unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
The August 2022 Security Update Review
It’s the second Tuesday of the month, and the last second Tuesday before Black Hat and DEFCON, which...
2022-8-10 01:31:23 | 阅读: 93 |
收藏
|
www.thezdi.com
microsoft
attacker
windows
exchange
remote
Looking at Patch Gap Vulnerabilities in the VMware ESXi TCP/IP Stack
Over the last few years, multiple VMware ESXi remote, un...
2022-7-27 23:14:5 | 阅读: 38 |
收藏
|
www.thezdi.com
freebsd
vmkernel
dhcp
lease
upstream
Riding the InfoRail to Exploit Ivanti Avalanche
Back in 2021, I stumbled upon a proof of concept descr...
2022-7-19 21:59:45 | 阅读: 34 |
收藏
|
www.thezdi.com
attacker
avalanche
inforail
payload
CVE-2022-30136: Microsoft Windows Network File System v4 Remote Code Execution Vulnerability
In this excerpt of a Trend Micro Vulnerability Research...
2022-7-15 00:19:41 | 阅读: 47 |
收藏
|
www.thezdi.com
gss
rpcsec
nfs
svc
security
The July 2022 Security Update Review
It’s once again Patch Tuesday, which means the latest security updates from Adobe and Microsoft have...
2022-7-13 01:26:43 | 阅读: 43 |
收藏
|
www.thezdi.com
microsoft
attacker
windows
cves
remote
CVE-2022-23088: Exploiting a Heap Overflow in the FreeBSD Wi-Fi Stack
In April of this year, FreeBSD patched a 13-year-old hea...
2022-6-17 00:38:44 | 阅读: 56 |
收藏
|
www.thezdi.com
ies
beacon
sta
freebsd
meshid
The June 2022 Security Update Review
It’s once again Patch Tuesday, which means the latest security updates from Adobe and Microsoft have...
2022-6-15 01:25:54 | 阅读: 47 |
收藏
|
www.thezdi.com
microsoft
windows
attacker
cves
remote
CVE-2022-26937: Microsoft Windows Network File System NLM Portmap Stack Buffer Overflow
In this excerpt of a Trend Micro Vulnerability Research...
2022-6-8 22:27:35 | 阅读: 48 |
收藏
|
www.thezdi.com
nlm
nfs
windows
network
fragment
Is exploiting a null pointer deref for LPE just a pipe dream?
A lot of blog posts I have read go over interesting vuln...
2022-6-2 23:14:27 | 阅读: 30 |
收藏
|
www.thezdi.com
crash
bitdefender
bdreinit
client
dacl
Pwn2Own Vancouver 2022 - The Results
Pwn2Own Vancouver for 2022 is underway, and the 15th ann...
2022-5-19 03:8:59 | 阅读: 31 |
收藏
|
www.thezdi.com
microsoft
tuned
tesla
p3rr0
hector
Pwn2Own Vancouver 2022 - The Schedule
Welcome to Pwn2Own Vancouver 2022! This year marks the 15th anniversary of the contest, and we plan...
2022-5-18 07:47:39 | 阅读: 50 |
收藏
|
www.thezdi.com
elevation
microsoft
windows
security
contest
The May 2022 Security Update Review
It’s the fifth second Tuesday of 2022, which also means it’s the also the fifth Patch Tuesday of the...
2022-5-11 01:29:19 | 阅读: 61 |
收藏
|
www.thezdi.com
microsoft
windows
attacker
cves
zdi
What to Expect when Exploiting: A Guide to Pwn2Own Participation
So you’ve heard of Pwn2Own and think you are up to the challenge of competing in the world’s most pr...
2022-5-4 22:57:58 | 阅读: 15 |
收藏
|
www.thezdi.com
contest
pwn2own
competition
contestants
Pwn2Own Miami 2022 Results
Pwn2Own Miami for 2022 is underway, and we’ve already se...
2022-4-20 00:55:47 | 阅读: 46 |
收藏
|
www.thezdi.com
pwn2own
miami
unified
amazing
peles
Pwn2Own Miami 2022 Schedule
Note: All times subject to change - You can see the results and live updates here once they become a...
2022-4-19 07:14:25 | 阅读: 57 |
收藏
|
www.thezdi.com
opc
claroty
aveva
genesis64
machine
The April 2022 Security Update Review
Another Patch Tuesday is upon, and Adobe and Microsoft have released a bevy of new security updat...
2022-4-13 02:8:27 | 阅读: 38 |
收藏
|
www.thezdi.com
microsoft
windows
cves
attacker
remote
CVE-2022-26381: Gone by others! Triggering a UAF in Firefox
Memory corruption vulnerabilities have been well know...
2022-4-7 23:51:30 | 阅读: 65 |
收藏
|
www.thezdi.com
crash
memory
mozilla
asan
dereference
Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks
What do you do when you’ve found an arbitrary file delete as NT AUTHORITY\SYSTEM? Probably just sigh...
2022-3-17 23:32:27 | 阅读: 66 |
收藏
|
www.thezdi.com
windows
eop
rbs
rollback
oplock
The March 2022 Security Update Review
It’s once again Patch Tuesday, which means the latest security updates from Adobe and Microsoft have...
2022-3-9 02:30:49 | 阅读: 87 |
收藏
|
www.thezdi.com
microsoft
attacker
windows
cves
zdi
Clang Checkers and CodeQL Queries for Detecting Untrusted Pointer Derefs and Tainted Loop Conditions
In the first blog of the series, we saw how CodeQL and C...
2022-2-24 01:49:0 | 阅读: 49 |
收藏
|
www.thezdi.com
tainted
memory
taint
analysis
checkers
Previous
7
8
9
10
11
12
13
14
Next