Aggregator

A vulnerability identified as problematic has been detected in Linux Kernel. Impacted is the function put_device of the component thermal. Performing manipulation results in privilege escalation. This vulnerability is cataloged as CVE-2023-53012. The attack must originate from the local network. There is no exploit available. To fix this issue, it is recommended to deploy a patch.

、

先知安全沙龙第11场 - 红队评估服务视角下的攻击策略与技巧

本文章中所有内容仅供学习交流，严禁用于商业用途和非法用途，否则由此产生的一切后果均与文章作者无关。前言记录在某次演练的过程中一个有趣的记录。案例还是开局一个登录框，先看看是什么指纹发现是Vue的就先偏向去测试接口。就在findsomething上先看看有没有一些有用的接口,看到这一段接口就有点未授权的味道了。先用Vue Crack看看有没有一些未授权的路径进去看看还真有东西，这个插件使用起来也是非

MSSQL 横向：guest → appdev → 拖库 → Flask 哈希离线爆破 WinRM 喷洒：用 nxc 批量试口令，快速定位可用账户 BloodHound + SharpHound：图形化梳理 ACL 与攻击路径 BadSuccessor 漏洞利用：ligolo 打通隧道，bloodyAD 新建机器账户并配置 RBCD，Silver-Ticket 接管域控

引言在 Android 应用安全领域，“加固”是保护应用代码免遭逆向分析和篡改的重要手段。而想要真正理解加固技术，需必须深入 Android 系统的底层运行机制——尤其是应用从点击图标到 Application 初始化的完整启动流程。本文将从 Android 应用的启动过程入手，逐步剖析 Zygote、ActivityManagerService、ActivityThread 以及 LoadedA

主要攻击链路： 信息泄露->CVE-2025-2945 ssh横向->隧道搭建 NFS no_root_squash漏洞->docker ca 接管 ldap 配置篡改 -> Responder 进行ldap投毒 域凭证捕获 -> gMSA 密码检索 AD CS 滥用 -> 证书身份冒充 域管理员

本文详解PKZIP传统加密机制，利用bkcrack工具结合明文攻击恢复三段密钥，并通过逆向推导实现密码爆破与数据解密。

各位师傅们可能常常对着web站点一顿猛干，可能搞了半天没出货，这个时候可以去试试对应的小程序去试试，小程序的洞还是比较好找的。这次的证书站是在做好信息搜集的情况下，不断寻找小漏洞然后最后拼成一个中危才拿下的。

样本概况样本信息文件: DeviceManager.exeHASH: 58de3a083077a6f0f178bbf94ee2fc90875475e5277b687751e33cfa4e3cd519测试环境及工具WMware+Win10 64位火绒剑IDAX32dbgStud_PEexeinfope静态与动态分析木马程序分析将这个exe文件放入工具查看相关配置。首先看看文件的入口点，映像基址，区段

详解Flask3.x版本下两大类型内存马

A vulnerability described as critical has been identified in Linux Kernel up to 5.15.90/6.1.8. Affected is the function safety_feat_cfg. The manipulation results in null pointer dereference. This vulnerability is known as CVE-2023-53011. Access to the local network is required for this attack. No exploit is available. Upgrading the affected component is recommended.

A vulnerability categorized as problematic has been discovered in Linux Kernel up to 6.1.8. This issue affects some unknown processing of the component amdkfd. Such manipulation leads to improper initialization. This vulnerability is listed as CVE-2023-53009. The attack must be carried out from within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.8 and classified as critical. This affects the function snprintf. The manipulation leads to buffer overflow. This vulnerability is uniquely identified as CVE-2023-53010. The attack can only be initiated within the local network. No exploit exists. The affected component should be upgraded.

A vulnerability was found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8. It has been declared as critical. This affects an unknown part of the file trace_events_hist.c. The manipulation results in null pointer dereference. This vulnerability is identified as CVE-2023-53005. The attack can only be performed from the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.1.8. This affects the function trace_printk. The manipulation results in denial of service. This vulnerability is reported as CVE-2023-53007. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8. Affected by this issue is the function smbd_destroy. Executing manipulation can lead to use after free. This vulnerability is handled as CVE-2023-53006. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.8. It has been rated as critical. This vulnerability affects the function cifs_ses::auth_key.response. This manipulation causes memory leak. This vulnerability is tracked as CVE-2023-53008. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.4.230/5.10.165/5.15.90/6.1.8. Affected by this vulnerability is the function llcc_driv_data of the component LLCC Driver. Performing manipulation results in use after free. This vulnerability is known as CVE-2023-53003. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.8. It has been rated as problematic. This impacts an unknown function of the component ovl. The manipulation leads to memory leak. This vulnerability is referenced as CVE-2023-53004. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.