NCatDDoS僵尸网络正在利用CVE-2023-46604进行传播
近期,360安全大脑捕获到一款僵尸网络变种正在利用Apache ActiveMQ漏洞(CVE-2023-46604)进行积极传播,样本涵盖x86、arm、mpsl等CPU架构。经过分析确认,该变...
NNew Xagent Mac Malware Linked with the APT28
Background 背景On Valentine's Day, BitDefender released a short writeup title, 'New Xagent Mac Malware Linked with the APT28'. In the writeup, they...
NThe Worst (But Only) Claude 3 Tokenizer
Anthropic recently released Claude 3, a new family of large language models. However, they have not publicly released their tokenizer (yet?). But n...
NUsing the LockBit builder to generate targeted ransomware
The previous Kaspersky research focused on a detailed analysis of the LockBit 3.0 builder leaked in 2022. Since then, attackers have been able to g...
NExploits Explained: ZIP embedding attack on Google Chrome extensions
Growtika / Unsplash Editor's note: In this installment of Exploits Explained, security researcher Malcolm Stagg recounts his discovery of CVE-2024-...
NOpenClinic GA 5.247.01 – Path Traversal (Authenticated)
# Exploit Title: OpenClinic GA 5.247.01 - Path Traversal (Authenticated) # Date: 2023-08-14 # Exploit Author: V. B. # Vendor Homepage: https://sour...
NToolkit – The Essential Toolkit For Reversing, Malware Analysis, And Cracking
This tool compilation is carefully crafted with the purpose of being useful both for the beginners and veterans from the malware analysis wo...
NJenkins 2.441 – Local File Inclusion
# Exploit Title: Jenkins 2.441 - Local File Inclusion # Date: 14/04/2024 # Exploit Author: Matisse Beckandt (Backendt) # Vendor Homepage: https://w...
NCatcher(捕手)
Catcher(捕手) 最近在学习golang,看到EHole感觉真的很好用,所以写了这个工具 0x00: 简介 Catcher重点系统指纹漏洞验证工具,适用于外网打点,资产梳理...
NMicrosoft’s ‘AI Watchdog’ defends against new LLM jailbreak method
(Credit: monticellllo – stock.adobe.com) (图片来源:monticellllo – stock.adobe.com) Microsoft has discovered a new method to jailbreak larg...