Edge DNS and the Top-Level Domain Hosting The Akamai Blog 2 years 1 month ago Akamai Edge DNS offers the scale and functionality to meet ICANN?s intensive requirements for hosting a generic top-level domain (gTLD) zone in DNS. Sam Preston
Android类加载流程 - luoyesiqiu 博客园_luoyesiqiu 2 years 1 month ago 背景 由于前前前阵子写了个壳,得去了解类的加载流程,当时记了一些潦草的笔记。这几天把这些东西简单梳理了一下,本文分析的代码基于Android8.1.0源码。 流程分析 从loadClass开始,我们来看下Android中类加载的流程 /libcore/ojluni/src/main/java/jav luoyesiqiu
Akamai Mitigates Hop-by-Hop Header Abuse Leading to Request Smuggling The Akamai Blog 2 years 1 month ago Security researchers identified and disclosed a new technique of hop-by-hop header attacks, leading to request smuggling, which Akamai successfully mitigated. Kaan Onarlioglu
DotNet安全-Exchange请求流程分析(一) 7bits安全团队 2 years 1 month ago 红队行动中如果能控制目标的exchange服务器就离成功不远了。这两年几乎每隔一段时间都会有新的漏洞出现。研究这些漏洞之前我们需要对exchange整体的架构一个大体的了解,本文是笔者在了解exchange运行机制过程的一些简单记录。
Cyber Essentials Plus is for charities too! NCSC Feed 2 years 1 month ago Sara Ward, the CEO of Black Country Women's Aid, discusses her organisation's experience of gaining Cyber Essentials Plus certification.
GLPI htmLawedTest.php 远程命令执行漏洞 CVE-2022-35914 PeiQi文库 2 years 1 month ago GLPI htmLawedTest.php 远程命令执行漏洞 CVE-2022-35914
Financial Services Malware Just Won?t Die: What to Do About It? The Akamai Blog 2 years 1 month ago The continued reemergence of the Emotet malware is keeping cybersecurity professionals on their toes. Zero Trust solutions are here to help. Jim Black
CTF | 2022 ByteCTF WriteUp MiaoTony's小窝 2 years 1 month ago 上周末打了下ByteCTF,题目还是挺不错的,可是喵喵太菜,这里只能来写点简单题的writeup了。 MiaoTony
NCSC for Startups: the case for collaboration NCSC Feed 2 years 1 month ago Saj Huq of Plexal explains why collaboration with the NCSC brings opportunities to the cyber security sector.
线程注入与JRASP实践 RASP安全技术 2 years 1 month ago 任意代码执行漏洞中,攻击者通过开启一个新的线程来执行命令时,rasp丢失请求的上下文、执行堆栈等重要参数,导致检测算法(堆栈算法、ip黑名单、请求参数特征等无法关联)失效,极大的影响RASP的防御功能与溯源能力。
Akamai?s Response to Zero-Day Vulnerabilities in Microsoft Exchange Server (CVE-2022-41040 and CVE-2022-41082) The Akamai Blog 2 years 1 month ago Akamai Security Research has released web application firewall protections for Microsoft Exchange CVE-2022-41040 and CVE-2022-41082. Akamai Security Intelligence Group
Akamai Aids India Through Corporate Social Responsibility Partnerships The Akamai Blog 2 years 1 month ago Akamai?s Corporate Social Responsibility Trust partners with nonprofit organizations to help enhance the lives of people across India. Neha Jain
【漏洞通报】微软Exchange服务SSRF&RCE漏洞(CVE-2022-4104... NOSEC 安全讯息平台 - 漏洞预警 2 years 1 month ago 近日,白帽汇安全研究院监测到微软修复了一个服务器端请求伪造(SSRF)漏洞(CVE-2022-41040)和一个远程代码执行(RCE)漏洞(CVE-2022-41082),CVE-2022-4104... xiannv
DevSecOps皇冠上的明珠-ASOC 安全产品人的赛博空间 2 years 1 month ago 快变成按年更新了哈哈,最近因为一些工作需求,要写一点比较有新意和前沿的东西,结合自己做安全产品的经历,在DevSecOps领域发现ASOC这个方向国内鲜有人讲,因此有了这篇文章简单介绍下ASOC这个领域
"Winning trust, and making powerful connections" NCSC Feed 2 years 1 month ago Chris Wallis, CEO of Intruder, explains how completing the NCSC's Startup Programme was a turning point for his organisation.
基于SBERT孪生网络的漏洞描述归一化 VLabTeam 2 years 1 month ago 在人工智能高速发展的今天,CV和NLP领域技术具备多种成熟的方案,采用NLP技术来代替繁杂的人工工作已是技术发展的趋势。