http://wechat.doonsec.com/MzkzOTI2NjUyNA.xmlThe latest security articles about WeChat official accountzh-CNMon, 26 May 2025 17:14:51 GMTPyRSS2Gen-1.1.0http://blogs.law.harvard.edu/tech/rsshttp://wechat.doonsec.com/http://wechat.doonsec.com/static/front/img/doonsec_bak3.pnghttps://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485265&idx=1&sn=035215d9df23820518a2cc1731e897fd合规渗透合规渗透2025-05-26T13:28:23https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485251&idx=1&sn=70f618d86ca9074029cc394e6529c2e6合规渗透合规渗透2024-11-11T12:47:24https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485242&idx=1&sn=ecd9e8c1e582b8be6959c23c660959c1合规渗透合规渗透2024-11-08T12:51:04https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485219&idx=1&sn=1772ee9dac6ea9974b5ee989cc7811a0合规渗透合规渗透2024-11-07T12:30:00https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485211&idx=1&sn=40b15e339a71543089df649613fee107合规渗透合规渗透2024-11-06T12:54:15https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485205&idx=1&sn=3d0b1c9de804d67113f8cd10c834aece合规渗透合规渗透2024-11-04T12:50:32https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485200&idx=1&sn=49d99aba18014ff72a43ea15ba0308de合规渗透合规渗透2024-11-01T13:00:27https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485179&idx=1&sn=fb1f65a038adf001b78dc6ed2d87f706合规渗透合规渗透2024-10-30T12:24:47https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485171&idx=1&sn=baf5a1de627effd78991b7a8d3579e50合规渗透合规渗透2024-10-28T12:27:44https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485162&idx=1&sn=0d63c7f890eb4563656383fdbb5c295c合规渗透合规渗透2024-10-26T09:59:41https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485111&idx=1&sn=39ec68a215bed622e730a2d46e5d4663合规渗透合规渗透2024-10-25T00:00:30https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485103&idx=1&sn=8df12eb3e9fb8013704595a9204e428a合规渗透合规渗透2024-10-24T11:00:09https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485102&idx=1&sn=c996aae53a4c3fb1cf10bab755965d60合规渗透合规渗透2024-10-23T12:37:18https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485069&idx=1&sn=7630b78bc6696c009cc3a13894abb0b2合规渗透合规渗透2024-10-22T12:49:51https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485060&idx=1&sn=88aeba728cbc508c7e8d8a6877287b14合规渗透合规渗透2024-10-09T20:45:01https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485052&idx=1&sn=c99c1d7c730915038faeac38d2eb0b82合规渗透合规渗透2024-09-28T20:49:48https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485037&idx=1&sn=fd77f84e609b84bf76189f23f528b728合规渗透合规渗透2024-09-26T05:00:17https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485024&idx=1&sn=413174bf9edef881cc11b624bfb44cb2公共数据授权运营合规标准，欢迎相关机构及从业者参与合规渗透合规渗透2024-09-25T12:35:57https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485013&idx=1&sn=a83788bfb79d75309e673639905e6cd5合规渗透合规渗透2024-09-22T22:38:18https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247485008&idx=1&sn=00337e072eff92e67f03b3d57e06fc03合规渗透合规渗透2024-09-20T17:38:11https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484997&idx=1&sn=6408afd8d8478e6cacaf36606c0b7ae5合规渗透合规渗透2024-09-19T20:51:20https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484986&idx=1&sn=4f277c6cde91fae4518fa651b2cb6b0a合规渗透合规渗透2024-09-18T09:54:23https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484974&idx=1&sn=d5dcc4d9e794aa230d104590ae976cf1合规渗透合规渗透2024-09-16T21:20:38https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484969&idx=1&sn=0b36540c53fee2e7a64c6f6e5c8ccb6e合规渗透合规渗透2024-09-13T23:23:01https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484961&idx=1&sn=c7c5a256f11368c90d316bdda81df3d4合规渗透合规渗透2024-09-09T09:19:35https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484918&idx=1&sn=0414f876c0d77a66e7f16a319822a208poc见最下方阅读原文，欢迎关注。合规渗透合规渗透2024-09-05T20:05:47https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484902&idx=1&sn=eae50a81028e28f70c0b9c992a84f2b1CVE-2024-21413 是影响 Microsoft Outlook 的关键远程代码执行 （RCE） 漏洞合规渗透合规渗透2024-09-01T20:11:03https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484896&idx=1&sn=2bd7e5fc7b597fa55c0f942002f6ab122024 年 6 月，我们发现了一个 macOS 版本的 HZ Rat 后门，目标是企业信使钉钉和社交网络和消合规渗透合规渗透2024-08-31T17:39:15https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484884&idx=1&sn=a99b0cec045c35881ebb788946762317合规渗透合规渗透2024-08-29T22:31:20https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484870&idx=1&sn=6d5fe993d32922a8f2b07cdf182b5377合规渗透合规渗透2024-08-28T07:00:40https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484860&idx=1&sn=9f76425cd17aee5b8ddd7daf6dc81946本文以AWS为例讲解对于企业上云的渗透思路，各厂商云服务本质差别不大，可直接类推。合规渗透合规渗透2024-08-27T01:32:13https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484854&idx=1&sn=5ac416b2eaf4283d12d612c8d2b4459f漏洞：CVE-2024-38054 发布日期： 2024-07-09漏洞描述：内核流式处理 WOW Thun合规渗透合规渗透2024-08-25T13:51:14https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484846&idx=1&sn=86e2805546b4dcfbbd658fcecdb4ac67第 1 步：网络扫描首先发现网络上的实时主机：这将扫描网络并列出所有活动的 IP 地址，查找目标 IP 地址。合规渗透合规渗透2024-08-22T22:44:40https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484772&idx=1&sn=9a08022aff8607607dc4cc3acb382217fofa icon_hash=\\x26quot;-1036943727\\x26quot;漏洞复现：pocGET /index/ajax/lan合规渗透合规渗透2024-08-21T21:38:58https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484730&idx=1&sn=313b918688773d1c21028f977c79f731本期分享的是三篇高质量的EDR漏洞挖掘相关的文章，提供了很不错的漏洞挖掘思路介绍在本系列的第三部分也是最后一部合规渗透合规渗透2024-08-18T08:46:18https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484714&idx=1&sn=04c52f398ecb2092beb2c5eb63b375e0本期分享的是三篇高质量的EDR漏洞挖掘相关的文章，提供了很不错的漏洞挖掘思路简介继续我们上次的研究，我们在 S合规渗透合规渗透2024-08-17T06:02:28https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484713&idx=1&sn=234c3686e5e6cd33c5f3f8cb81de28ebAppLocker安全功能存在本地提权的(CVE-2024-21338)，允许本机完成身份验证的用户提升至SY合规渗透合规渗透2024-08-16T08:09:29https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484713&idx=2&sn=4bb7a88161b568029a3cdfaa901a0c9a本期分享的是三篇高质量的EDR漏洞挖掘相关的文章，提供了很不错的漏洞挖掘思路介绍我们希望，这篇文章将是一长串文合规渗透合规渗透2024-08-16T08:09:29https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484690&idx=1&sn=b2ea67eaec909243fe17b441216003fe合规渗透合规渗透2024-08-15T08:03:23https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484673&idx=1&sn=268dfdae6d31f178afad62f715d7becd近期又发现一起开源投毒事件，CVE-2024-27198在Github的Poc存在投毒，且该项目被很多漏洞库和合规渗透合规渗透2024-08-14T00:37:28https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484665&idx=1&sn=4bc879bd3234288fea6a699fe362c800合规渗透合规渗透2024-08-13T08:00:33https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484658&idx=1&sn=47dc535885c64c8fd94cd36db5d55994fofa语法：app=\\x26quot;dahua-DSS\\x26quot;漏洞详情：GET/emap/group_saveGroup?合规渗透合规渗透2024-08-12T21:07:58https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484652&idx=1&sn=3d06e6f2dc1187e64de0dc96c2c15104合规渗透合规渗透2024-08-11T02:51:17https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484643&idx=1&sn=22c92f6a78284fb79c058e912f57e021合规渗透合规渗透2024-08-10T07:00:30https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484643&idx=2&sn=86d2694abc327710469202d9902bd06c合规渗透合规渗透2024-08-10T07:00:30https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484643&idx=3&sn=fcb52265471416333a070c6ca2ca35f3恶意软件开发、分析和DFIR系列第四部分介绍在这篇文章中，我们将从 Windows 取证的基础知识开始，了解对合规渗透合规渗透2024-08-10T07:00:30https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484606&idx=1&sn=2fe606fb30d5d3945bf00acf2e1e4781A11-2AspCMS--SQL漏洞复现：payload：/plug/comment/commentList.合规渗透合规渗透2024-08-09T08:01:03https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484606&idx=2&sn=1964e01c2656c64dcb3aa27c8fa77d30恶意软件开发、分析和DFIR系列第三部分介绍在这篇文章中，我们将深入研究 Windows 内存内部结构，了解如合规渗透合规渗透2024-08-09T08:01:03https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484596&idx=1&sn=d24a39b7d9b5193dcbb0ddecf84450c3恶意软件开发、分析和DFIR系列第二部分介绍在这篇博客中，我们将介绍 x86 汇编中的重要主题。合规渗透合规渗透2024-08-08T08:00:12https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484596&idx=2&sn=308918e27511d5c37611987a1767a21c合规渗透合规渗透2024-08-08T08:00:12https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484558&idx=1&sn=4e0839f8703368fddb2db4063c4f07f8漏洞描述：Apache OFBiz是⼀个著名的电⼦商务平台，提供了创建基于最新 J2EE/ XML规范和技术标合规渗透合规渗透2024-08-07T00:00:19https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484457&idx=1&sn=d22231ae11be465e4fed725d5843bd4a合规渗透合规渗透2024-08-06T08:00:47https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484431&idx=1&sn=27cceca6729054a02ca6652e73e4dfa2近期一直在思考新的过AV方案，偶然看到了这个项目，仔细看了一下感觉很有意思，遂分享1- 首先，我们需要设置和初合规渗透合规渗透2024-08-05T08:00:26https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484425&idx=1&sn=227c9634c5ade124fd28dcd47ab48d96合规渗透合规渗透2024-08-04T07:49:34https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484409&idx=1&sn=f72dcefb7d5608fb375bb480e60b4c05合规渗透合规渗透2024-08-03T14:37:18https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484392&idx=1&sn=39e65d38f926733f5f97d7dfe48e90f6合规渗透合规渗透2024-08-02T08:00:32https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484380&idx=1&sn=668f09a5e7354d9ed9782d0d71778a81C16-1喰星云-数字化餐饮服务系统-SQL漏洞复现：payload：GET /logistics/home_合规渗透合规渗透2024-08-01T08:03:05https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484356&idx=1&sn=0cbf4840a47456f59ce46a3652509975用友NC FileUploadServlet 反序列化rce漏洞合规渗透合规渗透2024-07-31T08:01:01https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484339&idx=1&sn=02417f4dc80b439a282f00447d431e31本文将尝试介绍一些用于注入内存中 Java 负载的其他技巧，并通过针对知名应用程序的具体示例进行说明。合规渗透合规渗透2024-07-30T08:00:16https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484334&idx=1&sn=39df89bb74c1a60c84a9838c2c8ab753HW2024验真漏洞情报 26日合规渗透合规渗透2024-07-27T00:36:39https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484287&idx=1&sn=efc91d6383368e02390ee047840e4752HW2024-07-23-微步验真漏洞情报合集合规渗透合规渗透2024-07-25T00:00:32https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484274&idx=1&sn=0aab7cb84c43b54f31ba605ef7d22f54常见的未授权漏洞检测工具合规渗透合规渗透2024-07-24T09:09:39https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484273&idx=1&sn=e373e308e8f8685cff7b35e828e3bbee一款集成了H3C,致远，泛微，万户，帆软，海康威视，金蝶云星空，畅捷通，Struts等多个RCE的漏洞利用工具合规渗透合规渗透2024-07-23T08:00:50https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484259&idx=1&sn=aa9dc5ded8fa7680d8a1d4f5701bcf3eProcess injection alternative合规渗透合规渗透2024-07-22T08:00:10https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484240&idx=1&sn=4467be07eab1806b8b59c62abfe5e6f0用友U8 CRM 文件上传致RCE漏洞合规渗透合规渗透2024-07-21T15:34:56https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484226&idx=1&sn=060f6bd72e328b87355169e06f0dcba1合规渗透合规渗透2024-07-16T07:00:24https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484163&idx=1&sn=8f1d9bfdc949c141cb2b125dbf5e17a2合规渗透合规渗透2024-07-09T21:54:52https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484147&idx=1&sn=3a75bdc24abb6cc6e4b22d54ef256ffb偶然看到这个漏洞的分析，恰恰好，又找到了可以用的版本，于是顺手复现了一遍这个漏洞影响版本- QQ 9.6.2.合规渗透合规渗透2024-07-07T23:14:10https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484120&idx=1&sn=ffd15768333132c444aa92955b6d6a6d合规渗透合规渗透2024-07-05T08:02:19https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484095&idx=1&sn=f1cb470283fdc77739ac4df376f861f2进程重影是一种进程注入技术，攻击者在该技术中创建一个临时文件，将其标记为删除（删除挂起状态），将恶意软件复制/映射到内存中（图像部分），关闭句柄（将其从磁盘中删除），然后从现在无文件的部分创建进程。合规渗透合规渗透2024-07-04T08:01:11https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484088&idx=1&sn=d5f345a542b591594684a5fd087831e9CVE-2024-27348 是一个远程代码执行 （RCE） 漏洞，存在于 1.3.0 之前版本的 Apach合规渗透合规渗透2024-07-03T07:01:13https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484088&idx=2&sn=d83d4f60b1e467f3cc4ce4ff66dc0ff2合规渗透合规渗透2024-07-03T07:01:13https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484088&idx=3&sn=ef00bc534023423e2ef5c2a02fbd3f80FOFA Query: app=\\x26quot;OpenSSH\\x26quot;昨晚看到tg上有人发poc的时候去github搜了一下，唯一合规渗透合规渗透2024-07-03T07:01:13https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484010&idx=1&sn=a61b51b5e979a38215863b94ca6695fe在进行数字取证和安全事件响应时，分析程序的执行轨迹对于揭示攻击者活动和系统异常行为至关重要。合规渗透合规渗透2024-07-02T09:01:03https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247484004&idx=1&sn=dbcda9a42775935a8c97c058247a0bae横向渗透痕迹的排查，包含 远程桌面、文件共享、psexec、计划任务、服务、wmic、powershell等的源主机与目的主机的排查。合规渗透合规渗透2024-07-01T08:00:42https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483992&idx=1&sn=28b476585d2812500e2f8c0695b8ab5e作为一个合格的蓝队人员，上机排查是基本的技能，那么上机时怎么去发现机器上存在的异常进程？合规渗透合规渗透2024-06-30T17:40:47https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483979&idx=1&sn=b0a73755991c5752d41a76c2419de7e9开发者勉强算是大改了，但是地图这些太底层的东西如果改那可真是估计到羊了个羊热度消散都不会说能过关了，修改思路合规渗透合规渗透2022-09-20T16:14:43https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483969&idx=1&sn=f08396bedd6b5047024fbea1f9462ad5羊了个羊最近火了起来，素有第一关教你1+1，第二关直接让你考研的美誉今天抓包看了一下，通过本文对此进行一个概合规渗透合规渗透2022-09-16T21:49:54https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483949&idx=1&sn=82921da7d521b79a60e312943ef07cc7网络配置信息ipconfig /all查询操作系统及软件信息systeminfo 查看安装的软件及版本路径等合规渗透合规渗透2022-09-13T16:51:15https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483819&idx=1&sn=e4403490e6fc7ee15217835849517c3e本文badusb基于digispark制作，成本大概14元，淘宝如图Arduino IDE+驱动我用的1.6合规渗透合规渗透2022-09-11T23:17:41https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483757&idx=1&sn=b2fb7495921388f08f432456a4d44ceeLinux 入侵类问题排查思路和操作方式合规渗透合规渗透2022-08-19T19:54:30https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483752&idx=1&sn=5b6ceae546d7633f4a9403018f2b950d接昨天的内容系统进程检查进程检查一般使用如下几个工具Evaleye.exeprocessExplorer.e合规渗透合规渗透2022-08-18T23:47:14https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483713&idx=1&sn=d46f374b280d6acbd869b17dd279d18bCs4.4链接：https://pan.baidu.com/s/1znchapid2mpAV9hMBNKsC合规渗透合规渗透2021-08-26T00:40:29https://mp.weixin.qq.com/s?__biz=MzkzOTI2NjUyNA==&mid=2247483668&idx=1&sn=537e7cfdbd1942a6e3c32e98d198fd78合规渗透合规渗透2021-07-17T20:29:31