渗透技巧
NOpenClinic GA 5.247.01 – Path Traversal (Authenticated)
# Exploit Title: OpenClinic GA 5.247.01 - Path Traversal (Authenticated) # Date: 2023-08-14 # Exploit Author: V. B. # Vendor Homepage: https://sour...
NJenkins 2.441 – Local File Inclusion
# Exploit Title: Jenkins 2.441 - Local File Inclusion # Date: 14/04/2024 # Exploit Author: Matisse Beckandt (Backendt) # Vendor Homepage: https://w...
NCatcher(捕手)
Catcher(捕手) 最近在学习golang,看到EHole感觉真的很好用,所以写了这个工具 0x00: 简介 Catcher重点系统指纹漏洞验证工具,适用于外网打点,资产梳理...
NCVE-2024-2448: Authenticated Command Injection In Progress Kemp LoadMaster
Vulnerability Overview 漏洞概述 Affected Product Summary 受影响的产品摘要 This blog covers 2 vulnerabilities discovered in LoadMaster load b...
NPoC Exploit Released for 0-day Windows Kernel Elevation of Privilege Vulnerability (CVE-2024-21338)
Security researchers published the technical details and proof-of-concept (PoC) exploit code for a dangerous zero-day CVE-2024-21338 vulnerability ...
NActive Directory – Read Only Domain Controller
RODCs are an alternative for Domain Controllers in less secure physical locations - Contains a filtered copy of AD (LAPS and Bitlocker keys are exc...
N每日安全动态推送(4-16)
Tencent Security Xuanwu Lab Daily News• Re: [RESEND RFC] kernel/ksysfs.c: restrict /sys/kernel/notes to root access - Kees Cook:https://lore.k...
N每日安全动态推送(4-15)
Tencent Security Xuanwu Lab Daily News• Re: New Linux LPE via GSMIOC_SETCONF_DLCI?:https://seclists.org/oss-sec/2024/q2/103 ...
N深入分析网络智能摄像头的RTSP协议安全风险
网络摄像头作为现代安防体系的关键组成部分,已经广泛应用于各类场所,包括交通枢纽、教育机构、企业办公区、零售商场等公共和私人领域。它们主要负责提供实...
NHaifei’s random thoughts
EXPMON detected 'zero-day' PDF sample attempting to exploit Foxit Reader's bad design of security warning dialogs EXPMON 检测到“零日”PDF 样本试图利...