【摘要】0x00 漏洞简介 https://www.openwall.com/lists/oss-security/2020/03/23/2 0x01 漏洞分析 翻查官方commit，在commit https://github.com/apache/shiro/commit/9762f97926ba99a 阅读全文
- Exploring an Assembly Loading Technique and Detection Mechanism for the GfxDownloadWrapper.exe LOLBIN – | bohops |
- CVE-2020–4280 — IBM QRadar Java Deserialization Analysis (and bypass) | by Jang | Oct, 2020 | Medium
- GitHub – epi052/feroxbuster: A fast, simple, recursive content discovery tool written in Rust.
- Technical Advisory – Linksys WRT160NL – Authenticated Remote Buffer Overflow (CVE-2020-26561) – NCC Group Research
- Technical Advisory – Jitsi Meet Electron – Limited Certificate Validation Bypass (CVE-2020-27161) – NCC Group Research
- Let’s build a high-performance fuzzer with GPUs!
- Detailing Two VMware Workstation TOCTOU Vulnerabilities
- Why not catching exception hurts security products? A case study with Cybereason EDR (CVE-2020-26562 & CVE-2020-26871)