[公告]不安全上线【我的收藏】功能
2019-09-26 17:32:30  •  阅读 ♾  
[公告]不安全更换新域名为: buaq.net 短域名:https://f5.pm
2019-09-26 17:32:30  •  阅读 ♾  
Using UUIDs for Authorization is Dangerous (even if they’re cryptographically random)
2021-05-10 18:00:00  •  阅读 57 •  点我收藏   
Public Report – Dell Secured Component Verification
2021-05-05 21:30:00  •  阅读 53 •  点我收藏   
Conference Talks – May 2021
2021-04-30 17:00:00  •  阅读 167 •  点我收藏   
A Census of Deployed Pulse Connect Secure (PCS) Versions
2021-04-23 23:55:28  •  阅读 66 •  点我收藏   
NCC Group’s Upcoming Trainings at Black Hat USA 2021
2021-04-14 07:04:25  •  阅读 100 •  点我收藏   
Public Report – VPN by Google One: Technical Security & Privacy Assessment
2021-04-09 00:23:01  •  阅读 101 •  点我收藏   
Technical Advisory – ParcelTrack sends all pasteboard data to ParcelTrack’s servers on startup
2021-03-31 01:57:51  •  阅读 82 •  点我收藏   
Tool Release – Principal Mapper v1.1.0 Update
2021-03-30 04:57:33  •  阅读 51 •  点我收藏   
SAML XML Injection
2021-03-29 23:00:00  •  阅读 112 •  点我收藏   
The Future of C Code Review
2021-03-24 00:12:31  •  阅读 113 •  点我收藏   
RIFT: Detection capabilities for recent F5 BIG-IP/BIG-IQ iControl REST API vulnerabilities CVE-2021-22986
2021-03-19 02:41:04  •  阅读 126 •  点我收藏   
Tool Release – Solitude: A privacy analysis tool
2021-03-17 21:00:00  •  阅读 118 •  点我收藏   
Deception Engineering: exploring the use of Windows Installer Packages against first stage payloads
2021-03-17 02:17:06  •  阅读 146 •  点我收藏   
Lending a hand to the community – Covenant v0.7 Updates
2021-03-16 19:52:31  •  阅读 152 •  点我收藏   
Technical Advisory: Dell SupportAssist Local Privilege Escalation (CVE-202-21518)
2021-03-11 00:21:34  •  阅读 161 •  点我收藏   
Technical Advisory – Multiple Vulnerabilities in Netgear ProSAFE Plus JGS516PE / GS116Ev2 Switches
2021-03-09 07:50:00  •  阅读 221 •  点我收藏   
Deception Engineering: exploring the use of Windows Service Canaries against ransomware
2021-03-05 01:06:46  •  阅读 165 •  点我收藏   
Wubes: Leveraging the Windows 10 Sandbox for Arbitrary Processes
2021-03-04 00:59:15  •  阅读 126 •  点我收藏   
Technical Advisory: Administrative Passcode Recovery and Authenticated Remote Buffer Overflow Vulnerabilities in Gigaset DX600A Handset (CVE-2021-25309, CVE-2021-25306)
2021-03-01 07:37:00  •  阅读 131 •  点我收藏   
Cryptopals: Exploiting CBC Padding Oracles
2021-02-18 01:16:07  •  阅读 125 •  点我收藏   
Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding Internet RFCs (and how RFC Security might be Improved)
2021-02-02 17:41:13  •  阅读 168 •  点我收藏   
Conference Talks – February/March 2021
2021-01-31 23:00:00  •  阅读 177 •  点我收藏   
NCC Group’s 2020 Annual Research Report
2021-01-31 10:00:00  •  阅读 245 •  点我收藏   
Software Verification and Analysis Using Z3
2021-01-29 21:00:00  •  阅读 171 •  点我收藏   
Technical Advisory – Linksys WRT160NL – Authenticated Command Injection (CVE-2021-25310)
2021-01-29 01:55:30  •  阅读 181 •  点我收藏   
Real World Cryptography Conference 2021: A Virtual Experience
2021-01-27 21:00:00  •  阅读 209 •  点我收藏   
RIFT: Analysing a Lazarus Shellcode Execution Method
2021-01-23 17:43:14  •  阅读 169 •  点我收藏   
MSSQL Lateral Movement
2021-01-21 23:30:23  •  阅读 176 •  点我收藏   
Public Report – BLST Cryptographic Implementation Review
2021-01-21 03:45:02  •  阅读 228 •  点我收藏   
Sign over Your Hashes – Stealing NetNTLM Hashes via Outlook Signatures
2021-01-16 02:54:59  •  阅读 202 •  点我收藏