每日安全动态推送(2-15)

渗透技巧 1年前 (2023) admin
301 0 0
Tencent Security Xuanwu Lab Daily News

• Exploiting a remote heap overflow with a custom TCP stack:
https://www.synacktiv.com/publications/exploiting-a-remote-heap-overflow-with-a-custom-tcp-stack.html

   ・ 通过修改TCP协议栈来帮助远程利用, 利用一个堆溢出漏洞在pwn2own中攻破Western Digital MyCloudHome NAS – xmzyshypnc


• AI-powered Bing Chat spills its secrets via prompt injection attack:
https://arstechnica.com/information-technology/2023/02/ai-powered-bing-chat-spills-its-secrets-via-prompt-injection-attack/

   ・ 对Bing Chat进行提示词泄漏攻击 – keenan


• How I hacked into a Telecom Network — Part 1 (Getting the RCE):
https://link.medium.com/LDhm3bGroxb

   ・ 介绍渗透攻击电信网络的过程 – WireFish


• Learning Semgrep:
https://goingbeyondgrep.com/posts/learning-semgrep/

   ・ 学习 Semgrep教程 – lanying37


• [Tools] All about LeakSanitizer:
https://maskray.me/blog/2023-02-12-all-about-leak-sanitizer

   ・ 安全研究员 MaskRay(宋教授)对 LeakSanitizer 的原理介绍 – WireFish


• 有趣的Hack-A-Sat黑掉卫星挑战赛——被破坏的阿波罗计算机(解法一) – FreeBuf网络安全行业门户:
https://www.freebuf.com/articles/357367.html

   ・ Hack-A-Sat 比赛 writeup – WireFish


* 查看或搜索历史推送内容请访问:
https://sec.today

* 新浪微博账号:腾讯玄武实验室
https://weibo.com/xuanwulab


原文始发于微信公众号(腾讯玄武实验室):每日安全动态推送(2-15)

版权声明:admin 发表于 2023年2月15日 上午11:01。
转载请注明:每日安全动态推送(2-15) | CTF导航

相关文章

暂无评论

您必须登录才能参与评论!
立即登录
暂无评论...