Aggregator

Excited to announce that I will be presenting at BSides Singapore this year. The topic is adversarial usage of virtual machines during lateral movement. And we will also cover threat hunting and detection ideas. I have been referring to this technique as the Shadowbunny over the years. :) The conferences is on September 24th-25th, it will be all virtual and free to attend. Check out the BSidesSG 2020 website and schedule for other talks and details.

Jackson反序列化漏洞

Fintech安全之路

4 years 2 months ago

今天又看到有一些安全预警平台爆出的Jackson反序列漏洞，要求把Jackson升级到2.9.10.6，所以在下面对漏洞原理和适用范围做一下分析，并给出poc。

How Credential Stuffing Bots Bypass Defenses

F5 Labs

4 years 2 months ago

Website logins are under constant assault, with attackers quickly modifying their bots to evade simplistic defenses.

MySQL蜜罐获取攻击者微信ID

零队

4 years 2 months ago

前言前些日子有人问到我溯源反制方面的问题，我就想到了MySQL任意文件读取这个洞，假设你在内网发现或扫到了

Becoming a Comms and Analyst Relations Leader, Rita Aspen - Head, Communications & Analyst Relations, APJ

The Akamai Blog

4 years 2 months ago

My parents were first-generation immigrants from India. They worked hard, made Singapore their home and took all and any challenges head on. They have always lived by the simple philosophy, 'to be the change'. It's a philosophy that I try to live too, and in many ways it's what attracted me to Akamai not too long ago.

Rita Aspen

手把手带你搭建钓鱼Wi-Fi热点[1]

物联网IoT安全

4 years 2 months ago

手把手教你搭建钓鱼Wi-Fi

Race conditions when applying ACLs

Embrace The Red

4 years 2 months ago

Today I’m gonna talk about a class of application security issues I ran across a few times over the years. In particular, let’s discuss race conditions when it comes to files with sensitive content and permissions. Race conditions can allow an adversary to gain access to sensitive information on machines. Assume a system creates a file that contains sensitive information and afterwards applies permissions to lockdown that file. Understanding the race condition Let’s look at a practical example seen in the wild a few times.