每周蓝军技术推送(2024.10.12-10.18) | CTF导航
Tags
| attack-pattern: | Models Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 3094e93e-2ca9-4209-8027-382c19330e10 |
| Fingerprint | bba907df9725cc31 |
| Analysis status | DONE |
| Considered CTI value | -2 |
| Text language | |
| Published | Oct. 12, 2024, midnight |
| Added to db | Oct. 19, 2024, 4:12 a.m. |
| Last updated | Nov. 17, 2024, 7:44 p.m. |
| Headline | 每周蓝军技术推送(2024.10.12-10.18) |
| Title | 每周蓝军技术推送(2024.10.12-10.18) | CTF导航 |
| Detected Hints/Tags/Attributes | 17/1/78 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.ctfiot.com/210725.html |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 426 | ✔ | CTF导航 | https://www.ctfiot.com/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 3 | cve-2024-40431 |
|
| Details | CVE | 2 | cve-2022-25479 |
|
| Details | CVE | 9 | cve-2024-35250 |
|
| Details | CVE | 44 | cve-2024-38178 |
|
| Details | CVE | 36 | cve-2024-9465 |
|
| Details | CVE | 10 | cve-2024-37404 |
|
| Details | CVE | 53 | cve-2024-23113 |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 10 | trustedsec.com |
|
| Details | Domain | 768 | www.youtube.com |
|
| Details | Domain | 1 | 0xanalyst.github.io |
|
| Details | Domain | 3 | essay.utwente.nl |
|
| Details | Domain | 189 | asec.ahnlab.com |
|
| Details | Domain | 7 | image.ahnlab.com |
|
| Details | Domain | 452 | msrc.microsoft.com |
|
| Details | Domain | 7 | pgj11.com |
|
| Details | Domain | 1 | goodworkaround.com |
|
| Details | Domain | 1 | imprompter.ai |
|
| Details | Domain | 154 | arxiv.org |
|
| Details | Domain | 1 | blog.ml6.eu |
|
| Details | Domain | 14 | huggingface.co |
|
| Details | Domain | 138 | www.securityweek.com |
|
| Details | Domain | 1 | openvmm.dev |
|
| Details | File | 1 | 基于进程克隆的lsass.exe |
|
| Details | File | 1 | nielen_ma_eemcs.pdf |
|
| Details | File | 9 | ks.sys |
|
| Details | File | 3 | 공개보고서-operationcodeontoast.pdf |
|
| Details | File | 1 | imprompter.ai |
|
| Details | File | 10 | paper.pdf |
|
| Details | File | 1 | 由dfir-orc.exe |
|
| Details | Github username | 1 | slygoo |
|
| Details | Github username | 1 | noctedefensor |
|
| Details | Github username | 1 | krypteria |
|
| Details | Github username | 2 | vxcrypt0r |
|
| Details | Github username | 1 | offensive-panda |
|
| Details | Github username | 1 | spiralbl0ck |
|
| Details | Github username | 1 | varwara |
|
| Details | Github username | 11 | horizon3ai |
|
| Details | Github username | 17 | elastic |
|
| Details | Github username | 2 | anssi-fr |
|
| Details | Github username | 48 | microsoft |
|
| Details | Url | 1 | https://github.com/slygoo/pssreconekuwu |
|
| Details | Url | 1 | https://trustedsec.com/blog/ekuwu-not-just... |
|
| Details | Url | 1 | https://github.com/slygoo/pssrecon |
|
| Details | Url | 2 | https://trustedsec.com/blog/ekuwu-not-just-another-ad-cs-esc |
|
| Details | Url | 1 | https://github.com/noctedefensor/sharelord |
|
| Details | Url | 1 | https://github.com/krypteria/proxll |
|
| Details | Url | 1 | https://github.com/vxcrypt0r/voidmaw |
|
| Details | Url | 1 | https://github.com/offensive-panda/lsassreflectdumping |
|
| Details | Url | 1 | https://www.outflank.nl/blog/2024/10/15/introducing-early-cascade-injection-from-windows-process-creation-to-stealthy-injection |
|
| Details | Url | 1 | https://www.youtube.com/watch?v=hhmxuxq7be8 |
|
| Details | Url | 1 | https://0xanalyst.github.io/project-lost |
|
| Details | Url | 1 | https://essay.utwente.nl/94945/1/van |
|
| Details | Url | 1 | https://github.com/spiralbl0ck/cve-2024-40431-cve-2022-25479-eop-chain |
|
| Details | Url | 1 | https://github.com/varwara/cve-2024-35250 |
|
| Details | Url | 1 | https://devco.re/blog/2024/08/23/streaming-vulnerabilities-from-windows-kernel-proxying-to-kernel-part1-en |
|
| Details | Url | 1 | https://asec.ahnlab.com/ko/83876 |
|
| Details | Url | 1 | https://image.ahnlab.com/atip/content/file/20241015/(전체본)공개보고서-operationcodeontoast.pdf |
|
| Details | Url | 5 | https://msrc.microsoft.com/update-guide/vulnerability/cve-2024-38178 |
|
| Details | Url | 1 | https://github.com/horizon3ai/cve-2024-9465 |
|
| Details | Url | 1 | https://blog.amberwolf.com/blog/2024/october/cve-2024-37404-ivanti-connect-secure-authenticated-rce-via-openssl-crlf-injection |
|
| Details | Url | 2 | https://labs.watchtowr.com/fortinet-fortigate-cve-2024-23113-a-super-complex-vulnerability-in-a-super-secure-appliance-in-2024 |
|
| Details | Url | 1 | https://pgj11.com/posts/bypass-azure-admin-approval-mode-enumeration |
|
| Details | Url | 1 | https://goodworkaround.com/2024/10/14/issuing-custom-security-attributes-in-entra-id-tokens |
|
| Details | Url | 1 | https://medmahmoudi.com/projects/how-i-found-a-p2-misrouting-issue-affecting-all-google-cloud-load-balancers |
|
| Details | Url | 1 | https://www.youtube.com/watch?v=6p0nqcmt_ba |
|
| Details | Url | 1 | https://imprompter.ai |
|
| Details | Url | 1 | https://imprompter.ai/paper.pdf |
|
| Details | Url | 1 | https://arxiv.org/abs/2410.11283 |
|
| Details | Url | 1 | https://arstechnica.com/security/2024/10/ai-chatbots-can-read-and-write-invisible-text-creating-an-ideal-covert-channel |
|
| Details | Url | 1 | https://blog.ml6.eu/practicalities-of-llm-guardrails-a-demo-by-ml6-c0372613eca1 |
|
| Details | Url | 1 | https://huggingface.co/spaces/ml6team/secret-agent-guardrail-challenge |
|
| Details | Url | 1 | https://www.securityweek.com/ai-models-in-cybersecurity-from-misuse-to-abuse |
|
| Details | Url | 1 | https://github.com/elastic/detection-rules/tree/main/hunting |
|
| Details | Url | 1 | https://securitymaven.medium.com/when-usbs-attack-exploring-the-underbelly-of-malicious-lnk-files-f536d5dbc753 |
|
| Details | Url | 1 | https://github.com/anssi-fr/orc2timeline |
|
| Details | Url | 1 | https://github.com/microsoft/openvmm |
|
| Details | Url | 1 | https://openvmm.dev |