PHP Filter Chain 无文件 RCE分析
通过精心构造 php://filter 链,在不写入任何文件的前提下,将一个普通的本地文件包含(LFI)漏洞直接升级为远程代码执行(RCE)。
Aggregator
Hessian 二次反序列化新链从零到一挖掘
22 hours 6 minutes ago
记录一条新的hessian二次反序列化链的完整分析过程
伪装成10086官网流量的Cobalt Strike木马深度分析
22 hours 6 minutes ago
海量IP地址字符串转码生成shellcode、Beacon木马伪造Referer请求头为10086官网
Java Attach API内存注入
22 hours 6 minutes ago
通过 Java Attach API的底层Unix Domain Socket通信协议,结合Linux内核memfd_create系统调用实现纯内存态Agent注入。
GraalVM Polyglot 沙箱逃逸:跨语言上下文 RCE
22 hours 6 minutes ago
从受限JavaScript沙箱到宿主Java环境的完整攻击链构造与纵深防御
泛微e9分析思路
22 hours 6 minutes ago
本文基于泛微e9(9.00.210804版本),系统阐述OA系统的安全审计方法。文章涵盖环境搭建、六大类路由(/weaver/、/api/、/services/*、/dwr/*等)的分析,详细剖析SecurityMain安全过滤机制、XssRequestWeblogic参数过滤、登录绕过等技术要点。通过FileDownloadLocation文件读取、browser.jsp SQL注入等实战案例,
JDK 21 反序列化过滤器绕过与 Post-TemplatesImpl 利用链构造
22 hours 6 minutes ago
Java 反序列化、ObjectInputFilter、JEP 415、Gadget Chain、JDK 21、绕过技术、SignedObject
FFM API之RASP 绕过
22 hours 6 minutes ago
Foreign Function & Memory API(FFM API)是 JDK 21 引入的用于替代 JNI 的本地互操作接口。
一款伪装成豆包Claw的恶意项目
22 hours 6 minutes ago
一款伪装成豆包Claw的恶意项目仍在活跃
「幻核-3」向Linux程序注入代码而文件大小不变
22 hours 7 minutes ago
利用 TEXT 段页对齐产生的代码洞(Code Cave),结合 PT_NOTE 段头篡改为 PT_LOAD 的手法,在不改变目标文件大小的前提下,向合法 ELF 程序注入自定义可执行载荷。感染后的程序功能表现完全不受影响,仅哈希值发生变化。
Spain arrests suspected hacker for publishing personal data of police, prosecutors and cyber officials
22 hours 24 minutes ago
Police described the incident as a large-scale disclosure of sensitive personal information that posed a threat to both the affected individuals and the institutions they serve. The data was allegedly posted on multiple internet platforms.
THM-RazorBlack
22 hours 31 minutes ago
THM-RazorBlack-writeup
复现 ICLR 2026 在审《TrojanPraise》:从 12% 到 42% 的 LoRA 越狱调参实战
22 hours 39 minutes ago
一个越狱调参实验
Z3r0:我所设想的红队协作平台
22 hours 43 minutes ago
用多 Agent 分工处理安全任务,用 Docker 沙箱约束工具执行,用持久化事件和上下文投影保证任务过程可恢复、可审计、可复盘。
Why Encrypted File Sharing Is Essential for Modern Businesses
22 hours 44 minutes ago
Consider the history of any recent corporate scandal, and it is quite possible to guess what the story…
Owais Sultan
Attackers are exploiting Palo Alto Networks defect that initially flew under the radar
22 hours 55 minutes ago
The escalated threat posed by the defect showcases how quickly a seemingly mild vulnerability can turn into an urgent warning.
The post Attackers are exploiting Palo Alto Networks defect that initially flew under the radar appeared first on CyberScoop.
Matt Kapko
Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks
23 hours 10 minutes ago
A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and FakeUpdates techniques on compromised sites. [...]
Bill Toulas
谁在用你的带宽赚钱?揭秘你的住宅网络是如何沦为代理节点的
23 hours 14 minutes ago
FlixVision APK 应用。表面上以免费观看电影、电视节目为噱头吸引用户安装,背地里却悄悄占用用户宽带资源,私自搭建隐蔽的网络代理通道。
Red Hat npm packages compromised to steal developer credentials
23 hours 46 minutes ago
More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed "Miasma." [...]
Lawrence Abrams
2026DCIC数字中国创新大赛网安赛道初赛部分题解
23 hours 52 minutes ago
比赛部分题解