Beyond the Hook: A Technical Deep Dive into Modern Phishing Methodologies 文章探讨了2025年网络钓鱼技术的演变，从基础HTML页面到高级绕过MFA的方法。分析了攻击者使用的基础设施和交付方式，包括云服务托管、可信域名滥用以及短链接和开放重定向等技巧。文章还比较了多种高级钓鱼技术的优缺点，并强调了多层次防御的重要性。... 2025-3-10 23:0:0 | 阅读: 3 | 收藏 | Quarkslab's blog - blog.quarkslab.com phishing victim microsoft phisher bitb

Audit of Allbridge Estrela — Round 2 Quarkslab 审计了 Allbridge 的 Estrela 升级版，该版本扩展为支持 3 种代币池的自动化做市商（AMM），基于 StableSwap 不变式以降低滑点。审计范围包括智能合约及其支持工厂合约，发现了 4 个问题，其中 1 个为低严重性。Allbridge 计划修复部分问题，并确认升级未引入重大漏洞。... 2025-2-27 23:0:0 | 阅读: 3 | 收藏 | Quarkslab's blog - blog.quarkslab.com allbridge stellar deposit amm soroban

Pwn everything Bounce everywhere all at once (part 1) read file error: read notes: is a directory... 2025-2-24 23:0:0 | 阅读: 5 | 收藏 | Quarkslab's blog - blog.quarkslab.com php pma signon phpmyadmin delimiter

Pwn everything Bounce everywhere all at once (part 2) 文章描述了通过利用SOPlanning项目管理软件中的多个漏洞（包括SQL注入、认证绕过、文件删除和上传等），攻击者成功实现远程代码执行的过程。... 2025-2-24 23:0:0 | 阅读: 4 | 收藏 | Quarkslab's blog - blog.quarkslab.com php fichier soplanning junk planning

First analysis of Apple's USB Restricted Mode bypass (CVE-2025-24200) 苹果发布了iOS 18.3.1版本，修复了一个与辅助功能框架相关的漏洞（CVE-2025-24200），该漏洞可能导致USB受限模式被绕过。攻击者可通过连接特定MFi设备触发弹窗，在锁定状态下禁用USB受限模式。此更新增强了状态管理机制以缓解该问题。... 2025-2-13 23:0:0 | 阅读: 10 | 收藏 | Quarkslab's blog - blog.quarkslab.com ipsw

Being Overlord on the Steam Deck with 1 Byte 这篇文章介绍了在Steam Deck及其使用的AMD处理器上发现的两个安全漏洞（CVE-2024-21925和CVE-2024-0179），这两个漏洞源于UEFI固件中的数据验证不足问题。第一个漏洞允许攻击者通过不充分的数据验证泄露或篡改SMRAM内容；第二个漏洞则涉及对CPM模块的不当访问，可能导致任意读写操作。研究人员展示了如何利用这些漏洞在SMM模式下获得代码执行能力，并详细描述了与AMD协调披露的过程。... 2025-2-10 23:0:0 | 阅读: 4 | 收藏 | Quarkslab's blog - blog.quarkslab.com efi ihisi smm smram hw

Security audit of the Notary Project The OSTIF engaged with Quarksla... 2025-1-20 23:0:0 | 阅读: 5 | 收藏 | Quarkslab's blog - blog.quarkslab.com security notary notation revocation quarkslab

Bluetooth Low Energy GATT Fuzzing This blog post presents our fuzzer for the Bluetooth Low Energy GA... 2024-10-25 06:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com gatt sony quarkslab pdu espressif

Internship Offers for the 2024-2025 Season The internship season is back at Quarkslab! Our internship topics... 2024-10-18 06:0:0 | 阅读: 14 | 收藏 | Quarkslab's blog - blog.quarkslab.com satellite internship security analysis network

Linux kernel instrumentation from Qemu and Gdb Techniques for analyzing binaries or kernel modules that may try t... 2024-10-17 06:0:0 | 阅读: 6 | 收藏 | Quarkslab's blog - blog.quarkslab.com lx gpl syms unused pfn

Attacking the Samsung Galaxy A* Boot Chain We discovered several vulnerabi... 2024-10-15 06:0:0 | 阅读: 12 | 收藏 | Quarkslab's blog - blog.quarkslab.com memory samsung odin persistency

Bypass Apache Superset restrictions to perform SQL injections The following article explains... 2024-10-10 06:0:0 | 阅读: 14 | 收藏 | Quarkslab's blog - blog.quarkslab.com superset security sqlparse adhoc subquery

Exploiting Microsoft Teams on macOS during a Purple Team engagement The following article explains how during a Purple Team engagement... 2024-10-8 06:0:0 | 阅读: 10 | 收藏 | Quarkslab's blog - blog.quarkslab.com microsoft library nslog security

Differential fuzzing for cryptography Following a brief introduction to differential fuzzing, this blog... 2024-10-3 06:0:0 | 阅读: 4 | 收藏 | Quarkslab's blog - blog.quarkslab.com pelican fuzzer cryptofuzz textrm

crypto-condor: a test suite for cryptographic primitives In this blog post we present crypto-condor, an open-source test su... 2024-9-24 06:0:0 | 阅读: 51 | 收藏 | Quarkslab's blog - blog.quarkslab.com condor primitives digest testu01 hashlib

Exploiting Chamilo during a Red Team engagement The following blogpost explains how during a Red Team engagement w... 2024-9-17 06:0:0 | 阅读: 8 | 收藏 | Quarkslab's blog - blog.quarkslab.com php chamilo 58080 attacker

Audit of Operator Fabric Quarkslab was mandated by the O... 2024-9-4 06:0:0 | 阅读: 6 | 收藏 | Quarkslab's blog - blog.quarkslab.com quarkslab security fabric developers

Audit of Airswift's Supply Chain Financing Drawing from our audit of Airswift's SCF, we discuss part of Sorob... 2024-8-27 06:0:0 | 阅读: 17 | 收藏 | Quarkslab's blog - blog.quarkslab.com scf argentina soroban airswift pledge

MIFARE Classic: exposing the static encrypted nonce variant... and a few hardware backdoors We studied the most secure stat... 2024-8-20 06:0:0 | 阅读: 10 | 收藏 | Quarkslab's blog - blog.quarkslab.com fm11rf08s mifare annexes fudan hardware

Heap exploitation, glibc internals and nifty tricks. This is a writeup of a heap pwn challenge at HitconCTF Qualifiers... 2024-7-30 06:0:0 | 阅读: 10 | 收藏 | Quarkslab's blog - blog.quarkslab.com bins unsorted allocator username memory