issues
search
chainreactors
/
picker
将你的repo变为讨论社区
GNU General Public License v3.0
104
stars
19
forks
source link
[每日信息流] 2024-08-13
#619
Closed
chainreactorbot
closed
2 weeks ago
chainreactorbot
commented
1 month ago
每日安全资讯(2024-08-13)
奇安信攻防社区
[ ]
内网渗透导出HASH
SecWiki News
[ ]
SecWiki News 2024-08-12 Review
Private Feed for M09Ic
[ ]
geohot created a repository geohot/tinydreamer
[ ]
lz520520 starred Meckazin/ChromeKatz
[ ]
SpecterOps made SpecterOps/bloodhound-python-sdk public
[ ]
DVKunion starred LineageOS/android_kernel_oneplus_sm8350
[ ]
liamg starred go-git/go-git
[ ]
Rvn0xsy starred klezVirus/DriverJack
[ ]
liamg starred nikitabobko/AeroSpace
[ ]
zer0yu starred Drun1baby/JavaSecFilters
[ ]
timwhitez started following OtterHacker
[ ]
lz520520 starred trainr3kt/MemReader_BoF
[ ]
timwhitez started following doge-dog
[ ]
timwhitez starred kmahyyg/go-rawcopy
[ ]
zer0yu starred idealeer/xmap
[ ]
DVKunion started following Coconutat
[ ]
niudaii starred gabriel-vasile/mimetype
[ ]
kpcyrd starred seemoo-lab/AirGuard
[ ]
lz520520 starred wanttobeno/SunDaySearchSignCode
[ ]
gh0stkey starred AabyssZG/FindEverything
[ ]
gh0stkey starred ViRb3/magisk-frida
[ ]
TideSec released v2.3 框架升级、增加Log功能 at TideSec/TscanPlus
[ ]
yzddmr6 starred DeEpinGh0st/MDUT-Extend-Release
[ ]
yzddmr6 starred QiuChenly/InjectLib
[ ]
Ak74-577 starred klezVirus/RpcProxyInvoke
[ ]
4ra1n starred DeEpinGh0st/MDUT-Extend-Release
[ ]
lz520520 starred tijme/cmstplua-uac-bypass
[ ]
gh0stkey released HaE 3.3.1 at gh0stkey/HaE
安全客-有思想的安全新媒体
[ ]
CISA 将 Apache OFBiz 和 Android 内核漏洞添加到已知漏洞目录中
[ ]
CISA警告黑客利用传统的思科智能安装功能获取敏感数据
[ ]
ADT 披露了一起影响了 30,000 多名客户的数据泄露事件
[ ]
研究人员发现谷歌文件传输工具中的 10 个漏洞
[ ]
新恶意软件利用流氓 Chrome 浏览器和 Edge 扩展程序攻击了超 30 万用户
[ ]
专家揭露导致远程代码执行、数据窃取及服务全面接管的严重AWS漏洞
[ ]
微软揭露了四个导致潜在 RCE 和 LPE 的 OpenVPN 漏洞
[ ]
Sonos智能音箱存在允许窃听用户的漏洞
[ ]
PyPI恶意包“solana-py”窃取Solana密钥
[ ]
ISC.AI 2024 Palo Alto Networks黄强:以AI对抗AI,为人工智能转型之路保驾护航
Twitter @Nicolas Krassas
[ ]
12th August – Threat Intelligence Report https://research.checkpoint.com/2024/12th-august-threat-intelligence-report/
[ ]
Google Patches Critical Vulnerabilities in Quick Share After Researchers’ Warning https://hackread.com/google-patches-quick-share-vulnerabilities-war...
[ ]
Tennessee Man Helped DPRK Workers Get Jobs at US Orgs, Fund WMDs https://www.darkreading.com/remote-workforce/tennessee-man-helped-dprk-workers-get-jo...
[ ]
Over 35K impacted by CSC ServiceWorks breach https://www.scmagazine.com/brief/over-35k-impacted-by-csc-serviceworks-breach
[ ]
Living off the land with Bluetooth PAN https://www.pentestpartners.com/security-blog/living-off-the-land-with-bluetooth-pan/
[ ]
Russia Blocks Signal Messaging App https://packetstormsecurity.com/news/view/36206/Russia-Blocks-Signal-Messaging-App.html
[ ]
200k Impacted By East Valley Institute Of Technology Data Breach https://packetstormsecurity.com/news/view/36207/200k-Impacted-By-East-Valley-Institut...
[ ]
Attacker steals personal data of 200k+ people with links to Arizona tech school https://go.theregister.com/feed/www.theregister.com/2024/08/12/200k_wi...
[ ]
Mega money, unfathomable violence pervade thriving underground doxxing scene https://go.theregister.com/feed/www.theregister.com/2024/08/12/mega_money...
[ ]
Microsoft shares Outlook workaround for Gmail sign-in issues https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-outlook-workaround-for-g...
[ ]
20-Year-Ol Hardware Flaw Found In AMD Chips https://packetstormsecurity.com/news/view/36208/20-Year-Ol-Hardware-Flaw-Found-In-AMD-Chips.html
[ ]
Google deactivates Russian AdSense accounts, sends final payments https://www.bleepingcomputer.com/news/google/google-deactivates-russian-adsense-acco...
[ ]
Researchers Uncover Vulnerabilities in Solarman and Deye Solar Systems https://thehackernews.com/2024/08/researchers-uncover-vulnerabilities-in.html
[ ]
FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability https://thehackernews.com/2024/08/freebsd-releases-urgent-patch-for-high.html
[ ]
GPS Spoofers Hack Time On Commercial Airlines https://packetstormsecurity.com/news/view/36205/GPS-Spoofers-Hack-Time-On-Commercial-Airlines.html
[ ]
Trump Campaign Says It Has Been Hacked https://packetstormsecurity.com/news/view/36204/Trump-Campaign-Says-It-Has-Been-Hacked.html
[ ]
Taxonomy of Generative AI Misuse https://www.schneier.com/blog/archives/2024/08/taxonomy-of-generative-ai-misuse.html
[ ]
Industrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks https://thehackernews.com/2024/08/industrial-remote-access-tool-ewon-cosy.h...
[ ]
Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths https://github.com/klezVirus/DriverJack
[ ]
HAL: The Hardware Analyzer https://meterpreter.org/hal-the-hardware-analyzer/
Security Boulevard
[ ]
Ransomware Attack Fetched A Record $75 Million
[ ]
USENIX Security ’23 – Automated Security Analysis of Exposure Notification Systems
[ ]
DOJ Shuts Down Another North Korean ‘Laptop Farm’
[ ]
CVE-2024-38856: Pre-Auth RCE Vulnerability in Apache OFBiz
[ ]
Randall Munroe’s XKCD ‘Vice President First Names’
[ ]
Privacy Risks in Google’s New Play Store Personalization
[ ]
News alert: Criminal IP and Maltego team up to broaden threat intelligence data search
[ ]
AppViewX Automated Certificate Management for PingAccess
[ ]
USENIX Security ’23 – DISTDET: A Cost-Effective Distributed Cyber Threat Detection System
[ ]
HYAS Investigates Threat Actors Hidden In Gaming Services
Zgao's blog
[ ]
开发ko内核模块,无依赖实现监控DNS请求进程
Files ≈ Packet Storm
[ ]
Gentoo Linux Security Advisory 202408-33
[ ]
Gentoo Linux Security Advisory 202408-32
[ ]
Gentoo Linux Security Advisory 202408-31
[ ]
Gentoo Linux Security Advisory 202408-30
[ ]
Gentoo Linux Security Advisory 202408-29
[ ]
Gentoo Linux Security Advisory 202408-28
[ ]
Gentoo Linux Security Advisory 202408-27
[ ]
Computer Laboratory Management 1.0 SQL Injection
[ ]
Gentoo Linux Security Advisory 202408-26
[ ]
Courier Management System 2020-1.0 SQL Injection
[ ]
Gentoo Linux Security Advisory 202408-25
[ ]
Backdoor.Win32.Nightmare.25 MVID-2024-0687 Code Execution
[ ]
Ubuntu Security Notice USN-6926-3
[ ]
Gentoo Linux Security Advisory 202408-24
[ ]
Gas Agency Management 2022 Cross Site Request Forgery
[ ]
Gentoo Linux Security Advisory 202408-23
[ ]
Garden Gate 2.6 SQL Injection
[ ]
Gentoo Linux Security Advisory 202408-22
[ ]
Goati Track 1.0-2023 Insecure Settings
[ ]
Gentoo Linux Security Advisory 202408-21
[ ]
Red Hat Security Advisory 2024-5194-03
[ ]
Farmacia Gama 1.0 Insecure Direct Object Reference
[ ]
Employee Management System 1.0 Insecure Settings
[ ]
Red Hat Security Advisory 2024-5193-03
[ ]
Gentoo Linux Security Advisory 202408-20
The DFIR Report
[ ]
Threat Actors’ Toolkit: Leveraging Sliver, PoshC2 & Batch Scripts
Recent Commits to cve:main
[ ]
Update Mon Aug 12 22:31:19 UTC 2024
[ ]
Update Mon Aug 12 14:29:13 UTC 2024
[ ]
Update Mon Aug 12 06:31:31 UTC 2024
CXSECURITY Database RSS Feed - CXSecurity.com
[ ]
Open WebUI 0.1.105 File Upload / Path Traversal
[ ]
courier-management-system-2020-1.0 Multiple-SQLi
[ ]
Backdoor.Win32.Nightmare.25 / Unauthenticated Remote Command Execution
Doonsec's feed
[ ]
8.9-8.12hvv情报
[ ]
SpringKill代审公开课直播!
[ ]
逆向工具系列 | GNU Debugger
[ ]
秦安:美驻日大使刚释放对华粮食和海上能源安全威胁,中央就采取一个大快人心的招数
[ ]
秦安:在日本持续排放核污染水问题上,警惕舆论麻木以及偷换概念
[ ]
漏洞挖掘|某次SRC引起的连锁漏洞挖掘
[ ]
安全巨头 ADT 确认数据泄露,客户信息在暗网上泄露
[ ]
倒计时1天!标识与园区6项重磅产品即将揭晓|2024星火全连接活动“标识与园区”专场
[ ]
【HVV情报】2024-08-12
[ ]
FreeBSD 针对高严重性 OpenSSH 漏洞发布紧急补丁
[ ]
[随手分享]CTF-Java-Gadget
[ ]
警惕!大规模VPN水坑攻击来袭
[ ]
记某src通过越权拿下高危漏洞
[ ]
DEFCON CTF 32决赛战报,全球第五,中国队伍第一!
[ ]
新一代网络和安全架构设计的思考——以零信任架构为核心的网络安全架构设计
[ ]
【资讯】国家金融监管总局发布《关于加强和改进互联网财产保险业务监管有关事项的通知》
[ ]
【资讯】安徽省工信厅就《安徽省工业级无人机产业高质量发展行动计划(2024-2027年)》公开征求意见
[ ]
【资讯】杭州市数据资源局印发《杭州市公共数据开放工作实施细则》
[ ]
25届秋招网络安全面试资料库更新了
[ ]
[企业安全运维]大华-DDS数字监控系统-现新漏洞
[ ]
漏洞扫描工具 -- vulcat
[ ]
2024年机械键盘入门及选购推荐(含无线键盘、游戏键盘)
[ ]
【LSP专享】U0001f970酥酥U0001f970直播录制
[ ]
【总结】设备漏洞挖掘思路
[ ]
【hw】2024护网漏洞情报-第十三弹
[ ]
新型网络犯罪之PHP网站后台密码绕过的几种姿势
[ ]
记两次非常规文件上传Getshell
[ ]
Hvv-day16威胁情报日记
[ ]
内网渗透-导出HASH的多种方式
[ ]
H3C IMC 最新三个远程代码执行漏洞
[ ]
G.O.S.S.I.P 阅读推荐 2024-08-12 影子写手
[ ]
打造绕过Defender的Windows reverse_tcp Shell【部分】
[ ]
漏洞复现|某讯CRM-MyImportData存在sql注入漏洞
[ ]
【技术能力】助力汽车软件升级管理,为智能网联汽车发展保驾
[ ]
【聚焦】中国软件评测中心赴北京电力医院开展第三届“鼎信杯”大赛医疗赛道参赛单位现场调研
[ ]
某网络监控设备远程命令执行
[ ]
内网渗透导出HASH
[ ]
全球视野 | 国际网安快讯(第23期)
[ ]
通知 | 金融监管总局发文 加强和改进互联网财产保险业务监管(附全文)
[ ]
观点 | 加快制定促进人工智能发展为主的法律
[ ]
前沿 | 算法“武器化”及其对权力的塑造
[ ]
发布 | 《2023互联网安全报告:“体系化主动安全”建设指南》正式发布
[ ]
评论 | 严惩“按键伤人” 依法铸就清朗网络空间
[ ]
关注 | 部分App未成年人模式形同虚设
[ ]
央行为加强征信信息安全管理发布征求意见稿
[ ]
关于开展2024年湖北省商用密码协会优秀博士、硕士学位论文遴选的通知
[ ]
行业动态 | 网安重大事件精选
[ ]
腾讯云:监测到国内大量家用路由器遭 DNS 劫持,服务器端现已恢复
[ ]
微软AI助手Copilot存在多个安全隐患
[ ]
在这个卷飞的时代网络安全需要的到底是技术还是高学历
[ ]
CVE-2023-1713 Bitrix24远程命令执行漏洞分析(RCE)
[ ]
搞攻防的,不会点免杀技术非常吃亏
[ ]
AWS多项服务存在漏洞,能让攻击者完全控制账户
[ ]
微软披露Office最新零日漏洞,可能导致数据泄露
[ ]
如何使用Extrude分析和检测二进制源码中的安全问题
[ ]
【安全圈】腾讯云:监测到国内大量家用路由器遭 DNS 劫持,服务器端现已恢复
[ ]
【安全圈】微软 Copilot AI 被指可被黑客操纵,轻松窃取企业机密
[ ]
【安全圈】揭开倒卖个人信息黑幕,买家多为赌博网站老板!
[ ]
【安全圈】科沃斯扫地机器人被曝安全漏洞,可利用摄像头和麦克风监视主人
[ ]
奇安信《软件供应链安全报告》:七成国产软件有超危漏洞
[ ]
【0812】重保演习每日情报汇总
[ ]
网络安全需要的是高学历人才!
[ ]
安天在“2024年网络安全技术创新与人才教育高峰论坛”获多项荣誉
[ ]
渗透测试的一些小技巧
[ ]
奇安信天工实验室携虚拟化研究成果亮相DEFCON
[ ]
🥇40金完美收官!致敬每一位中国奥运健儿
[ ]
破亿曝光,全球聚焦:ISC.AI 2024战报出炉!
[ ]
ISC.AI 2024:三城联动,打造“安全+AI”新高地
[ ]
ISC.AI 2024聚焦新型涉网犯罪打击与治理,共筑网络安全新防线
[ ]
安全卫士 | 魔方安全漏洞周报
[ ]
特朗普竞选团队在大选期间被黑,部分敏感数据外泄
[ ]
我国数据分类分级研究进展与企业实施路径建议
[ ]
再加4家!2024年至少已有9家银行App被通报
[ ]
中国生成式AI服务大模型注册用户破五亿,如何做好网络安全防护
[ ]
“逆行人生”励志前行,隐私风险更需重视
[ ]
安世加第四十五期沙龙之企业出海合规与网络安全(08.30 / 周五 / 线上)
[ ]
金盾信安 | 网络和数据领域资讯第23期(2024.8.6-2024.8.12)
[ ]
AI 赋能安全左移 | 开源网安“智能代码安全解决方案”荣获CCIA“2024年网络安全优秀创新成果大赛杭州分站赛”优胜奖
[ ]
震惊!99%的人对网络安全红队的认知都错了!
[ ]
哇塞!史上最全渗透测试学习指南,小白也能变大神!
[ ]
干货分享!!!网络安全必备技能清单
[ ]
“独行快,众行远,我们的征途是星辰大海!”——专访星盟安全团队
[ ]
第十七届CISCN总决赛-AWDP-PWN部分题解
[ ]
首个针对网络犯罪的普遍性国际公约——《联合国打击网络犯罪公约》草案获通过
[ ]
物联网安全:打印机攻击框架PRET
[ ]
谁家好人学安全
[ ]
英伟达下一代汽车芯片落地合肥
[ ]
AutoSQT直播 | 招商车研:国内外汽车信息安全准入法规及测试要求
[ ]
大咖来了 | 华为:智能网联汽车数据安全管理及实践
[ ]
CNCERT国家工程研究中心安全资讯周报20240812期
[ ]
降级攻击可“复活”数以千计的Windows漏洞
[ ]
Nacos rce-0day漏洞复现(nacos 2.3.2)
[ ]
国投智能牵头组建“厦门市警安科技创新联合体”,助推公安工作现代化
[ ]
开源前哨 · 热点情报速览(2024.08.05-2024.08.11)
[ ]
典型案例 | 某钢铁厂网络安全整改项目
[ ]
【舆情简讯】低俗主播被当地网信约谈;四川警方侦破上亿网赌案件;运动学习App弹窗广告关不掉、内容低俗;卡牌盲盒“套牢”未成年人
[ ]
解锁安全运营:低成本高收益 托管式安全服务备受市场关注
[ ]
CCS 2024成都网络安全系列活动报名通道已开启
[ ]
资料下载 | 个人信息授权运营管理办法、Blackhat 2024 PPT
[ ]
「推安早报」0812 | bh议题节选、红蓝工具、漏洞情报
[ ]
十七载!
[ ]
安全简讯(2024.08.12)
[ ]
【漏洞通告】FreeBSD OpenSSH远程代码执行漏洞(CVE-2024-7589)
[ ]
近期值得关注的IOC(2024-08-12)
[ ]
【活动最后一周】以下网络安全专家已免费获赠阿瑞斯武器库批量查询工具
[ ]
mGPU 技术揭秘: mGPU 算力和显存隔离底层方案
[ ]
让生成式 AI 触手可及:火山引擎推出 NVIDIA NIM on VKE 最佳部署实践
[ ]
全球瞭望 | 网安重大事件精选(133期)
[ ]
数据安全检查方兴未艾,天空卫士领跑检查工具市场
[ ]
基于改进 EfficientNet 的电力资产信息数据流量异常检测的应用
[ ]
IBM:数据泄露平均成本488万美元,增幅高达10%
[ ]
Istio Ambient服务网格及服务治理案例
[ ]
字节跳动开源 Linux 内核网络抓包工具 netcap
[ ]
CNVD漏洞周报2024年第32期
[ ]
上周关注度较高的产品安全漏洞(20240805-20240811)
[ ]
干货 | 安徽合力股份5G智慧工厂边缘安全风险探查平台
[ ]
荐读 | 做好网络安全风险管理必备的5种能力
[ ]
08-12-攻防演练之请防守方重点关注威胁情报样本信息
[ ]
blackhat USA 2024部分议题
[ ]
参与抽奖,亚信安全邀您参与\"AI+XDR产品矩阵\"线上发布会
[ ]
蓄能作战力!成都链安“战法训练营”开课啦!
[ ]
Black hat 2024:微软Copilot、安卓车机存在数据泄露隐患
[ ]
黑客泄露了27亿条含社会安全号码的数据记录
[ ]
直播 | 百家说事:护网正当时,网络安全培训有用吗?
[ ]
去了上安会,想把螣龙安利给所有人
[ ]
报名通道已开启!| CCS 2024邀您共话“万象AI,安全新生”
[ ]
安全热点周报:本周新增两个在野利用漏洞,系统安全不容小觑
[ ]
游戏安全入门-扫雷分析&远程线程注入
[ ]
反作弊新篇章!FPS游戏外挂全景揭秘与实战案例
[ ]
演讲议题巡展 | The Dark Side of the Browser
[ ]
工具 | 集成了AI的CTF综合图形化渗透
[ ]
什么?你连这都不会还学免杀?之「API动态解析」
[ ]
TCP的keepalive和HTTP的keepalive之间的关系?
[ ]
针对云函数、CDN的狩猎追溯方法、思路
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
[ ]
新剧推荐 | 这部国产反谍剧,我给9.5分
[ ]
谣言粉碎机 | 走近真实的测谎技术
[ ]
18.98 Hz | 来自鬼魂的无线信号
[ ]
ESD K9电子搜检汪汪队
[ ]
采购欺诈预警 | 带你分辨DeltaV专业场强仪的高仿假货
[ ]
安全动态回顾|国家计算机病毒应急处理中心通报15款违规移动应用 Critical Progress WhatsUp RCE漏洞正在被积极利用
[ ]
自 2018 年以来,Windows 智能应用控制和 SmartScreen 绕过技术一直存在漏洞
[ ]
国投智能牵头组建“厦门市警安科技创新联合体”,助推公安工作现代化
[ ]
荣获国际顶级认可!国投智能荣获CMMI5级权威认证
[ ]
2024年中盘点 | 美亚柏科电子数据取证技术实现重大突破
[ ]
三星将为 Galaxy 安全保险库的 RCE 支付 100 万美元
Cerbero Blog
[ ]
Cerbero Suite 7.8 Release
[ ]
InnoSetup Format Package
[ ]
IFPS Format Package
Forcepoint
[ ]
DSPM Ensures Regulatory Compliance in GenAI Deployments
Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
[ ]
Tip of the Day - Part Two
Binary Ninja
[ ]
Sidekick 2.0
[ ]
Sidekick in Action: Analyzing Firmware
[ ]
Sidekick in Action: Deobfuscating Strings in Amadey Malware
SpiderLabs Blog
[ ]
The Art of Deception: Turning the Tables on Attackers with Active Defenses
Bug Bounty in InfoSec Write-ups on Medium
[ ]
From Fries to Flaws : My Journey into Web App Security (Part V)
[ ]
$800 Improper Authorization Flaw: Unauthorized Project Reclaiming Post Transfer
[ ]
From Fries to Flaws : My Journey into Web App Security (Part IV)
[ ]
Hacking OWASP Juice Shop: Part 5- Privilege Escalation via Manipulated User Registration
[ ]
From Fries to Flaws : My Journey into Web App Security (Part III)
[ ]
Unveiling Remote Code Execution in AI chatbot workflows
[ ]
Learn Basic SQL Injection
[ ]
Hacking OWASP Juice Shop: Part4 — Exploiting Payment and Input Validation Loopholes
[ ]
Hacking OWASP Juice Shop: Part 3- Exploiting Insufficient Server-Side Checks:::Bypassing Input…
[ ]
From Fries to Flaws : My Journey into Web App Security (Part II)
Trail of Bits Blog
[ ]
Trail of Bits Advances to AIxCC Finals
Reverse Engineering
[ ]
/r/ReverseEngineering's Weekly Questions Thread
[ ]
CREATE your own Windows DEVICE DRIVER with BUGS... then travel "behind the Blue Screen" into ring 0 with Windows Kernel Debugger!! 🖥️🪰🧑💻
[ ]
Extending Chiplab IO
SentinelOne
[ ]
PinnacleOne ExecBrief | Terrorism on the Horizon
[ ]
Singularity MDR | A Scalable Solution for Broader Detection & Response Coverage
daniel.haxx.se
[ ]
verbose, verboser, verbosest
FreeBuf网络安全行业门户
[ ]
英国要发起一场“国家规模”的蜜罐计划
[ ]
AWS多项服务存在漏洞,能让攻击者完全控制账户
[ ]
新型Mac窃取程序"AMOS"冒充Loom,瞄准加密货币钱包
[ ]
FreeBuf早报 | 微软2024财年发放1.2亿元漏洞赏金;《联合国打击网络犯罪公约》通过
[ ]
微软披露Office最新零日漏洞,可能导致数据泄露
HackerNews
[ ]
微软披露 Office 最新零日漏洞,可能导致数据泄露
[ ]
新型 Mac 窃取程序“AMOS”冒充 Loom,瞄准加密货币钱包
[ ]
AWS 多项服务存在漏洞,能让攻击者完全控制账户
[ ]
思科预警,旧版 IP 电话存在严重 RCE 零日漏洞
[ ]
Sonos 智能音箱安全漏洞可能导致用户被窃听
[ ]
AMD SinkClose 漏洞可安装几乎无法检测到的恶意软件
[ ]
30000 多名客户数据遭到泄露,ADT 紧急回应
安全牛
[ ]
《联合国打击网络犯罪公约》将提交联大表决,我国发挥关键作用;韩国“伪猎者”APT组织利用国产化软件漏洞对我国进行网络攻击 |牛览
[ ]
网络安全实战化人才培养之道
腾讯玄武实验室
[ ]
每日安全动态推送(8-12)
奇安信威胁情报中心
[ ]
近期值得关注的IOC(2024-08-12)
[ ]
【活动最后一周】以下网络安全专家已免费获赠阿瑞斯武器库批量查询工具
奇安信 CERT
[ ]
安全热点周报:本周新增两个在野利用漏洞,系统安全不容小觑
雷神众测
[ ]
雷神众测漏洞周报2024.08.05-2024.08.11
代码卫士
[ ]
奇安信《软件供应链安全报告》:七成国产软件有超危漏洞
奇客Solidot–传递最新科技情报
[ ]
惠普计划将至少五成 PC 生产转移出中国
[ ]
OpenAI 创始团队成员只有 2 人留任
[ ]
OnlyFans 成人明星外包聊天服务
[ ]
中国受关注论文数高居第一
[ ]
俄罗斯占领的乌克兰扎波罗热核电站发生火灾
[ ]
三星新汽车固态电池续航里程高达 1000 公里
[ ]
现代和起亚的防盗软件大幅降低了汽车被盗率
[ ]
Ubuntu 将使用最新内核版本
网络安全研究宅基地
[ ]
韩国“伪猎者”APT组织利用多款国产化软件漏洞对中国的攻击活动
安全内参
[ ]
特朗普竞选团队在大选期间被黑,部分敏感数据外泄
[ ]
我国数据分类分级研究进展与企业实施路径建议
安全研究GoSSIP
[ ]
G.O.S.S.I.P 阅读推荐 2024-08-12 影子写手
dotNet安全矩阵
[ ]
.NET 一款通过泄露令牌实现提权的工具
[ ]
2024hvv | 23套.NET系统漏洞威胁情报(08.13更新)
[ ]
.NET 内网攻防实战电子报刊
[ ]
.NET 一款反序列化注入天蝎内存马的工具
[ ]
2024hvv | 22套.NET系统漏洞威胁情报(08.12更新)
[ ]
.NET内网实战:通过进程管道执行CMD命令
数世咨询
[ ]
报告发现:澳大利亚CFO越来越多地参与IT投资决策
补天平台
[ ]
中秋第一趴 | 公益全体活动+专属SRC奖励升级!
极客公园
[ ]
阿里把十年后的超时空购物体验店,搬到了巴黎奥运会旁边
[ ]
曝苹果 AI 功能 3 年不收费;巴黎奥运闭幕,中国队刷新金牌纪录;上海迪士尼打造「漫威主题」项目 | 极客早知道
中国信息安全
[ ]
全球视野 | 国际网安快讯(第23期)
[ ]
通知 | 金融监管总局发文 加强和改进互联网财产保险业务监管(附全文)
[ ]
观点 | 加快制定促进人工智能发展为主的法律
[ ]
前沿 | 算法“武器化”及其对权力的塑造
[ ]
发布 | 《2023互联网安全报告:“体系化主动安全”建设指南》正式发布
[ ]
评论 | 严惩“按键伤人” 依法铸就清朗网络空间
[ ]
关注 | 部分App未成年人模式形同虚设
情报分析师
[ ]
摩萨德间谍网如何渗透土耳其
[ ]
支持特朗普背后的200名将军和海军上将名单明细
关键基础设施安全应急响应中心
[ ]
关键基础设施安全资讯周报20240812期
[ ]
GPS欺骗技术新威胁:黑客篡改飞机时间系统
[ ]
思科预警,旧版IP电话存在严重RCE零日漏洞
嘶吼专业版
[ ]
自 2018 年以来,Windows 智能应用控制和 SmartScreen 绕过技术一直存在漏洞
[ ]
直播预告 | 直面勒索攻击:构建企业数字安全防线
[ ]
安全动态回顾 | 谷歌修复了针对性攻击中利用的Android内核零日漏洞
黑伞安全
[ ]
红队武器更新:数据库杀器 MDUT增强版
丁爸 情报分析师的工具箱
[ ]
【工具】强大的情报分析工具:Intelligence X
安全学术圈
[ ]
中科院信工所 | ET-BERT:用于加密流量分类的带有预训练Transformer的上下文数据报表征
Beacon Tower Lab
[ ]
【0812】重保演习每日情报汇总
CNVD漏洞平台
[ ]
CNVD漏洞周报2024年第32期
[ ]
上周关注度较高的产品安全漏洞(20240805-20240811)
KCon 黑客大会
[ ]
演讲议题巡展 | The Dark Side of the Browser
字节跳动技术团队
[ ]
一个全新的 Go pprof 视角 - 对象引用分析
[ ]
技术专题26期 | 鸿蒙的实践与探索
网安杂谈
[ ]
蓄能作战力!成都链安“战法训练营”开课啦!
Securityinfo.it
[ ]
INTERPOL: I-GRIP contro le truffe BEC
Over Security - Cybersecurity news aggregator
[ ]
X faces GDPR complaints for unauthorized use of data for AI training
[ ]
FBI says it is investigating purported Trump campaign hack
[ ]
Il pericolo silenzioso del Sitting Duck Attack
[ ]
FBI seizes Radar/Dispossessor ransomware gang servers in US and Europe
[ ]
FBI disrupts the Dispossessor ransomware operation, seizes servers
[ ]
Swiss manufacturing giant investigating ransomware attack that shut down IT network
[ ]
South Korea says DPRK hackers stole spy plane technical data
[ ]
Microsoft is killing the Windows Paint 3D app after 8 years
[ ]
Australian gold producer Evolution Mining hit by ransomware
[ ]
Hackers posing as Ukraine’s Security Service infect 100 govt PCs
[ ]
Microsoft shares Outlook workaround for Gmail sign-in issues
[ ]
Google deactivates Russian AdSense accounts, sends final payments
[ ]
As he retires after two decades at Homeland Security, Brandon Wales reflects on CISA’s future
[ ]
Criminal IP and Maltego Join Forces for Enhanced Cyber Threat Search
[ ]
Britain and France to discuss misuse of commercial cyber intrusion tools
[ ]
Australian gold mining company Evolution Mining announces ransomware attack
[ ]
Indirect prompt injection in the real world: how people manipulate neural networks
[ ]
INTERPOL: I-GRIP contro le truffe BEC
[ ]
Cyble Named a Sample Vendor for Digital Risk Protection Services in Gartner® Hype Cycle™ for Managed IT Services, 2024
[ ]
Threat Actors’ Toolkit: Leveraging Sliver, PoshC2 & Batch Scripts
SANS Internet Storm Center, InfoCON: green
[ ]
ISC Stormcast For Monday, August 12th, 2024 https://isc.sans.edu/podcastdetail/9092, (Mon, Aug 12th)
[ ]
Video: Same Origin, CORS, DNS Rebinding and Localhost, (Mon, Aug 12th)
DEF CON Announcements!
[ ]
Thanks for a Great DEF CON!
Securelist
[ ]
Indirect prompt injection in the real world: how people manipulate neural networks
Schneier on Security
[ ]
Taxonomy of Generative AI Misuse
TorrentFreak
[ ]
‘MagisTV’ Piracy Blocking Efforts in Ecuador Expand, Trademark Application Denied
[ ]
RuTube Embraces Piracy Then Vanishes From Apple’s App Store & Google Play
Deeplinks
[ ]
Federal Appeals Court Finds Geofence Warrants Are “Categorically” Unconstitutional
The Hacker News
[ ]
How Phishing Attacks Adapt Quickly to Capitalize on Current Events
[ ]
Researchers Uncover Vulnerabilities in Solarman and Deye Solar Systems
[ ]
The AI Hangover is Here – The End of the Beginning
[ ]
FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability
[ ]
Industrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks
[ ]
EastWind Attack Deploys PlugY and GrewApacha Backdoors Using Booby-Trapped LNK Files
迪哥讲事
[ ]
记两次非常规文件上传Getshell
山石网科安全技术研究院
[ ]
第四届山石CTF夏令营结营赛暨SAINTSEC招新赛获奖名单
Technical Information Security Content & Discussion
[ ]
SQL Injection Isn't Dead - Smuggling Queries at the Protocol Level
[ ]
All Security News | With allinfosecnews going down, I decided to keep the dream going. It was my favorite site to visit daily so I couldn't go without it.
[ ]
Announcing the Bug Bounty program pack 1.0
[ ]
Microprobing with ICEBite - A Definitive guide fo soldeless testing probes - Hello! Welcome to IoTSecurity101 by @iotsecurity101
Deep Web
[ ]
temporary email address
The Register - Security
[ ]
Attacker steals personal data of 200K+ people with links to Arizona tech school
[ ]
Mega money, unfathomable violence pervade thriving underground doxxing scene
[ ]
Evolve your cloud security knowledge
[ ]
Trump campaign cites Iran election phish claim as evidence leaked docs were stolen
[ ]
The UN unanimously agrees that cybercrime is bad, mkay?
Information Security
[ ]
Coforge Faces $11 Million Heat After Alleged Data Breach
Social Engineering
[ ]
Let your own self have the initiative, not a manipulative social media algorithm. Do what you got to do in priority. Don't let social media algorithms have the initiative over your will, like someone messing with your plans.
[ ]
Think Faster, Talk Smarter - Book Summary 📚
[ ]
Looking to Brainstorm SaaS Ideas for Cybersecurity—What Problems Need Solving?
Palo Alto Networks Blog
[ ]
The Missing Piece of SASE — Prisma Access Browser — Now Available
Security Affairs
[ ]
A FreeBSD flaw could allow remote code execution, patch it now!
[ ]
EastWind campaign targets Russian organizations with sophisticated backdoors
[ ]
Microsoft found OpenVPN bugs that can be chained to achieve RCE and LPE
Graham Cluley
[ ]
The BlackSuit ransomware gang has demanded over $500 million since 2022
Your Open Hacker Community
[ ]
Need Help With NGROK
[ ]
Bypassing web login for internet access (Help)
Security Weekly Podcast Network (Audio)
[ ]
Security Money: Crowdstrike Crashes the Index - BSW #360
每日安全资讯(2024-08-13)