Forwarded from Ziyao Channel | 二代目 (梓瑶 | dt-binding 苦手)
Pseudorandom Thoughts
OSCP挂第三次了,40-50-60,只能说菜就多练 新版OSCP+给人的观感是AD部分往OSEP靠拢,变得很公式化,纯靠手快;但单机越来越难,脑洞设计上更贴近CTF了
OSCP四战(感觉)80,这次抽到的单机题也简单很多,虽然也只A了两道,但PE都弱智纯送分,因为明天还要上班没空写wp,所以现场写了wp交上去了,写完感觉第三道实在是没有精力,提前End了
噢对了,oscp改版oscp+之后会把冷静期重置一次,相当于给尊贵的LU大会员多送一次考试机会。(虽然现在已经12月,说这个已经晚了,但我卡上了timing)
该说不说,AD题目质量真不如以往的PG和challenge,OSCP和CPE就应该分开来出题和考试的,现在全合进OSCP+了说是。这把质量像CPE,不像改版前的手法和脑洞大赛(等一个把我干掉两次的靶机退休,下次有机会出渗透考题我要学他原样复刻)。可能搞着搞着OSCP就剩个金字招牌了,得看看别家渗透证好不好玩
噢对了,oscp改版oscp+之后会把冷静期重置一次,相当于给尊贵的LU大会员多送一次考试机会。(虽然现在已经12月,说这个已经晚了,但我卡上了timing)
该说不说,AD题目质量真不如以往的PG和challenge,OSCP和CPE就应该分开来出题和考试的,现在全合进OSCP+了说是。这把质量像CPE,不像改版前的手法和脑洞大赛(等一个把我干掉两次的靶机退休,下次有机会出渗透考题我要学他原样复刻)。可能搞着搞着OSCP就剩个金字招牌了,得看看别家渗透证好不好玩
Forwarded from 🐱 Ch. | 挪瓦咖啡配苕皮套餐 TV (webRTCCat | Present Day, Present Time)
锐评无限暖暖:
是兄弟,就来一起做姐妹
4K爽玩,每一根头发丝都看得清清楚楚,5800X3D+4080S不热不掉帧
TPP腰射怎么不给准心,此外战斗动作交互很一般,二段跳都给了,但没有翻滚也没有滑铲,有点难受……噢原来这是美少女换装游戏,确实不需要翻滚滑铲……这是吗?总之没有那种闪身走位擦弹弹反的感觉
开局中配就没绷住于是换日配,听完女神感觉日配也很难绷,换了英配,虽然有点棒读至少玩的时候绷住了
野外收集点太多了,永远怀念无主之地的拾取机制,能不能学人家做个带F键交互的自动拾取,这对于我们什么小物品都想毛的hobo玩家来说很重要
感觉衣品比◯神好太多,玩不下◯神的人真可以玩这个(不是我想拐◯神但它确有◯感
开服送的套装比池子里的好看太多谁懂
经典叠纸定价,还好开服送的抽也很多,玩完开服福利和首充之后就不想充钱了
致敬传奇淘米游戏哈奇小镇
4K爽玩,每一根头发丝都看得清清楚楚,5800X3D+4080S不热不掉帧
开局中配就没绷住于是换日配,听完女神感觉日配也很难绷,换了英配,虽然有点棒读至少玩的时候绷住了
野外收集点太多了,永远怀念无主之地的拾取机制,能不能学人家做个带F键交互的自动拾取,这对于我们什么小物品都想毛的hobo玩家来说很重要
感觉衣品比◯神好太多,玩不下◯神的人真可以玩这个(不是我想拐◯神但它确有◯感
开服送的套装比池子里的好看太多谁懂
经典叠纸定价,还好开服送的抽也很多,
💊5
Pseudorandom Thoughts
https://github.com/IBM/plex/pull/606
这几天Plex突然“火出圈”了,刚好有群友讨论到“抽象的人字头”,所以经典回顾一下这篇博文
https://www.thetype.com/2021/06/21723/
https://www.thetype.com/2021/06/21723/
The Type
The Type — 油墨陷阱和它的朋友们
最近我看到了伊夫斯·彼得斯(Yves Peters)在推特上询问图中尖刺的正式名称叫什么,我简短地回答了一下( […]
DFIR笑传之常常备
数据无价 谨慎操作
给亲友进行一个硬盘扩容抢救,原盘抛开写入寿命已经用掉20%不说,明明响应时间已经飞50ms甚至100ms了,测盘还是全绿的,SMART也非常宁静祥和,可能是太满了(余量10%)。相关数据截图不放出保护当事人隐私
经验1:痛苦地解了一晚上bitlocker和拷贝,事后想想是不是先逐字节对拷到新盘再解bitlocker会好一点,但那样搞我都怕从TPM到SB到卷内的任意一环出问题导致全盘锁解不开,Bitlocker+微软账号的设计对普通人还是过于不友善了,没有计算机管理经验的人谁会记得备份密钥.txt啊
经验2:真心建议从事非涉密的数字创作的朋友们人手一个小NAS进行准实时同步备份,群晖算1个能用的,其他牌子后果自负
经验3:固态硬盘留出至少15%可用空间,不然读写速度响应时间真要爆了
经验4:数据恢复是私人op动作中唯一一个适合在周五做的事情,因为工作日时间不够用但他是挂机等待类型
数据无价 谨慎操作
给亲友进行一个硬盘扩容抢救,原盘抛开写入寿命已经用掉20%不说,明明响应时间已经飞50ms甚至100ms了,测盘还是全绿的,SMART也非常宁静祥和,可能是太满了(余量10%)。相关数据截图不放出保护当事人隐私
经验1:痛苦地解了一晚上bitlocker和拷贝,事后想想是不是先逐字节对拷到新盘再解bitlocker会好一点,但那样搞我都怕从TPM到SB到卷内的任意一环出问题导致全盘锁解不开,Bitlocker+微软账号的设计对普通人还是过于不友善了,没有计算机管理经验的人谁会记得备份密钥.txt啊
经验2:真心建议从事非涉密的数字创作的朋友们人手一个小NAS进行准实时同步备份,群晖算1个能用的,其他牌子后果自负
经验3:固态硬盘留出至少15%可用空间,不然读写速度响应时间真要爆了
经验4:数据恢复是私人op动作中唯一一个适合在周五做的事情,因为工作日时间不够用但他是挂机等待类型
Forwarded from idapro (Not official)
Kaspersky's GReAT has released private plugin – the hrtng plugin for IDA Pro, the result of nearly 10 years of work. Packed with 37 advanced features, the plugin includes entirely new capabilities along with powerful upgrades to popular third-party plugins.
Each feature comes with detailed descriptions, demo links, and practical examples, all designed to make malware analysis faster, more effective, and more efficient.
An example of usage hrtng plugin to dissect FinSpy spyware is here
Each feature comes with detailed descriptions, demo links, and practical examples, all designed to make malware analysis faster, more effective, and more efficient.
An example of usage hrtng plugin to dissect FinSpy spyware is here
GitHub
GitHub - KasperskyLab/hrtng: IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition…
IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations - KasperskyLab/hrtng
Forwarded from vx-underground
vx-underground Black Mass Research Group presents: Minegrief.
tl;dr a computer worm that targets minecraft
https://github.com/blackmassgroup/minegrief
tl;dr a computer worm that targets minecraft
https://github.com/blackmassgroup/minegrief
GitHub
GitHub - blackmassgroup/minegrief: Self-spreading Java malware targeting Minecraft servers. Infected servers are capable of scanning…
Self-spreading Java malware targeting Minecraft servers. Infected servers are capable of scanning for other vulnerable servers, encrypting Minecraft worlds, and phishing players who connect. - blac...
🎉1💊1
国内排名前三的云厂商里面至少有两家厂商的专有云负载均衡产品的webconsole及其后端不能正确处理哪怕稍微花一点的PEM封装的证书,气笑了,我看还是优化少了,人和平台都是
💊4🎉1
Forwarded from vx-underground
We're witnessing the evolution of ransomware.
Yesterday someone informed us of the existence of the new TTP of AWS S3 extortion. More specifically, Threat Actors abusing the Amazon Key Management Service (KMS) to encrypt company AWS buckets (or any cloud provider).
We have never heard of this until yesterday.
RhinoSecurity wrote a paper on AWS S3 extortion, the methodology in which it's deployed, and wrote a simple AWS CLI script to accomplish the task.
It's 25 lines of Python code.
Yesterday someone informed us of the existence of the new TTP of AWS S3 extortion. More specifically, Threat Actors abusing the Amazon Key Management Service (KMS) to encrypt company AWS buckets (or any cloud provider).
We have never heard of this until yesterday.
RhinoSecurity wrote a paper on AWS S3 extortion, the methodology in which it's deployed, and wrote a simple AWS CLI script to accomplish the task.
It's 25 lines of Python code.