CyborgSecurity安全动态(3-12)



  • h23.png

    1.https://github.com/360-A-Team/LuWu
    cs框架一键部署脚本
    2.https://github.com/antonioCoco/SharPyShell
    SharPyShell - 用于C#Web应用程序的微小且混淆的ASP.NET webshel 
    3.https://blog.christophetd.fr/building-an-office-macro-to-spoof-process-parent-and-command-line/
    构建Office宏以欺骗父进程和命令行参数
    5.https://github.com/OneLogicalMyth/BuildReview-Windows
    用于执行Windows主机的构建审核的PowerShell脚本
    6.https://medium.com/@slowmist/slowmist-red-alert-false-top-up-vulnerability-attack-of-eos-d7eb20c88e5f
    SlowMist红色警报:EOS的“虚假充值”漏洞攻击Â
    7.https://github.com/iamrootsh3ll/AnchorWatch
    具有电子邮件警报功能的Rogue设备检测脚本,仅windows
    8.https://ijustwannared.team/2019/03/11/browser-pivot-for-chrome/
    适用于Chrome的浏览器数据透视表
    9.https://0x00sec.org/t/malware-writing-python-malware-part-2-keylogging-with-ctypes-and-setwindowshookexa/11858
    恶意软件编写 - Python恶意软件,第2部分:使用ctypes和SetWindowsHookExA进行键盘记录
    10.https://resources.infosecinstitute.com/raven-1-ctf-walkthrough/
    Raven 1: CTF Walkthrough
    11.https://packetstormsecurity.com/files/152031/linkern44sndtimer-leak.txt
    x内核版本4.4(Ubuntu 16.04)受到snd_timer_user_ccallback()内核指针泄漏漏洞的影响。
    12.https://0x00sec.org/t/malware-writing-python-malware-part-3-stealing-credentials-and-cookies/12099
    恶意软件编写 - Python恶意软件,第3部分:窃取凭据和cookie
    13.https://globfone.com/send-text/
    这个网站可以免费发送匿名短信,无需注册
    14.https://exploit.kitploit.com/2019/03/qnap-ts-431-qts-remote-command-execution.html
    QNAP TS-431 QTS远程命令执行
    15.https://packetstormsecurity.com/files/152014/oraclewls-deserializeexec.txt
    Oracle Weblogic Server反序列化远程命令执行
    

Log in to reply