排序
Android Accessibility点击劫持攻防
This article discusses the use of Android's Accessibility feature to perform clickjacking attacks on other apps for promotional purposes. Learn about defensive
9年前為個人信息安全加“保險鎖” 多家快遞公司啟用隱私面單
多家快递公司启用隐私面单以保护用户信息,但专家认为这只是权宜之计。从立法和执法入手才能从根本上解决个人信息泄露问题。
9年前卡巴斯基创始人:网络病毒问题是跨国的
Discover the growing threat of cyber viruses according to Kaspersky's founder. Learn about the complex global nature of these threats and their impact on infras
9年前如何通过SQL注入获取服务器本地文件
Learn how to exploit a SQL injection vulnerability in PHP's file download function to fetch local files from the server. This guide covers the process of identi
9年前多平台密码绕过及提权工具Kon-Boot的使用与防范
了解Kon-Boot的使用方法和防范措施。本文详细介绍了Windows、OSX等平台下Kon-Boot的功能与限制,以及针对其漏洞的安全防范策略。
9年前利用背景流量数据(contexual flow data) 识别TLS加密恶意流量
This article discusses a new method for detecting TLS-encrypted malicious traffic using contextual flow data. It details how analyzing DNS responses and HTTP he
9年前网页上的污染源:“PM2.5报告”插件实为恶意广告注射器
Discover how the malicious 'PM2.5 Report' software injects ads into your web pages without your knowledge. Learn about its BHO and Chrome extension methods and
9年前新型浏览器挖矿技术可在浏览器窗口关闭的情况下持续挖矿
了解新型浏览器挖矿技术如何在关闭窗口后仍持续挖矿,并学习如何通过广告屏蔽工具和安全防护产品保护您的设备不受侵害。
9年前Satori(觉醒)新僵尸网络出现,在过去的12个小时内已经激活超过28万个不同的IP
研究人员警告新的Satori僵尸网络在12小时内激活了超过28万个不同的IP,这是Mirai的变种且具有自我传播特性。了解其工作原理及可能的安全风险。
9年前VMware修复多个严重SVGA代码执行漏洞
VMware has released patches to fix multiple vulnerabilities, including a serious SVGA device out-of-bounds write issue. The vulnerability could allow attackers
9年前SSL Stripping攻防之道
Explore the SSL Stripping attack—a new wireless network threat that can strip away HTTPS encryption—and learn about its defense mechanisms. Understand how HTTP
9年前基于Openresty实现业务安全防护
Learn how to use OpenResty to implement virtual patches for protecting against business logic vulnerabilities, including SMS verification bypass examples and pr
9年前