unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
Hack.lu: In-Depth Study of Linux Rootkits: Evolution, Detection, and Defense
AbstractThis talk, “In-Depth Study of Linux Rootkits,” will provide a comprehensi...
2024-11-11 15:1:33 | 阅读: 4 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
rootkits
historical
inception
defenders
Hack.lu: The Gist of Hundreds of Incident Response Cases
AbstractHow to become an Incident Response Rockstar? After conducting hundreds of...
2024-11-11 15:1:32 | 阅读: 5 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
artifacts
attending
rockstar
conducting
smarter
Reptile's Custom Kernel-Module Launcher
Introduction“In REPTILE version 2.0, the original developer of REPTILE altered ho...
2024-11-11 15:1:31 | 阅读: 3 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
reptile
insmod
loader
loaded
ko
bedevil: Dynamic Linker Patching
Introductionbedevil (bdvl), according to the GitHub page, is an LD_PRELOAD rootkit...
2024-10-19 20:16:28 | 阅读: 26 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
dfir
ldpatch
oldpreload
newpreload
Microsoft Defender XDR's Deception Technology
IntroductionThis week wasn’t the first time we’ve investigated a case where a cust...
2024-10-18 04:1:40 | 阅读: 19 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
decoy
deception
microsoft
powershell
windows
tmate - Instant Terminal Sharing (or How To Backdoor a Linux Server)
IntroductionOver the last three years, various cyber security companies wrote abou...
2024-10-7 01:2:20 | 阅读: 8 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
tmate
ssh
13453
traces
teamtnt
EDR: The Great Escape - RomHack Training Review
This course aims to provide a comprehensive understanding of the architecture of...
2024-9-30 20:17:16 | 阅读: 13 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
windows
security
internals
analysis
hooking
Today I Learned - NSG Flow Log
IntroductionAzure flow logs are a feature in Azure that allows you to capture and...
2024-9-21 13:47:10 | 阅读: 8 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
network
security
nsg
defaultrule
ScriptBlock Smuggling
IntroductionPowerShell’s Script Block Logging is a security feature that records a...
2024-9-13 19:47:7 | 阅读: 9 |
收藏
|
Over Security - Cybersecurity news aggregator - dfir.ch
powershell
scriptblock
malicious
spoofedast
executedast
Previous
-220
-219
-218
-217
-216
-215
-214
-213
Next