每周蓝军技术推送（2023.7.15-7.21）

https://code-white.com/blog/2023-07-from-blackbox-dotnet-remoting-to-rce/

https://posts.specterops.io/performance-diagnostics-and-wmi-21f3e01790d3

https://github.com/0xthirteen/PerfExec

https://github.com/CognisysGroup/HadesLdr

https://github.com/irsl/curlshell

https://s3cur3th1ssh1t.github.io/Cat_Mouse_or_Chess/

https://github.com/S3cur3Th1sSh1t/Ruy-Lopez

https://github.com/hfiref0x/WubbabooMark

https://ioctl.fail/echo-ac-writeup/

https://github.com/kite03/echoac-poc

https://www.kroll.com/en/insights/publications/cyber/ghostscript-cve-2023-36664-remote-code-execution-vulnerability

https://blog.pksecurity.io/2023/07/07/cve-2023-32439-webkit.html

https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt

https://bugs.chromium.org/p/chromium/issues/detail?id=1432210

https://securelist.com/analysis-of-attack-samples-exploiting-cve-2023-23397

https://www.wojciechregula.blog/post/macos-atlassian-companion-rce/

https://www.mandiant.com/resources/blog/privileges-third-party-windows-installers

https://github.com/RhinoSecurityLabs/IAMActionHunter

https://github.com/mvelazc0/BadZure

https://www.trustedsec.com/blog/hacking-your-cloud-tokens-edition-2-0/

https://blog.aquasec.com/detecting-ebpf-malware-with-tracee

https://arxiv.org/abs/2306.09925

https://github.com/binsec/binsec