文件五重加密！Sophos首次发现三种勒索软件同时攻击同一个网络据报道，国外一家汽车供应商在两周内同时遭受了三种不同的勒索软件攻击，导致该汽车供应商的文件被多重加密。虽然勒索软件攻击确实越来越普遍，但“这也是我们第一次见证这种事情，三个独立的勒索软件使用相同的入口点攻击单个组织。”网络安全公司Sophos X-Ops事件响应团队在 ...全文

网页链接1.漏洞描述由于win32kfull中的NtUserSetWindowFNID在对窗口对象的fnid进行设置的时候，没有判断该窗口是否已经释放，这样就可以对一个已经释放的窗口进行fnid的设置。而在xxxSBTrackInit和xxxFreeWindow中都存在用户层的回调，通过对函数的劫持可以在回调中释放掉xxxSBTrackIni ...全文

种，葡萄很有感觉。

哇，微软竟然发布Office符号了  （网页链接）

dProg 🔍 dProg is tool for Bug bounty program detection by similar keyword on bug bounty program page * Support oneliner * Multiprocess * Updatable ...

Every time I get a dupe:

RT g0rd0 - is it August yet? #DEFCON30: Does anyone have a pair of handcuffs (with the keys please) that we could borrow tonight? #DEFCON30 @DEFCON

RT Mark Northgraves: Re @attritionorg @defcon where all the wrist bands at let's grab a drink !!!

RT Abhijith / Abx: Unfortunately, I won't be able to be there at @defcon this year! 😕 Our mentor and elder brother @manuzacharia will be leading @A...

CVE-2022-2751 A vulnerability was found in SourceCodester Company Website CMS and classified as critical. Affected by this issue is some unknown funct...

CVE-2022-2750 A vulnerability, which was classified as critical, was found in SourceCodester Company Website CMS. Affected is an unknown function of t...

CVE-2022-2749 A vulnerability was found in SourceCodester Gym Management System. It has been declared as critical. Affected by this vulnerability is a...

CVE-2022-2748 A vulnerability was found in SourceCodester Simple Online Book Store System. It has been classified as problematic. Affected is an unkno...

CVE-2022-2746 A vulnerability has been found in SourceCodester Simple Online Book Store System and classified as critical. This vulnerability affects ...

CVE-2022-2747 A vulnerability was found in SourceCodester Simple Online Book Store and classified as critical. This issue affects some unknown process...

CVE-2022-2745 A vulnerability, which was classified as critical, was found in SourceCodester Gym Management System. This affects an unknown part of th...

CVE-2022-2744 A vulnerability, which was classified as critical, has been found in SourceCodester Gym Management System. Affected by this issue is som...

CVE-2022-2740 A vulnerability was found in SourceCodester Company Website CMS. It has been declared as critical. This vulnerability affects unknown co...

CVE-2022-2736 A vulnerability was found in SourceCodester Company Website CMS. It has been classified as critical. This affects an unknown part of the...

Kali Linux 2022.3 - Penetration Testing and Ethical Hacking Linux Distribution

RT James Kettle: Thanks to everyone who attended Browser-Powered Desync Attacks, hope you enjoyed it! If you missed it but you're in the area, I'll be...

Tableau Log4j. I will submit the template to @pdnuclei very soon.

deep thot

Re @_Tesla247_ Thanks, but I already have one

Re @cb_doge cgi irl

Re @teslaownersSV @PPathole @guardian Payola

Re @MuskUniversity Yup

Re @PPathole @guardian Because Tesla doesn’t advertise and other car companies do

PowerHuntShares is designed to automatically inventory, analyze, and report excessive privilege assigned to SMB shares on Active Directory domain join...

来，沾沾喜气，大家一起发

一例：网页链接

#贝壳研究院道歉# 政治正确，核心是话要好听。不管对不对，话要好听。

浙江教育界的举报之风走向疯魔

经验不是经历了多少困难和痛苦沉淀下来的，而是最终你解决了那些问题才沉淀下来的。深陷其中走不出来，那种痛苦是无法转换为成长的。

豺狼当道，安问狐狸？主要是因为我只惹得起狐狸。

RT Iain Smart: And that's a wrap! Thanks to everyone who attended, hopefully you learned something! Slides will be published tomorrow but in the meant...

RT Tom 🇬🇧🇺🇲🤠🐘: You're (quite literally) welcome, #DEFCON30 #DEFCON

Re @cbyter @MarkNorthgraves @burninatorsec

RT 🕷️(@WallOfSheep @DefCon): The circle is complete @defcon 3 bands unbroken @MarkNorthgraves @burninatorsec

Re @water_ciso There’s a big old map in the program insert. Sorry about the 🐕 🐕

RT Andy is 🏴󠁧󠁢󠁳󠁣󠁴󠁿 @Defcon30: Geared up in Red for @defcon, not rocking this year's shirt till I'm on shift tomorrow but DC25 shi...

RT #blackgirlshack is going to summer camp #donate: #bgh was able to bring 71 ppl to #DEFCON30 this year including 23 scholarship winners. next year w...

RT Skittish and Bus: Re @defcon artist badge has a scratch function. Yaaaas! #DEFCON30 @defcon_music

RT cryptopotato: Is anyone else headed to @defcon trapped in the Newark airport?

RT dev rel daddy ali 🔜 defcon: road(TRIP) to @defcon #defcon30

RT Blue Team Village: Stuck at home but still want in on #defcon30? Join #btvvirtual this weekend for streamed talk "Attribution and Bias: My terrible...

RT The Tor Project: Re And be sure to stop by our vendor booth at @defcon August 12 - 14. You can get Tor t-shirts (for less than

Re .@landers_eddie 👋

vx-underground staff members are not present at Defcon. However, if you see these two vx-underground members at Defcon please ask them for the passwor...

.@MalwareTechBlog is a very funny person. Zoom and enhance.