Regional Threat Perspectives, Fall 2019: Latin America
Latin American systems received more attacks from IP addresses within the region that coincidentally did not attack anywhere else in the world.
Aggregator
BurpSuite2021.5.1破解版
6 years 1 month ago
0x01 工具介绍BurpSuite是一款信息安全从业人员必备的集成型的渗透测试工具,它采用自动测试和半自动测试的方式,包含了 Proxy,Spider,Scanner,Intruder,Rep...
独自等待
Book: Cybersecurity Attacks - Red Team Strategies
6 years 1 month ago
Excited to announce the book that I have been working on:
Cybersecurity Attacks - Red Team Strategies
Learn about the foundational tactics, techniques and procedures to elevate your red teaming skills and enhance the overall security posture of your organization by leveraging homefield advantage.
Contents and BackgroundRed Team Strategies covers aspects that are not as commonly discussed in literature, including chapters around building and managing a pen test team. However, there is still plenty of technical content included as well. It is not a typical pen test book that focuses on common tools, or walks the reader through the various stages of a pen test.
Regional Threat Perspectives, Fall 2019: Canada
6 years 1 month ago
The U.S. and Canada have 95% of top source traffic countries in common.
Regional Threat Perspectives, Fall 2019: Canada
6 years 1 month ago
The U.S. and Canada have 95% of top source traffic countries in common.
burp插件debug - 羊小弟
6 years 1 month ago
java -agentlib:jdwp=transport=dt_socket,server=y,suspend=n,address=5005 -jar burpsuite_community_v2.1.0.jar 通过这篇文章学到的,https://www.freebuf.com/articles
羊小弟
利用SSH隧道构建多级tunnel
6 years 1 month ago
01简介隧道是把一种网络协议封装进另外一种网络协议进行传输的技术。SSH构建隧道有三种方式: 本地转发、远程
利用SSH隧道构建多级tunnel
6 years 1 month ago
01简介隧道是把一种网络协议封装进另外一种网络协议进行传输的技术。SSH构建隧道有三种方式: 本地转发、远程
Cms代码审计方法
6 years 1 month ago
前言 记录cms挖掘漏洞的几种下手方法 基于危险函数 最常见的应该是这种了 通过搜索常见的危险函数如assert|eval|system|file_
Docker中的Mysql配置问题处理与思考
6 years 1 month ago
hurricane618
Vulnerabilities, Exploits, and Malware Driving Attack Campaigns in October 2019
6 years 1 month ago
Vulnerable web servers are the top target for threat actors, who continue to exploit known vulnerabilities with the goal of running commands remotely.
Vulnerabilities, Exploits, and Malware Driving Attack Campaigns in October 2019
6 years 1 month ago
Vulnerable web servers are the top target for threat actors, who continue to exploit known vulnerabilities with the goal of running commands remotely.
Recognizing Lessons Learned From the First DNSSEC Key Rollover, a Year Later
6 years 1 month ago
A year ago, under the leadership of the Internet Corporation for Assigned Names and Numbers (ICANN), the internet naming community completed the first-ever rollover of the cryptographic key that plays a critical role in securing internet traffic worldwide. The ultimate success of that endeavor was due in large part to outreach efforts by ICANN and […]
The post Recognizing Lessons Learned From the First DNSSEC Key Rollover, a Year Later appeared first on Verisign Blog.
Burt Kaliski
Code Audit
6 years 1 month ago
前言 代码审计是白盒测试的重要部分,对它的自动化探索也从未停止,但是在现实环境复杂度下现有的工具 实用性并不用.只能实现发现简单漏洞.本文讨论现
Regional Threat Perspectives, Fall 2019: United States
6 years 1 month ago
U.S. systems were heavily targeted by IP addresses in Russia, Moldova, and France that launched credential stuffing attacks on VNC port 5900 beginning in June 2019.
Regional Threat Perspectives, Fall 2019: United States
6 years 1 month ago
U.S. systems were heavily targeted by IP addresses in Russia, Moldova, and France that launched credential stuffing attacks on VNC port 5900 beginning in June 2019.
如何配置Policy强制AWS控制台使用MFA,CLI不用MFA?
6 years 1 month ago
TonghuaRoot
罗马史书单 C1.0
6 years 1 month ago
前言之前忘了哪个逗比说,让我定期推荐一些书。今天突发奇想,弄个书单。
罗马史书单 C1.0
6 years 1 month ago
前言之前忘了哪个逗比说,让我定期推荐一些书。今天突发奇想,弄个书单。
罗马史书单 C1.0
6 years 1 month ago
前言之前忘了哪个逗比说,让我定期推荐一些书。今天突发奇想,弄个书单。