unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
Technical Advisory – Lansweeper Privilege Escalation via CSRF Using HTTP Method Interchange (CVE-2020-13658)
Vendor: Lansweeper SoftwareVendor URL: https://www.lansweeper.com/Versio...
2020-09-25 20:40:00 | 阅读: 512 |
收藏
|
research.nccgroup.com
lansweeper
18th
Online Casino Roulette – A guideline for penetration testers and security researchers
IntroductionIn recent years, the gaming industry has grown significantly, especially casino...
2020-09-18 18:00:00 | 阅读: 694 |
收藏
|
research.nccgroup.com
roulette
winning
bet
ball
wheel
Extending a Thinkst Canary to become an interactive honeypot
Building on Ollie’s previous blog, in which he built a TCP proxying servic...
2020-09-14 19:54:51 | 阅读: 412 |
收藏
|
research.nccgroup.com
ssh
nmap
containers
fingerprint
ecdsa
StreamDivert: Relaying (specific) network connections
Author: Jelle VergeerThe first part of this blog will be the story of...
2020-09-10 17:14:23 | 阅读: 475 |
收藏
|
research.nccgroup.com
network
client
software
userland
Public Report – Electric Coin Company NU4 Cryptographic Specification and Implementation Review
In June 2020, the Electric Coin Company engaged NCC Group to conduct a sec...
2020-09-04 20:00:00 | 阅读: 378 |
收藏
|
research.nccgroup.com
zips
zcash
eight
consultants
Machine learning from idea to reality: a PowerShell case study
Detecting both ‘offensive’ and obfuscated PowerShell scripts in Splunk using Windows Event Log 4...
2020-09-02 17:27:49 | 阅读: 454 |
收藏
|
research.nccgroup.com
powershell
windows
github
powerup
Conference Talks – September 2020
This month, NCC Group researchers will be presenting their work at the fol...
2020-08-31 21:00:16 | 阅读: 412 |
收藏
|
research.nccgroup.com
security
forest
cloud
trusts
forests
Whitepaper – Exploring the Security of KaiOS Mobile Applications
KaiOS is a mobile operating system, forked from the discontinued Firefox O...
2020-08-25 05:05:35 | 阅读: 464 |
收藏
|
research.nccgroup.com
security
kaios
remote
forked
injection
Technical Advisory – wolfSSL TLS 1.3 Client Man-in-the-Middle Attack
Vendor: wolfSSLVendor URL: https://www.wolfssl.com/Versions affected: Ve...
2020-08-24 21:00:00 | 阅读: 457 |
收藏
|
research.nccgroup.com
wolfssl
client
library
github
machine
Technical Advisory – Multiple HTML Injection Vulnerabilities in KaiOS Pre-installed Mobile Applications
Multiple HTML injection vulnerabilities were found in several KaiOS mobile applications that are...
2020-08-22 05:33:00 | 阅读: 541 |
收藏
|
research.nccgroup.com
kaios
injection
attacker
certified
inject
Technical Advisory – FreePBX – Multiple Authenticated SQL Injections in UCP application
Summary:The User Control Panel (UCP) application is vulnerable to...
2020-08-22 00:39:19 | 阅读: 562 |
收藏
|
research.nccgroup.com
cel
sangoma
ucp
cdr
security
Immortalising 20 Years of Epic Research
In December 2019 we launched this new technical security research blog site. As part of its launch w...
2020-08-21 21:37:00 | 阅读: 502 |
收藏
|
research.nccgroup.com
security
windows
analysis
whitepaper
Pairing over BLS12-381, Part 3: Pairing!
This is the last of three code-centric blog posts on pairing based cryptography. Support for the...
2020-08-13 21:00:00 | 阅读: 424 |
收藏
|
research.nccgroup.com
pairing
scalar
miller
bls
Public Report – Pixel 4/4XL and Pixel 4a ioXt Audit
NCC Group was contracted by Google to conduct a security assessment of the...
2020-08-10 22:00:00 | 阅读: 603 |
收藏
|
research.nccgroup.com
security
ioxt
alliance
4xl
4a
NCC Group researchers named amongst MSRC’s Most Valuable Security Researchers in 2020
Yesterday, the Microsoft Security Response Center announced their Most Val...
2020-08-07 06:33:11 | 阅读: 513 |
收藏
|
research.nccgroup.com
dirk
security
microsoft
windows
Lights, Camera, HACKED! An insight into the world of popular IP Cameras
PrefaceDuring the Covid-19 pandemic, the battle to secure and protect businesses as well as...
2020-07-31 21:37:11 | 阅读: 957 |
收藏
|
research.nccgroup.com
security
username
heartbleed
uart
rtsp
Conference Talks – August 2020
This month, NCC Group researchers will be presenting their work at the fol...
2020-07-31 20:00:00 | 阅读: 527 |
收藏
|
research.nccgroup.com
kubernetes
security
database
roadrecon
usa
Tool Release – Winstrument: An Instrumentation Framework for Windows Application Assessments
by George OsterweilWinstrument is a modular framework built on top of Frida designed to help...
2020-07-30 01:40:00 | 阅读: 503 |
收藏
|
research.nccgroup.com
winstrument
mspaint
windows
readfile
oster
Tool Release: Sinking U-Boots with Depthcharge
Depthcharge is an extensible Python 3 toolkit designed to aid security researchers when analyzin...
2020-07-23 01:00:49 | 阅读: 723 |
收藏
|
research.nccgroup.com
depthcharge
i2c
security
memory
bootloader
Technical Advisory: Heartbleed chained with a Pass-the-Hash attack leads to device compromise on TP-Link C200 IP Camera
Vendor: TP-LinkVendor URL: https://www.tp-link.com/uk/Versions aff...
2020-07-21 18:00:03 | 阅读: 580 |
收藏
|
research.nccgroup.com
heartbleed
stok
security
tapo
memory
Previous
20
21
22
23
24
25
26
27
Next