A Race to Report a TOCTOU: Analysis of a Bug Collision in Intel SMM About four months ago, in October 2022, I was idly poking around the “ICE TEA” leak. This leak w... 2023-3-15 09:1:0 | 阅读: 28 | 收藏 | NCC Group Research - research.nccgroup.com spi smm comm

Making New Connections – Leveraging Cisco AnyConnect Client to Drop and Run Payloads The Cisco AnyConnect client has received a fair amount of scrutiny from the security communi... 2023-3-1 21:18:33 | 阅读: 36 | 收藏 | NCC Group Research - research.nccgroup.com wfile cstp client anyconnect username

A Primer On Slowable Encoders There is a specific type of cryptographic transformation that arises in storage-oriented blo... 2023-2-20 22:38:17 | 阅读: 18 | 收藏 | NCC Group Research - research.nccgroup.com computation miners compute slowable miner

Threat Spotlight – Hydra This publication is part of our Annual Threat Monitor report that was released on the 8th of... 2023-2-17 23:30:38 | 阅读: 28 | 收藏 | NCC Group Research - research.nccgroup.com c2 hydra tas injections github

Rustproofing Linux (Part 4/4 Shared Memory) This is a four part blog post series that starts with Rustproofing Linux (Part 1/4 Leaking Addre... 2023-2-17 03:33:1 | 阅读: 18 | 收藏 | NCC Group Research - research.nccgroup.com memory volatile vuln vma

Rustproofing Linux (Part 3/4 Integer Overflows) This is a four part blog post series that starts with Rustproofing Linux (Part 1/4 Leaking Addre... 2023-2-15 05:4:6 | 阅读: 21 | 收藏 | NCC Group Research - research.nccgroup.com vuln overflow ovf usize

Security Code Review With ChatGPT TL;DR: Don’t use ChatGPT for security code review. It’s not meant to be used that way, it doesn’t... 2023-2-10 01:50:20 | 阅读: 46 | 收藏 | NCC Group Research - research.nccgroup.com security chatgpt php injection octet

Rustproofing Linux (Part 2/4 Race Conditions) This is a four part blog post series that starts with Rustproofing Linux (Part 1/4 Leaking Addre... 2023-2-8 23:41:37 | 阅读: 29 | 收藏 | NCC Group Research - research.nccgroup.com vuln mutable mutex 249 vec

Readable Thrift Readable Thrift makes binary Thrift protocol messages easy to work with by c... 2023-2-8 18:20:42 | 阅读: 12 | 收藏 | NCC Group Research - research.nccgroup.com thrift anyconnect analysis tampering leveraging

Readable Thrift Site Maintenance The NCC Group research blog is offline as part of a planned outage whi... 2023-2-8 18:20:42 | 阅读: 9 | 收藏 | NCC Group Research - research.nccgroup.com maintenance planned outage migrate

Rustproofing Linux (Part 1/4 Leaking Addresses) Rust is a programminglanguage guaranteeing memory and thread safety while still being able toa... 2023-2-7 06:32:21 | 阅读: 26 | 收藏 | NCC Group Research - research.nccgroup.com memory vuln userspace differs initialised

Machine Learning 102: Attacking Facial Authentication with Poisoned Data This blog post is the second in a series related to machine learning, a... 2023-2-4 03:56:44 | 阅读: 23 | 收藏 | NCC Group Research - research.nccgroup.com sorry poisoning facial

Threat Modelling Cloud Platform Services by Example: Google Cloud Storage IntroductionThe consumption of cloud services has grown rapidly over the last few years and... 2023-1-31 09:1:0 | 阅读: 23 | 收藏 | NCC Group Research - research.nccgroup.com cloud security attacker buckets gcp

Using Semgrep with Jupyter Notebook files If you frequently deliver source code review assessments of products, incl... 2023-1-26 09:1:0 | 阅读: 28 | 收藏 | NCC Group Research - research.nccgroup.com semgrep jupyter python pickle notebook

Announcing NCC Group’s Cryptopals Guided Tour: Set 2 Hello and welcome to NCC Group’s Cryptopals guided tour! This post is the second in a series of... 2023-1-23 22:0:0 | 阅读: 18 | 收藏 | NCC Group Research - research.nccgroup.com discussing cryptopals intro00 ecb bearssl

Technical Advisory – U-Boot – Unchecked Download Size and Direction in USB DFU (CVE-2022-2347) Vendor: DENX Software EngineeringVendor URL: https://www.denx.de/wiki/U-B... 2023-1-21 04:24:6 | 阅读: 28 | 收藏 | NCC Group Research - research.nccgroup.com dfu dnload denx download idle

Technical Advisory – Multiple Vulnerabilities in the Galaxy App Store (CVE-2023-21433, CVE-2023-21434) The Galaxy App Store is an alternative application store that comes pre-installed on Samsung And... 2023-1-20 22:48:44 | 阅读: 79 | 收藏 | NCC Group Research - research.nccgroup.com samsung samsungapps glb

Project Bishop: Clustering Web Pages Written by Jose Selvi and Thomas AtkinsonIf you are a Machine Learning (ML) enthusiast like... 2023-1-19 22:10:15 | 阅读: 20 | 收藏 | NCC Group Research - research.nccgroup.com conv2d dense network

Puckungfu: A NETGEAR WAN Command Injection SummaryVulnerability DetailsOverviewExecution Flow/bin/pucfu/usr/lib/libfwcheck.soget... 2022-12-22 19:18:10 | 阅读: 39 | 收藏 | NCC Group Research - research.nccgroup.com fw injection netgear pucfu

MeshyJSON: A TP-Link tdpServer JSON Stack Overflow SummaryTarget BinarytdpServerArchitecture &MitigationsForksUnderstanding TheVulnerabi... 2022-12-19 19:50:39 | 阅读: 24 | 收藏 | NCC Group Research - research.nccgroup.com cjson memory onemesh overflow