unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
Public Report – Qredo Apache Milagro MPC Cryptographic Assessment
During the spring of 2020, Qredo engaged NCC Group Cryptography Services to co...
2020-07-20 20:00:00 | 阅读: 467 |
收藏
|
research.nccgroup.com
mpc
ecdsa
library
milagro
goldfeder
Pairing over BLS12-381, Part 2: Curves
This is the second of three code-centric blog posts on pairing based cryptography. The first pos...
2020-07-13 20:00:00 | 阅读: 563 |
收藏
|
research.nccgroup.com
pairing
scalar
coordinates
fq2
Understanding the root cause of F5 Networks K52145254: TMUI RCE vulnerability CVE-2020-5902
tl;drCVE-2020-5902 was disclosed on July 1st, 2020 by F5 Networks in K52145254 as a CVSS 10....
2020-07-13 04:09:07 | 阅读: 634 |
收藏
|
research.nccgroup.com
tmui
hsqldb
ajp
proxy
fileread
RIFT: Citrix ADC Vulnerabilities CVE-2020-8193, CVE-2020-8195 and CVE-2020-8196 Intelligence
tl;drCitrix disclosed on July 7th, 2020 a number of vulnerabilities in...
2020-07-10 21:51:11 | 阅读: 644 |
收藏
|
research.nccgroup.com
rift
fusion
strategic
fox
attackers
An offensive guide to the Authorization Code grant
OAuth is the widely used standard for access delegation, enabling many of the “Sign in with X” b...
2020-07-07 20:00:01 | 阅读: 580 |
收藏
|
research.nccgroup.com
client
security
attacker
victim
rami
Technical Advisory – KwikTag Web Admin Authentication Bypass
Vendor: ImageTagVendor URL: https://www.kwiktag.comVersions affected: 4.5....
2020-07-07 05:33:03 | 阅读: 515 |
收藏
|
research.nccgroup.com
security
kwiktag
expired
requesting
draft
Pairing over BLS12-381, Part 1: Fields
This is the first of three code-centric blog posts on pairing based cryptography. The series wil...
2020-07-06 20:00:00 | 阅读: 514 |
收藏
|
research.nccgroup.com
fq1
haskell
pairing
degree
declaration
RIFT: F5 Networks K52145254: TMUI RCE vulnerability CVE-2020-5902 Intelligence
tl;drCVE-2020-5902 was disclosed on June 1, 2020 by F5 Networks in K5...
2020-07-05 23:44:45 | 阅读: 1015 |
收藏
|
research.nccgroup.com
tmui
jul
0700
localdomain
acc
Experiments in Extending Thinkst Canary – Part 1
tl;drThe Thinkst Canary is best described as a digital tripwire for ph...
2020-07-04 23:00:35 | 阅读: 530 |
收藏
|
research.nccgroup.com
development
twisted
opencanary
canaryproxy
0100
Tool Release – ScoutSuite 5.9.0
We’re proud to announce the release of a new version of our open-source, m...
2020-07-03 02:58:10 | 阅读: 525 |
收藏
|
research.nccgroup.com
rami
cloud
mccarthy
security
github
Technical Advisory – macOS Installer Local Root Privilege Escalation (CVE-2020-9817)
Vendor: AppleVendor URL: https://www.apple.comVersions affected: All versions of macOS prior to...
2020-07-02 20:00:57 | 阅读: 494 |
收藏
|
research.nccgroup.com
501
postinstall
owned
502
Paper: Thematic for Success in Real-World Offensive Cyber Operations – How to make threat actors work harder and fail more often
tl;drToday we’ve released a whitepaper on the key techniques that cont...
2020-07-02 19:11:52 | 阅读: 517 |
收藏
|
research.nccgroup.com
t1078
ollie
whitehouse
thwart
How-to: Importing WStalker CSV (and more) into Burp Suite via Import to Sitemap Extension
tl;drIn this post we show how to import WStalker output into Burp Suit...
2020-06-30 20:07:37 | 阅读: 638 |
收藏
|
research.nccgroup.com
sitemap
burp
wstalker
zap
importing
Tool: WStalker – an easy proxy to support Web API assessments
tl;drHave you ever faced a situation where you have a number of web se...
2020-06-30 19:52:22 | 阅读: 559 |
收藏
|
research.nccgroup.com
wstalker
proxy
situations
developers
Security Considerations of zk-SNARK Parameter Multi-Party Computation
Zero-knowledge proofs are cryptographic constructions allowing users to demonstrate the knowledg...
2020-06-24 21:00:22 | 阅读: 634 |
收藏
|
research.nccgroup.com
ceremony
security
zk
WastedLocker: A New Ransomware Variant Developed By The Evil Corp Group
Authors: Nikolaos Pantazopoulos, Stefano Antenucci (@Antelox) and Michael Sandee1. Introduct...
2020-06-23 20:59:17 | 阅读: 571 |
收藏
|
research.nccgroup.com
ransomware
windows
encryption
victim
Tool Release – Socks Over RDP Now Works With Citrix
IntroductionA month ago, we released a new tool that made it possible...
2020-06-17 16:00:00 | 阅读: 609 |
收藏
|
research.nccgroup.com
citrix
remote
receiver
github
nccgroup
Striking Back at Retired Cobalt Strike: A look at a legacy vulnerability
This vulnerability applied to a 5 year old end of life version of CobaltStrike and is being...
2020-06-16 03:08:47 | 阅读: 616 |
收藏
|
research.nccgroup.com
beacon
cobalt
download
encryption
decrypted
Technical Advisory – ARM MbedOS USB Mass Storage Driver Memory Corruption
Vendor: ARMVendor URL: https://os.mbed.com/Versions affected: Prior to 5.15.2Systems Affected...
2020-06-11 21:00:00 | 阅读: 558 |
收藏
|
research.nccgroup.com
memory
stage
csw
memorywrite
mar
Cyber Security of New Space Paper
NCC Group’s Transport Security Practice as part of its ongoing research an...
2020-06-03 22:09:15 | 阅读: 562 |
收藏
|
research.nccgroup.com
security
satellite
threats
satellites
surrey
Previous
21
22
23
24
25
26
27
28
Next