] GYM Management System 1.0 Insecure Settings
- [ ] Red Hat Security Advisory 2024-6656-03
- [ ] Emergency Ambulance Hiring Portal 1.0 SQL Injection
- [ ] ManageEngine DeviceExpert 5.9.7 Build 5970 Hash Disclosure
- [ ] COVID19 Testing Management System 1.0 Insecure Settings
- [ ] BP Monitoring Management System 1.0 SQL Injection
- [ ] Auto/Taxi Stand Management System 1.0 SQL Injection
一个被知识诅咒的人
- [ ] 探索Go语言中的Goroutine并发机制
- [ ] 并发与并行的区别：深入理解Go语言中的核心概念
CXSECURITY Database RSS Feed - CXSecurity.com
- [ ] MPlayer Lite r33064 Buffer Overflow
- [ ] SPIP BigUp 4.3.1 / 4.2.15 / 4.1.17 Unauthenticated Remote Code Execution
- [ ] SFTRS - PHP (by: oretnom23 ) v1.0 Multiple-SQLi
Doonsec's feed
- [ ] 浅谈Zstandard压缩算法
- [ ] (自从踏入安全这行，从没应急成功过任何病毒) windows系统下一次病毒失败的应急
- [ ] Web-Scanner1.0正式版—全新的WEB目录探测工具
- [ ] 《凡人歌》中的网络安全组组长：惊恐症+抑郁症
- [ ] 又一位群友退出网安，但转行前端
- [ ] 记!一次供应链导致教育漏洞通杀，通杀五十多个学校弱口令，SQL注入，越权修改密码！(新手小白也能看懂的文章)
- [ ] 红队安全攻防知识库
- [ ] 网络犯罪分子正在使用的工具
- [ ] 浏览器隐私数据窃取工具 -- HACK BROWSER DATA 海外替代版
- [ ] 间谍的世界：主动聆听！
- [ ] 假验证码测试在Windows上安装恶意软件
- [ ] 研究人员发现 TrickMo 银行木马的新变种
- [ ] 印度需要加强太空和关键基础设施的网络安全
- [ ] 网络犯罪分子的内心深处：是什么驱使黑客进行攻击？
- [ ] 南昌市某学校暴露超4000条学生个人信息被行政处罚
- [ ] 读读《中华人民共和国网络安全法》
- [ ] 谈谈元数据/主数据对于网络安全业务标准化的辅助
- [ ] 小小记录一下今天投标材料技术文档撰写感受
- [ ] 秦安：抗美援朝力量再聚合！中俄军演，朝鲜发射导弹，韩国凌乱了
- [ ] 秦安：俄军400多艘军舰、9万多士兵开始行动，中国如何联合行动？
- [ ] 秦安：要坚决遏制，美国有意在日本部署中程导弹，目标还能是谁？
- [ ] 秦安：又是911，特朗普和哈里斯的首场辩论，释放出三重恐怖氛围
- [ ] 牟林：奇耻大辱——当下的中国舆论场爱国居然成了问题
- [ ] 王常胜：骗取和套取医疗保险资金，就是在掏空国企央企和国家财富
- [ ] 张志坤：美国扛不住了，到了该试一试“休克疗法”的时候
- [ ] 牟林：是为展示我们扩大开放的诚意吗？
- [ ] Rootkit：隐形杀手的秘密与防御
- [ ] 各大云网盘相继出事，谁来守护云上数据安全。
- [ ] 【安全圈】美军特战部队首次展示WiFi“网络爆破”新技能
- [ ] 【安全圈】Google Cloud 加强了备份和灾难恢复服务，通过不可修改的保险库为企业提供额外保护
- [ ] 【安全圈】名为Hadooken的新型Linux恶意软件以Oracle WebLogic服务器为目标
- [ ] 【安全圈】Fortinet 通过第三方确认客户数据泄露
- [ ] 《凡人歌》：网络安全组电话响3声必须接，安全组长被压迫患得惊恐症、抑郁症
- [ ] 新增两篇开源情报相关资料
- [ ] 白盒代码安全审计系统及静态 php 代码审计
- [ ] 某群管理系统全版本存在登录绕过漏洞
- [ ] 心里的火永远不要灭，哪怕别人只能看到烟。
- [ ] House of water & TFCCTF 2024 MCGUAVA
- [ ] 30小时入门CTF——赛场大显身手
- [ ] AUTOSAR 内存分区和MPU关系讲解
- [ ] 一文详解汽车操作系统现状
- [ ] 【海外SRC赏金挖掘】Host注入导致任意账户密码重置（邮箱重置密码新思路）
- [ ] PoE三种标准：标准 PoE、PoE+、PoE++，网络工程师必知！
- [ ] 包惠僧回忆录
- [ ] 中国信息安全测评中心招聘网安技术岗
- [ ] 人工智能模型也有安全隐患!攻击实例及反制策略展示
- [ ] 【AI速读】美国政府问责局建议加大全球基础设施投入以应对中国“一带一路”
- [ ] 自写C2，补充大脑营养，促进骨骼生长
- [ ] 网络安全从业人员必会的目录扫描工具Dirsearch
- [ ] WordPress网站泄露7千万用户登录凭据，警惕账户接管攻击（ATO）
- [ ] 美国国家安全局密码中心，揭开其全球监控的真相
- [ ] 开源情报信息，一网打尽！
- [ ] 【中秋也得卷啊】| 小迪安全培训
- [ ] 从水刑到剥夺睡眠：CIA的\'强化审讯\'技术全揭秘
- [ ] 发布 | 金融监管总局印发《关于加强银行业保险业移动互联网应用程序管理的通知》
- [ ] 【版本更新】ProxyCat - 如猫咪般灵活的代理池中间件 v1.4 Release！
- [ ] XOR 已知明文攻击
- [ ] 天天都在谈VXLAN，普通网工平时很难用得到！
- [ ] 信奥入门 | C++编写中秋祝福小程序
- [ ] 小程序渗透 | 利用ce修改器挖掘内存修改漏洞
- [ ] 漏洞挖掘 | 发现隐藏子域的虚拟主机
- [ ] 俄罗斯APT Cozy Bear利用Google Drive传播恶意软件，外交机构成主要目标
- [ ] Hack The Box - Crafty
- [ ] 近期暗网0day售卖情报预警
- [ ] bubble.io源码被泄露
- [ ] 大公司并不能掌控自己所\'拥有\'的数据
- [ ] 远程访问工具过度使用引发了安全和运营方面的担忧
- [ ] django实现开发、测试、生产环境配置区分
- [ ] Gamer打卡：看看号称中国最大的游戏博物馆到底如何？
- [ ] 智能网联汽车车载端信息安全技术要求(T-CSAE101—2018)
- [ ] SOA软件架构设计与开发-自动驾驶系统架构师在线证书培训课程（高级班）
- [ ] T CSAE 252-2022 智能网联汽车车载端信息安全测试规程中国汽车工程学会
- [ ] 惊天发现！这个神器竟让VT全绿Shellcode变的触手可及
- [ ] 分享的图片、视频、链接
- [ ] [0916]一周重点暗网情报｜天际友盟情报站
- [ ] 「漏洞复现」用友U8 Cloud AddTaskDataRightAction SQL注入漏洞
- [ ] OSCP&OSEP备考小群
- [ ] 2024全球工业互联网大会——工业互联网标识解析专题论坛在沈阳成功举办
- [ ] 你干活怎么这么慢
- [ ] 机场招聘网络安全岗
- [ ] 报名开启！第七届“强网”拟态防御国际精英挑战赛正式官宣
- [ ] 【学术征文】第四届网络空间内生安全发展大会暨学术论坛征稿启事
- [ ] 第四届“美亚杯”电子数据取证竞赛资格赛手工版WP
- [ ] 你遇到过哪些奇葩面试题目；如何考察渗透测试与安全管理能力| FB甲方群话题讨论
- [ ] 2024年推出的11个顶级漏洞悬赏项目
- [ ] SessionExec：一款针对会话安全的安全命令测试工具
- [ ] 解锁古文字密码：中世纪文学的独特魅力
- [ ] 代码审计 | phpcmsV9.6超详细RCE代审流程
- [ ] 表弟掉进“表哥”连环套？宁夏一起AI换脸诈骗案细节曝光！|公然入侵国家机关系统篡改网络传输数据，法院判了！
- [ ] 大量90年代硬盘无法读取数据，音乐行业损失惨重
- [ ] 记一次实战中解密JVMTI加密过的jar包
- [ ] 批量获取攻防资产访问截图
- [ ] 漏洞预警 | 泛微E-Cology SQL注入漏洞
- [ ] 0916 | 排名·香港·中国网络安全科技商业评级
- [ ] RedTeam 重点资产指纹识别工具
- [ ] 让你配置 Linux 路由，你该怎么配置？
- [ ] Kubernetes 网络介绍（三）
- [ ] 申报截止倒计时7天 | CCF-绿盟科技“鲲鹏”科研基金
- [ ] 网络安全人员角色分类和能力要求框架
- [ ] 大型语言模型（LLM）威胁分类
- [ ] YD∕T 4680-2024 电信网和互联网数据安全管控平台技术要求和测试方法
- [ ] YD∕T 4667-2024 携号转网服务网间拨测技术要求
- [ ] YD∕T 4665-2024 5G消息不同运营商业务互通总体技术要求
- [ ] YD∕T 3956-2024 电信领域数据安全风险评估规范
- [ ] YD∕T 3867-2024 电信领域重要数据识别指南
- [ ] YD∕T 2664-2024 公用电信设施保护安全等级要求
- [ ] 理论引领，技术突破，网络空间地理学的理论、技术与实战论坛
- [ ] NIST Special Publication 800-181 全国网络安全教育倡议（NICE）网络安全劳动力框架
modexp
- [ ] Shellcode: Windows on ARM64 / AArch64
Horizon3.ai
- [ ] CVE-2024-8190: Investigating CISA KEV Ivanti Cloud Service Appliance Command Injection Vulnerability
Lenny Zeltser
- [ ] What to Do With Products Without SSO?
Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
- [ ] The Intellexa Commercial Spyware Consortium, The Predator Spyware, NSO Group and Bulgaria's Circles Commercial Spyware Vendor
- [ ] A Personally Identifiable Cyber Jihadist Domain Portfolio
- [ ] The Intersection Between a Snowden Slide and a Supposedly Malicious MD5
- [ ] International Embassies Web Malware Exploitation Serving Domain Properties
Malwarebytes
- [ ] 23andMe to pay $30 million in settlement over 2023 data breach
- [ ] A week in security (September 9 – September 15)
Reverse Engineering
- [ ] /r/ReverseEngineering's Weekly Questions Thread
- [ ] Fixing an Elgato HD60 S HDMI capture device with the help of Ghidra
text/plain
- [ ] Welcome to Fall, I guess?
SentinelOne
- [ ] PinnacleOne ExecBrief | Cyber Gray Zone Risks in the Indo-Pacific
KitPloit - PenTest & Hacking Tools
- [ ] Psobf - PowerShell Obfuscator
奇客Solidot–传递最新科技情报
- [ ] Flappy Bird 原作者否认参与了新游戏
- [ ] 德国主权科技基金向 Samba 项目投资 69 万欧元
FreeBuf网络安全行业门户
- [ ] 美军特战部队首次展示WiFi“网络爆破”新技能
青衣十三楼飞花堂
- [ ] 包惠僧回忆录
dotNet安全矩阵
- [ ] 一个永久的.NET渗透工具和知识仓库
- [ ] SoapShell 更新 | 新增调用cmd执行系统命令
- [ ] .NET内网实战：通过FSharp白名单执行命令
黑海洋 - WIKI
- [ ] AcWing工程全套课程
- [ ] Napkin：AI将文字转可视化工具
- [ ] 新浪微博备份工具 – MemoMe（原Speechless）
- [ ] 闲鱼做好这5个步骤让你店铺迅速抢占市场流量【揭秘】
- [ ] 在线学生证生成器 (娱乐)
极客公园
- [ ] iPhone 16「秋裤色」丑上热搜；特斯拉 Robotaxi 小车曝光；《流浪地球2》3D 版上映 | 极客早知道
安全圈
- [ ] 【安全圈】美军特战部队首次展示WiFi“网络爆破”新技能
- [ ] 【安全圈】Google Cloud 加强了备份和灾难恢复服务，通过不可修改的保险库为企业提供额外保护
- [ ] 【安全圈】名为Hadooken的新型Linux恶意软件以Oracle WebLogic服务器为目标
- [ ] 【安全圈】Fortinet 通过第三方确认客户数据泄露
中国信息安全
- [ ] 招聘启事 | 中国信息安全测评中心招聘对外联络岗非编人员
- [ ] 发布 | 金融监管总局印发《关于加强银行业保险业移动互联网应用程序管理的通知》
- [ ] 答记者问 | 金融监管总局有关负责人就《关于加强银行业保险业移动互联网应用程序管理的通知》答记者问
丁爸情报分析师的工具箱
- [ ] 【AI速读】美国政府问责局建议加大全球基础设施投入以应对中国“一带一路”
Securityinfo.it
- [ ] Un malware Android ha infettato più di un milione di TV Box
- [ ] CERT-AGID 7 – 13 settembre: 350 indicatori di compromissione e due nuove campagne di phishing
Have I Been Pwned latest breaches
- [ ] Instituto Nacional de Deportes de Chile - 319,613 breached accounts
NetSPI
- [ ] Mapping Mainframe Memory Made Easy
SANS Internet Storm Center, InfoCON: green
- [ ] Managing PE Files With Overlays, (Mon, Sep 16th)
- [ ] ISC Stormcast For Monday, September 16th, 2024 https://isc.sans.edu/podcastdetail/9138, (Mon, Sep 16th)
Schneier on Security
- [ ] Legacy Ivanti Cloud Service Appliance Being Exploited
ICT Security Magazine
- [ ] Intelligenza artificiale e cybersecurity: rischi e prospettive per diventare resilienti
- [ ] Adversarial Machine Learning – Aspetti Scientifici
Unsupervised Learning
- [ ] UL NO. 450: Thoughts on o1-preview and the Path to AGI
Over Security - Cybersecurity news aggregator
- [ ] Instituto Nacional de Deportes de Chile - 319,613 breached accounts
- [ ] Microsoft fixes bug crashing Microsoft 365 apps when typing
- [ ] ‘Clipper’ malware is being used to steal crypto, Binance warns
- [ ] Feds sentence 12 crypto thieves behind SIM swaps, home invasions
- [ ] CISA warns of Windows flaw used in infostealer malware attacks
- [ ] Owner of only US platinum mine confirms data breach after ransomware claims
- [ ] Exploit code released for critical Ivanti RCE flaw, patch now
- [ ] Data on nearly 1 million NHS patients leaked online following ransomware attack on London hospitals
- [ ] Microsoft rolls out Office LTSC 2024 for Windows and Mac
- [ ] US hits Intellexa spyware maker with more sanctions
- [ ] US cracks down on spyware vendor Intellexa with more sanctions
- [ ] Chrome switching to NIST-approved ML-KEM quantum encryption
- [ ] D-Link fixes critical RCE, hardcoded password flaws in WiFi 6 routers
- [ ] CISA Adds Ivanti Cloud Services Appliance Vulnerability to Known Exploited Vulnerabilities Catalog (CVE-2024-8190)
- [ ] Top Cyber Threats of the Week: Brute Force Attacks, CVE Attempts and Malware Infections
- [ ] China suspected of hacking diplomatic body for Pacific islands region
- [ ] Un malware Android ha infettato più di un milione di TV Box
- [ ] German radio station forced to broadcast 'emergency tape' following cyberattack
- [ ] Il dominio italiano di Excite riutilizzato in una campagna di malspam via PEC
- [ ] CERT-AGID 7 – 13 settembre: 350 indicatori di compromissione e due nuove campagne di phishing
- [ ] GitLab Community and Enterprise Editions Receive New Updates to Mitigate Severe Security Risks
KitPloit - PenTest Tools!
- [ ] Psobf - PowerShell Obfuscator
Deeplinks
- [ ] Unveiling Venezuela’s Repression: Surveillance and Censorship Following July’s Presidential Election
- [ ] The Climate Has a Posse – And So Does Political Satire
Security Affairs
- [ ] D-Link addressed three critical RCE in wireless router models
- [ ] Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024
- [ ] SolarWinds fixed critical RCE CVE-2024-28991 in Access Rights Manager
- [ ] Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure
- [ ] Hacker tricked ChatGPT into providing detailed instructions to make a homemade bomb
Your Open Hacker Community
- [ ] Deauth Attack for Smart TVs
Deep Web
- [ ] Time to build a legit marketplace 🍀(for educational purposes only)
Information Security
- [ ] Common Myths About Passwordless Authentication Debunked
Technical Information Security Content & Discussion
- [ ] Exploiting Microsoft Kernel Applocker Driver (CVE-2024-38041)
- [ ] Hacking the Planet - A DEFCON ICS CTF 2024 Retrospective
- [ ] CVE-2024-8190: Investigating CISA KEV Ivanti Cloud Service Appliance Command Injection Vulnerability
The Hacker News
- [ ] Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution
- [ ] North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware
- [ ] From Breach to Recovery: Designing an Identity-Focused Incident Response Playbook
- [ ] Master Your PCI DSS v4 Compliance with Innovative Smart Approvals
- [ ] Apple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence Exposure
- [ ] Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks