unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
Daily Blog #775: An Azure log entry to look for when a threat actor is in
威胁者入侵 Azure 或 Microsoft 365 账户后,通常会通过“我的应用”访问更多第三方服务,扩大攻击范围。大型企业可能面临大量应用暴露风险。...
2025-3-13 03:50:0 | 阅读: 18 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
provisioned
microsoft
clouds
needing
Daily Blog #774: Forensic Lunch Test Kitchen 3/11/25
David Cowen和Evan尝试让AI模型自我修复代码,在解决配置文件存储问题后,未能启动内存捕获过程,计划次日继续。...
2025-3-12 03:43:0 | 阅读: 32 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
tune
tomorrow
774
kitchen
vibe
Daily Blog #773: Sandpiper Trade Secrets and Cyber Dallas 2025
David Cowen宣布将于2025年3月26日主持关于法律网络安全问题的小组讨论,参与者包括同事、法律顾问及法官Ada Brown,读者可点击链接注册。...
2025-3-11 03:52:0 | 阅读: 15 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
sandpiper
dallas
crai
cowen
773
Daily Blog #772: Sunday Funday 3/9/25
复活旧DFIR项目,使其支持现代系统并添加新功能。参与者可利用AI辅助完成任务,获胜者将获得$100 Amazon礼品卡。...
2025-3-10 01:45:0 | 阅读: 27 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
prize
sunday
vibe
vibing
anonymous
Daily Blog #771: Solution Saturday 3/8/25
Phill Moore 赢得了关于不同场景下日志记录情况的挑战,并展示了管理员和用户在搜索邮箱和 OneDrive 时的日志差异。未来将深入探讨如何通过启用更多日志源获取更多信息。...
2025-3-9 04:31:0 | 阅读: 24 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
phill
winning
onedrive3
mailbox2
mailbox6
Daily Blog #770: Forensic Lunch Test Kitchen 3/7/25
Evan 和作者创建了一个以 Jimmy Buffett 的 Margaritaville 为主题的网页界面,用于配置、运行和管理工具。该界面使用 Flask 和 Bootstrap 实现,无需额外服务器或框架,仅依赖 Python 模块。界面包含雪茄、青柠、盐瓶等主题元素及经典语录“现在是五点钟 Somewhere”。脚本启动后会显示本地地址供访问。...
2025-3-8 05:11:0 | 阅读: 16 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
jimmy
shotgun
margarita
claude
buffet
Daily Blog #769: Forensic Lunch Test Kitchen
By •March 06, 2025•cursorDai...
2025-3-7 04:5:0 | 阅读: 33 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
margarita
shotgun
remote
python
Daily Blog #768: HTCIA Boston April 8, 2025
HTCIA波士顿会议将于2025年4月8日举行,David Cowen及其同事Adam Hart和Kaya Overholzer将分别就勒索软件取证与谈判、ATM jackpotting以及Windows Hello取证发表演讲。...
2025-3-6 03:39:0 | 阅读: 18 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
htcia
boston
speaking
adam
colleagues
Daily Blog #767: Forensic Lunch Test Kicthen - unit tests and documentation
作者介绍了其工具CloudTrailLogExplorer的最新进展,包括使用Claude 3.7和GPT 4.5生成单元测试和文档,并将工具开源至GitHub。...
2025-3-5 03:31:0 | 阅读: 16 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
github
kicthen
cowen
tonight
claude
Daily Blog #766: Surviving the breach Episode 0
作者介绍了播客《Surviving the breach》的第0集作为开篇,并预告了下一集将讨论何时解雇IR团队。...
2025-3-4 04:12:0 | 阅读: 15 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
episode
surviving
erik
fire
libsyn
Daily Blog #765: Sunday Funday 3/2/25
这篇文章介绍了微软365 UAL日志挑战,参与者需回答六种场景下日志记录情况以赢取100美元礼品卡。...
2025-3-3 03:13:0 | 阅读: 13 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
microsoft
prize
anonymous
ual
sunday
Daily Blog #764: Solution Saturday 3/1/25
在Windows 11或10系统上测试Windows搜索功能:创建包含特定短语的文件并确保其被索引到搜索数据库中;删除文件后观察内容从数据库中被清除的时间及触发机制;同时研究删除记录是否可恢复。...
2025-3-1 20:44:0 | 阅读: 17 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
windows
digging
winner
funday
db4
Daily Blog #763: Forensic Test Kitchen trying Chat GPT 4.5!
作者在博客中分享了团队在开发CloudTrail下载工具时对Claude 3.7和Chat GPT 4.5的测试体验,并展示了AI模型如何解析规则文件。...
2025-3-1 04:56:0 | 阅读: 17 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
gpt4
gpt
kitchen
detour
cowen
Daily Blog #762: Forensic Test Kitchen with Cursor Rules
在Cursor中使用Claude 3.7进行测试,通过规则文件优化模型行为,并通过视频展示实验结果。...
2025-2-28 04:29:0 | 阅读: 35 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
762
kitchen
cowen
tonight
continued
Daily Blog #761: Forensic Test Kitchen with more Claude 3.7!
作者与Evan Anderson使用Claude 3.7尝试修复代码错误并添加异步下载功能,但实验未成功,强调需在下一版本中引入.cursorrules规则集以改进功能。...
2025-2-27 04:29:0 | 阅读: 15 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
claude
761
kitchen
cursorrules
development
Daily Blog #760: Forensic Lunch Test Kitchen adding role based discovery to our cloudtrail discovery tool
作者David Cowen介绍在CloudTrail发现工具中添加基于角色的发现功能,使用Claude 3.7和Cursor测试AWS角色的CloudTrail位置和访问权限,并成功实现该功能。...
2025-2-26 04:29:0 | 阅读: 16 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
cloudtrail
claude
cowen
continuing
lunch
Daily Blog #759: Forensic Lunch Test Kitchen with Claude 3.7 and Cursor!
David Cowen和Evan Anderson测试了Claude 3.7 Sonnet模型与Cursor结合的应用程序,用于查找并传输AWS日志,并展示了其功能演示视频。...
2025-2-25 05:3:0 | 阅读: 8 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
claude
sonnet
lunch
kitchen
cowen
Daily Blog #758: Sunday Funday 2/23/25
Windows搜索索引挑战:创建含独特短语的文件并索引,删除后观察内容从搜索数据库中被清除的时间和触发机制。奖金$100 Amazon Giftcard,需于2/28/25 7PM CST前提交答案。...
2025-2-23 18:51:0 | 阅读: 7 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
windows
prize
anonymous
sunday
db4
Daily Blog #757: Solution Saturday 2/22/25
文章探讨了AWS IMDS(EC2实例元数据服务)的安全问题,特别是IMDS v1和v2版本在凭证泄露方面的差异。研究者通过实验展示了如何从VM内部和外部获取临时访问密钥,并分析了不同场景下的日志记录情况,以帮助检测潜在的安全威胁。...
2025-2-23 05:13:0 | 阅读: 14 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
imds
winning
ilya
streak
v23
Daily Blog #756: Forensic test kitchen, using the AWS CloudTrail Downloader v2!
David Cowen演示了AWS CloudTrail Downloader v2的新功能,包括AWS配置文件支持和恢复功能,并在法证测试厨房中进行了实时演示。...
2025-2-22 04:52:0 | 阅读: 8 |
收藏
|
Hacking Exposed Computer Forensics Blog - www.hecfblog.com
kitchen
cloudtrail
756
cowen
download
Previous
3
4
5
6
7
8
9
10
Next
