Aggregator

前期通过.git泄露找到了未授权接漏洞，之后在后渗透过程中，利用grafana的payload时，被nginx的normailized处理掉了，所以通过此文介绍如何绕过nginx的normailized进行漏洞利用

本文基于windows10，通过逆向工程分析了内核级容器silo的完整实现原理。

This post introduces GreyNoise Labs' series on BTLE, highlighting its privacy and security implications, as well as the journey from basic usage to sophisticated system development, offering insights for cybersecurity professionals and tech enthusiasts alike.

The ransomware group LockBit told officials with Fulton County, Ga. they could expect to see their internal documents published online this morning unless the county paid a ransom demand. Instead, LockBit removed Fulton County's listing from its victim shaming website this morning, claiming county officials had paid. But county officials said they did not pay, nor did anyone make payment on their behalf. Security experts say LockBit was likely bluffing and probably lost most of the data when the gang's servers were seized this month by U.S. and U.K. law enforcement.

As attackers' tactics change, so must network defenders'.

在https://xz.aliyun.com/t/13637中，漏洞作者已经详细介绍了漏洞的原理、分析及复现过

​TideInspire(潮启)是由新潮信息Tide安全团队自研推出的一款移动端安全管控平台。通过利用该平台获取的数据，进而对山东省移动应用数量、恶意仿冒应用分布情况，安全漏洞数量等九个方面进行总结与展示。

扫描二维码可获取完整报告

eCapture v0.7.4版本发布支持Pcap Filter Syntax，你可以像tcpdump一样使用pcap filter表达式来过滤网络包。在tls或gotls模块中，当运行模式参数-m为pcap时，在命令行最后的参数中设定。

深蓝洞察年度安全报告完结篇

You've migrated to the cloud, which means it's time to focus on cloud security. Here are some first steps to begin enacting your cloud security strategy.

十几国执法机构合作，定向清除了 LockBit 的攻击基础设施，但不到一周 LockBit 就死灰复燃。

The Lazarus Group is back with an upgraded variant of their FudModule rootkit, this time enabled by a zero-day admin-to-kernel vulnerability for CVE-2024-21338. Read this blog for a detailed analysis of this rootkit variant and learn more about several new techniques, including a handle table entry manipulation technique that directly targets Microsoft Defender, CrowdStrike Falcon, and HitmanPro.

The post Lazarus and the FudModule Rootkit: Beyond BYOVD with an Admin-to-Kernel Zero-Day appeared first on Avast Threat Labs.

业绩快报月结束，新增7家网安公司2003年收入6增1降，利润2增5降

Last November, I was pleased to chair the most recent meeting of the Interagency International Cybersecurity Standardization Working Group (IICSWG) – a group NIST created in 2016. Our charge, from the Cybersecurity Enhancement Act of 2014, was to build a coordination mechanism for government agencies to discuss international cybersecurity standardization issues, consistent with agencies’ responsibilities under OMB Circular A-119. Since then, IICSWG has grown as a forum to discuss cybersecurity and privacy standardization topics, examine the overall cybersecurity standardization landscape (

The most extraordinary week in ransomware history anyone can remember began on Feb. 19 with an historic takedown of the infrastructure used by notorious ransomware group, LockBit. Industry watchers were euphoric, almost giddily so. If anything, that might be understating it. Twitter-X was ablaze with congratulations, most of them aimed at Britain’s National Crime Agency […]

The post Police Dismember LockBit in Historic Ransomware Takedown appeared first on Ransomware.org.