issues
search
Tyaoo
/
picker
GNU General Public License v3.0
107
stars
17
forks
source link
[每日信息流] 2024-09-06
#757
Open
Tyaoo
opened
3 weeks ago
Tyaoo
commented
3 weeks ago
每日安全资讯(2024-09-06)
奇安信攻防社区
[ ]
转载|保姆级教程---前端加密的对抗(附带靶场)
[ ]
Solon框架注入内存马
SecWiki News
[ ]
SecWiki News 2024-09-05 Review
Doonsec's feed
[ ]
《网络数据安全管理条例(草案)》审议通过,分级分类再引热议!
[ ]
倒计时3天!2024中国(厦门)国际警安法务科技展即将开幕
[ ]
用DLNA投屏链接下载手机APP视频
[ ]
秦安:普京出访蒙古,逮捕令、生物实验室、稀土和中国,都很敏感
[ ]
王常胜:被动挨打不还手不是开战,主动出击降伏敌人也不是开战
[ ]
羊城杯2024 WP
[ ]
用友NC show_download_content SQL注入漏洞复现及POC
[ ]
u200b用友UFIDA NC portal/pt/file/upload接口存在任意文件上传漏洞 附POC
[ ]
X管家listUploadIntelligent.htm接口存在sql注入 附POC
[ ]
9.5hvv情报
[ ]
【资讯】关于共筑新时代全天候中非命运共同体的北京宣言(全文)
[ ]
【资讯】国家网信办发布《2024年数字化绿色化协同转型发展优秀案例征集活动公告》
[ ]
【资讯】工信部印发《中外中小企业合作区管理暂行办法》
[ ]
【资讯】北京市通管局发布《关于开展2024年电信和互联网行业网络与数据安全检查的通知》
[ ]
豆包招聘速递|豆包大模型 Vision 团队热招中
[ ]
向250万个主机发送5亿次HTTP请求
[ ]
三大技术都有的零信任厂商,他来打擂了!
[ ]
Linux取证收集工具
[ ]
百度热搜出商推,跟进
[ ]
【《地图上的中国通史》】豆瓣9.4,畅销百年
[ ]
从“有”到“优”,中山市网络安全能力如何实现华丽转身?
[ ]
恶意软件攻击者使用 MacroPack 进行 Havoc、Brute Ratel 和 PhantomCore
[ ]
“图灵计划”2023级师生见面会
[ ]
G.O.S.S.I.P 阅读推荐 2024-09-05 用PDF做点坏事
[ ]
SpEL表达式注入漏洞总结
[ ]
第八届美亚杯团体赛-朗尼计算机题解(虚拟货币取证)
[ ]
第五届国际反病毒大会,理解“运行对抗”,筑牢网空防线
[ ]
一图读懂强制性国家标准GB 44495—2024《汽车整车信息安全技术要求》
[ ]
SOA软件架构设计与开发-自动驾驶系统架构师在线证书培训课程(高级班)
[ ]
一图读懂强制性国家标准GB 44496—2024《汽车软件升级通用技术要求》
[ ]
【漏洞复现】赛蓝企业管理系统 EHR_Holidays_SubmitUploadify 任意文件上传漏洞
[ ]
别让“特殊门槛”毁了网络安全
[ ]
盘点15个臭名昭著的网络病毒或恶意软件
[ ]
汤道生:数智共生、全球一体,共筑增长新引擎
[ ]
6大产品升级+1个最佳实践!腾讯安全重磅发布
[ ]
人工智能时代,滴滴 OrangeFS 数据湖存储的探索与实践
[ ]
nuclei+burp 快速构建护网漏洞武器库!!
[ ]
超高危 Wordpress RCE漏洞 CVE-2024-5932 全网资产 5W+ 附POC
[ ]
倒计时7天!CCS2024「大模型安全与产业应用创新研讨活动」诚邀你来
[ ]
某视讯平台存在敏感目录文件泄露漏洞
[ ]
不乱于心,不困于情。不念过往,不畏将来。如此,安好。
[ ]
新一代实验分析引擎:驱动履约平台的数据决策
[ ]
校招 | 美团基础研发平台,心动Offer等你来!
[ ]
社招|美团Keeta技术岗位热招中,邀你共赴星辰大海!
[ ]
非常适合≠符合要求
[ ]
新型供应链攻击手法 — “Revival Hijack”
[ ]
盛邦安全出席第二届网络空间安全(天津)论坛信创产业安全发展主题论坛
[ ]
喜报|火绒受邀加入国家计算机病毒协同分析平台并荣获“天网杯”网络安全大赛奖项
[ ]
分享图片
[ ]
斩获佳绩 | 众智维科技AI+安全场景闯入决赛
[ ]
本周六,一份南京双碳产业大会邀请函请你查收!
[ ]
PPT解读商用密码法律法规及标准体系(附下载)
[ ]
tomcat批量弱口令检测工具 -- TomcatWeakPassChecker
[ ]
2024年哪一款手机适合买给爸爸妈妈?送长辈用的手机推荐大全(9月更新)
[ ]
【LSP专享】更新56位抖音女主播直播录屏,助眠视频思思魔丸高清视频1V
[ ]
通知 | 工信部等十一部门联合发文 推动新型信息基础设施协调发展(附全文)
[ ]
抗量子密码:为全球网络安全筑起新防线
[ ]
4问+1图 | 读懂《关于推动新型信息基础设施协调发展有关事项的通知》
[ ]
山东区块链研究院多项成果入选《2024数字信任产业图谱》
[ ]
俄罗斯版“微信”遭黑客入侵,泄露3.9亿条用户数据
Hex Rays
[ ]
Unveiling IDA Pro 9.0: C++ Exceptions Support in the Decompiler
Trustwave Blog
[ ]
Trustwave Named Frost & Sullivan Company of the Year
GuidePoint Security
[ ]
Building a Hardware Hacking Arsenal: The Right Bits for Every Byte
NVISO Labs
[ ]
Validate your Windows Audit Policy Configuration with KQL
Twitter @Nicolas Krassas
[ ]
Lowe's employees phished via Google ads https://www.malwarebytes.com/blog/cybercrime/2024/09/lowes-employees-phished-via-google-ads
[ ]
Patch diffing CVE-2024-30078 - Windows Wi-Fi Driver RCE Vulnerability https://www.reddit.com/r/ReverseEngineering/comments/1f9qb3m/patch_diffing_cve20...
[ ]
U.S. Seizes 32 Pro-Russian Propaganda Domains in Major Disinformation Crackdown https://thehackernews.com/2024/09/us-seizes-32-pro-russian-propaganda....
[ ]
Musician charged with $10M streaming royalties fraud using AI and bots https://www.bleepingcomputer.com/news/security/musician-charged-with-10m-stream...
[ ]
RT CODE WHITE GmbH: Better patch your Veeam Backup & Replication servers! Full system takeover via CVE-2024-40711, discovered by our very own @frycos ...
[ ]
4 exploits, 1 bug: exploiting CVE-2024-20017 4 different ways http://0.0.0.0:4000/0day/2024/08/30/exploiting-CVE-2024-20017-four-different-ways.html
[ ]
Web3’s Billion-Dollar Bleeding: Cybercrime in DeFi https://securityonline.info/web3s-billion-dollar-bleeding-cybercrime-in-defi/
[ ]
Long Analysis of the M-209 https://www.schneier.com/blog/archives/2024/09/long-analysis-of-the-m-209.html
[ ]
Banking Trojans: Mekotio Looks to Expand Targets, BBTok Abuses Utility Command https://www.trendmicro.com/en_us/research/24/i/banking-trojans-mekotio-...
[ ]
Is Russian group APT28 behind the cyber attack on the German air traffic control agency (DFS)? https://securityaffairs.com/168070/apt/apt28-cyber-atta...
[ ]
Fake OnlyFans cybercrime tool infects hackers with malware https://www.bleepingcomputer.com/news/security/fake-onlyfans-cybercrime-tool-infects-hacker...
[ ]
The fingerpointing starts as cyber incident at London transport body continues https://go.theregister.com/feed/www.theregister.com/2024/09/05/the_fing...
[ ]
Validate your Windows Audit Policy Configuration with KQL https://blog.nviso.eu/2024/09/05/validate-your-windows-audit-policy-configuration-with-kql/
[ ]
Malware Attackers Using MacroPack to Deliver Havoc, Brute Ratel, and PhantomCore https://thehackernews.com/2024/09/malware-attackers-using-macropack-t...
[ ]
Re @haxor31337 Give it time and also set priorities. Family comes first. After some years balance will be achieved also and you will have your rhythm
[ ]
Security biz Verkada to pay $3m penalty under deal that also enforces infosec upgrade https://go.theregister.com/feed/www.theregister.com/2024/09/05/v...
[ ]
Planned Parenthood confirms cyberattack as RansomHub claims breach https://www.bleepingcomputer.com/news/security/planned-parenthood-confirms-cyberatt...
安全客-有思想的安全新媒体
[ ]
Clearview AI 因非法收集数据被荷兰监管机构罚款 3050 万欧元
[ ]
黑客在新的 WikiLoader 恶意软件攻击中使用伪造的 GlobalProtect VPN 软件
[ ]
Zyxel 修复了多个路由器中的关键 OS 命令注入漏洞
[ ]
研究人员发现超过 2.2 万个被删除的 PyPI 软件包存在复活劫持的风险
[ ]
谷歌发布Android月度安全更新,修复正被积极利用的高危漏洞
[ ]
Palo Alto 5亿美元收购IBM的QRadar业务
[ ]
朝鲜黑客利用伪造的 FreeConference 应用程序瞄准求职者
[ ]
英国三人认罪,涉嫌经营1000万美元的多因素认证绕过业务
[ ]
渠道精英训练营——技术大比武荣誉榜
[ ]
Trackd 发布了强大的规则引擎 推动行业更积极地使用自动补丁
HackerNoon
[ ]
Effective Communication in Difficult Conversations: 6 Rules to Follow
[ ]
Efficient API Interaction And Consumption With Laravel: A Beginner's Guide
[ ]
The Next Generation of On-Chain Perpetual Futures Trading: A Conversation With Brian Purcell
[ ]
Solving the ‘It Works on my Machine’ Problem
[ ]
It's Getting Hot in Here: Navigating Climate Anxiety Through Personal Transformation and Awareness
[ ]
Could a Credit Bubble be About to Burst on Wall Street?
[ ]
10 Best Communication Tools For Your Remote Teams In 2024 (Tested & Vouched For)
[ ]
OKX Wallet Integrates Kroma To Strengthen Web3 Ecosystem
[ ]
The Tragic Tale of the "Lunch Box Spammer": George Eley's Quest for Internet Infamy
[ ]
Efficient File Uploads in Node.js: Using Express, MongoDB, and GridFS for Scalable Storage
[ ]
🎉sdg Earns the Great Place To Work® Certification in the USA!
[ ]
How to Handle Ransomware if You Are a Worldwide Multi-Platform Large-Scale Enterprise?
[ ]
The Noonification: Nuke Silicon Valley - Decentralize AI (9/5/2024)
[ ]
An Architect's Guide to Machine Learning Operations and Required Data Infrastructure
[ ]
Criminal IP Secures PCI DSS v4.0 Certification, Enhancing Payment Security With Top-Level Compliance
[ ]
The TechBeat: Finance from First Principles (9/5/2024)
[ ]
One Month On, Have Spot Ethereum ETFs Been a Success?
[ ]
Vitalik's Shit Post Is Very ‘Demure’ and ‘Mindful’ of Ethereum
[ ]
How to Set Up GitHub Actions and PyPI Integration for Python Projects
Trail of Bits Blog
[ ]
What would you do with that old GPU?
Files ≈ Packet Storm
[ ]
ASUS RT-AC3200 3.0.0.4.382.50010 Command Injection
[ ]
Clam AntiVirus Toolkit 1.4.1
[ ]
Debian Security Advisory 5766-1
[ ]
ASIS 3.2.0 SQL Injection
[ ]
Ubuntu Security Notice USN-6993-1
[ ]
Ubuntu Security Notice USN-6992-1
[ ]
Ubuntu Security Notice USN-6990-1
[ ]
Ubuntu Security Notice USN-6989-1
[ ]
Red Hat Security Advisory 2024-6360-03
[ ]
Red Hat Security Advisory 2024-6358-03
[ ]
Red Hat Security Advisory 2024-6357-03
[ ]
Red Hat Security Advisory 2024-6356-03
[ ]
Red Hat Security Advisory 2024-6355-03
[ ]
Red Hat Security Advisory 2024-6337-03
[ ]
Red Hat Security Advisory 2024-6336-03
[ ]
Red Hat Security Advisory 2024-6335-03
[ ]
Red Hat Security Advisory 2024-6313-03
[ ]
Red Hat Security Advisory 2024-6312-03
[ ]
Red Hat Security Advisory 2024-6311-03
[ ]
Red Hat Security Advisory 2024-6310-03
[ ]
Red Hat Security Advisory 2024-6309-03
[ ]
Red Hat Security Advisory 2024-6016-03
[ ]
Red Hat Security Advisory 2024-6013-03
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
[ ]
专访盛邦安全董事长权小文:不做保安做保镖,卫星互联网安全需坚持“长期主义”
[ ]
2024 年上半年勒索软件赎金达 4.5 亿美元 创历史新高
Security Boulevard
[ ]
An Introduction to Trackers and the Data They Collect
[ ]
USENIX Security ’23 – UnGANable: Defending Against GAN-based Face Manipulation
[ ]
Managing Certificate Chaos After Google’s Entrust Distrust
[ ]
Randall Munroe’s XKCD ‘Lava Lakes’
[ ]
Understanding Quantum Threats and How to Secure Data with Post-Quantum Cryptography
[ ]
Hackers Want Your Customers’ Data: It’s Time to Hit Back
[ ]
BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar
[ ]
Storage & Data Protection Trends & Innovations To Watch in 2025
[ ]
USENIX Security ’23 – FACE-AUDITOR: Data Auditing in Facial Recognition Systems
[ ]
How StorageGuard Can Assist With CISA’s Advised Mitigations For Newly Emerged BlackSuit Ransomware
Twitter @James Kettle
[ ]
RT d4d: Get the most out of our new URL Validation Bypass Cheat Sheet! Read our latest blog post for a comprehensive guide on how to use this tool - h...
[ ]
Re @DavidBotel9796 Sure, I have read this already and you can find my contact details via my bio.
darkreading
[ ]
What Is the Shared Fate Model?
[ ]
HackerOne Appoints Kara Sprague As CEO
[ ]
Kiteworks Bolsters Its Secure Data Collection Capabilities With 123FormBuilder Acquisition
[ ]
Palo Alto Networks® Closes Acquisition of IBM's QRadar SaaS Assets
[ ]
Malvertising Campaign Builds a Phish for Lowe's Employees
[ ]
Chinese 'Tropic Trooper' APT Targets Mideast Governments
[ ]
China's 'Earth Lusca' Propagates Multiplatform Backdoor
[ ]
Biden Admin Files Charges Against Election Meddlers From Russia
[ ]
The Role of Trust Anchors in Modern IT Security
[ ]
Indian Army Propaganda Spread by 1.4K AI-Powered Social Media Accounts
FreeBuf网络安全行业门户
[ ]
FreeBuf早报 | OpenAI前首席科学家创立AI安全公司;美英欧将签署人工智能标准协议
[ ]
红队工具MacroPack已被攻击者滥用
[ ]
0day的产生 | 文件读取深度利用
[ ]
新型PyPI攻击技术可能导致超2.2万软件包被劫持
体验盒子
[ ]
2024免费在线影视/动漫番剧优质网站,汇总更新
奇客Solidot–传递最新科技情报
[ ]
华为 AI 芯片受困于 Bug 和性能
[ ]
伪造学历的南非铁路客运集团前首席工程师被判 15 年徒刑
[ ]
法庭裁决互联网档案馆的数字借阅不是合理使用
[ ]
Snapchat 将在用户消息旁放置广告
[ ]
WHO 委托的研究称脑癌与手机使用无关
[ ]
宏碁推出了它的 AMD APU 掌机 Nitro Blaze 7
[ ]
Telegram 与韩国合作删除部分深度伪造色情视频
黑海洋 - WIKI
[ ]
安卓app 一键安装Debian 12 +xfce桌面
[ ]
nekobox 安卓支持设置链式代理的v2客户端
[ ]
使用docker安装chrome浏览器
Black Hills Information Security
[ ]
How to Put Yourself Out There – Networking on Social Media
[ ]
How to Get a Job in Cybersecurity
安全牛
[ ]
专访盛邦安全董事长权小文:不做保安做保镖,卫星互联网安全需坚持“长期主义”
腾讯玄武实验室
[ ]
每日安全动态推送(9-5)
安全内参
[ ]
网络攻击影响国家金融稳定!外媒称伊朗被迫支付超2000万元赎金
[ ]
报告:活跃的勒索软件团伙在2024年激增56%
dotNet安全矩阵
[ ]
.NET基础 | 实战详解 csc.exe 编译技术
[ ]
.NET 安全攻防知识交流社区
[ ]
.NET 一款无Python环境下支持运行脚本的渗透工具
[ ]
.NET 一款在线解密Web.config的脚本
[ ]
Freebuf 推荐 | 一个顶级的安全攻防知识库
[ ]
.NET 一款用于解密web.config配置的工具
关键基础设施安全应急响应中心
[ ]
法律如何应对人工智能的发展
[ ]
战略转向!勒索软件正在肆虐东南亚地区
[ ]
黑客HikkI-Chan,今年以来已攻击美国、俄罗斯、以色列等
慢雾科技
[ ]
观点|国际合作执法将成打击加密货币犯罪的大趋势
奇安信威胁情报中心
[ ]
公开的隐秘:CVE-2024-30051在野提权漏洞研究
吾爱破解论坛
[ ]
【原创】音频采样率转换的研究与Rust代码实现
中国信息安全
[ ]
可信数据空间 | 启明星辰数据要素安全流通平台正式发布
[ ]
报名开启 | CCS 2024成都网络安全系列活动——国家漏洞库网络安全漏洞治理产业协同创新研讨活动
[ ]
聚焦 | 2024外滩大会今日起在上海黄浦举办
[ ]
关注 | 公安机关网安部门指导互联网平台强化自律自治
[ ]
专家观点 | 如何让人工智能实现认知正义
[ ]
评论 | 整治“人肉开盒”,不妨换个思路
[ ]
评论 | 把未成年人模式建设好、运用好
青藤云安全
[ ]
国家网安周 | 青藤邀您相约2024国家网络安全宣传周
安全研究GoSSIP
[ ]
G.O.S.S.I.P 阅读推荐 2024-09-05 用PDF做点坏事
字节跳动安全中心
[ ]
“安全范儿”高校挑战赛|三大赛道,开启全新赛制
CNCERT国家工程研究中心
[ ]
人工智能大模型的数据治理
[ ]
Cicada3301 勒索软件的 Linux 加密器针对 VMware ESXi 系统
[ ]
俄罗斯版“微信”遭黑客入侵,泄露3.9亿条用户数据
情报分析师
[ ]
培养开源情报调查的思维方式和创造力提升分析效率
[ ]
【连载】美国正在为高科技战争做准备(七)
奇安信 CERT
[ ]
公开的隐秘:CVE-2024-30051在野提权漏洞研究
KCon 黑客大会
[ ]
KCon 2024 特别售后篇:欢迎参加有奖满意度调研~
火绒安全
[ ]
喜报|火绒受邀加入国家计算机病毒协同分析平台并荣获“天网杯”网络安全大赛奖项
百度安全实验室
[ ]
倒计时7天!CCS2024「大模型安全与产业应用创新研讨活动」诚邀你来
美团安全应急响应中心
[ ]
你的中秋福利已上线!美团SRC预祝各位中秋佳节愉快
[ ]
美团安全25届秋招启动,心动offer等你拿!
嘶吼专业版
[ ]
2024 年上半年勒索软件赎金达 4.5 亿美元 创历史新高
深信服千里目安全技术中心
[ ]
【漏洞通告】Apache OFBiz服务端请求伪造漏洞 (CVE-2024-45507)
代码卫士
[ ]
思科修复已有 PoC 的根提权漏洞
[ ]
“复活劫持”供应链攻击威胁2.2万个PyPI包的安全
[ ]
黑客在思科商店注入恶意JS,窃取信用卡和凭据
极客公园
[ ]
「搜索」迈入 3.0 时代
[ ]
腾讯云升级 AI 全家桶,混元对标 GPT-4o
[ ]
MiniMax,也许做出了最接近 Sora 的文生视频产品
[ ]
OpenAI 前科学家新公司融资 10 亿美元;飞书 CEO:今年 ARR 超 3 亿美元;淘宝计划接入微信支付 | 极客早知道
山石网科安全技术研究院
[ ]
2024年羊城杯粤港澳大湾区网络安全大赛WP-Reverse篇
专注安管平台
[ ]
SANS 2024年SOC调查报告解读
白宦成
[ ]
关于工伤的那点事(2)
硕鼠的博客站
[ ]
曾志伟携手疯狂小杨哥直播带货:三小时狂揽1亿,香港老牌明星如何适应流量新风口?
KAIX.IN
[ ]
读这些是不够的
搞笑談軟工
[ ]
重構既有系統,邁向整潔架構 (1):為什麼透過重構改善軟體架構很困難
晚花行乐
[ ]
在 Debian 12 上安装 Nvidia 显卡驱动程序
二丫讲梵
[ ]
学习周刊-总第175期-2024年第36周
格物致知
[ ]
Ubuntu 安装 Terraform 和 Terragrunt
61’s life
[ ]
20240905
游研社
[ ]
你的游戏停服了,想官方出个“离线版”有多难
[ ]
《使命召唤》新作允许玩家抓对手当肉盾,甚至还能互飚垃圾话
[ ]
【白夜谈】当扫雷也被做成了网游
[ ]
索尼最失败产品宣布退款,玩家连夜集体自杀肝白金杯
Yuko's Blog
[ ]
三论手游:市场民粹与消费者主权
祈雨的笔记
[ ]
kueue执行源码分析
Lei Mao's Log Book
[ ]
Gruul In World of Wardcraft and Shrike
如有乐享
[ ]
自购迷你主机零刻SER8:家庭服务器部署初体验
张洪Heo
[ ]
Mac关闭耳机线控,关闭键盘的媒体控制,线控启动Apple Music功能
[ ]
极影相机上手:让iPhone也能拍徕卡,免费的胶片滤镜
工劳小报|工劳快讯
[ ]
抵制加班,从谁开始?|工劳小报 #47 副刊
每日安全资讯(2024-09-06)