网络安全笔记 – Telegram

网络安全笔记

7.37K subscribers

109 photos

3 videos

571 files

642 links

从零开始、持续积累、开放共享、共同成长（网络安全、AI方向）

Download Telegram

About

Blog

Apps

Platform

网络安全笔记

7.37K subscribers

网络安全笔记

反 Rootkit 技术 - 第 I 部分：取消 Map-Rootkit
https://eversinc33.com/posts/anti-anti-rootkit-part-i.html

反 Rootkit 技术 - 第 II 部分：破坏驱动程序和隐藏线程
https://eversinc33.com/posts/anti-anti-rootkit-part-ii.html

反 Rootkit 技术 - 第 III 部分：劫持指针
https://eversinc33.com/posts/anti-anti-rootkit-part-iii.html

(Anti-)Anti-Rootkit Techniques - Part II: Stomped Drivers and Hidden Threads

Detectin driver 'stomping' and hiding system threads by manipulating the PspCidTable.

2.77K views00:32

网络安全笔记

浙江大学出的这个开源的书籍「大模型基础」值得一看，行文风格挺不错的，易读、严谨、有深度的大模型教材。
https://github.com/ZJU-LLMs/Foundations-of-LLMs

GitHub - ZJU-LLMs/Foundations-of-LLMs: A book for Learning the Foundations of LLMs

A book for Learning the Foundations of LLMs. Contribute to ZJU-LLMs/Foundations-of-LLMs development by creating an account on GitHub.

2.93K views04:31

网络安全笔记

https://www.elastic.co/security-labs/finaldraft

You've Got Malware: FINALDRAFT Hides in Your Drafts — Elastic Security Labs

During a recent investigation (REF7707), Elastic Security Labs discovered new malware targeting a foreign ministry. The malware includes a custom loader and backdoor with many features including using Microsoft’s Graph API for C2 communications.

2.85K views04:42

网络安全笔记

文章通过实验展示了在开源LLM中嵌入后门的可能性，并强调了嵌入风险的隐蔽性和检测的困难性。作者呼吁在使用LLM时保持警惕，无论其是否开源，并期待AI研究者开发出有效的检测和缓解方法。
#AI
https://blog.sshh.io/p/how-to-backdoor-large-language-models

https://github.com/sshh12/llm_backdoor?tab=readme-ov-file

How to Backdoor Large Language Models

Making "BadSeek", a sneaky open-source coding model.

🤯1

3.51K views06:36

网络安全笔记

Grok3发布
https://x.com/i/broadcasts/1gqGvjeBljOGB

X (formerly Twitter)

3.5K views05:16

网络安全笔记

Microsoft 激活脚本（MAS）——自行分析是否有问题，慎重使用。
https://github.com/massgravel/Microsoft-Activation-Scripts

GitHub - massgravel/Microsoft-Activation-Scripts: Open-source Windows and Office activator featuring HWID, Ohook, TSforge, and…

Open-source Windows and Office activator featuring HWID, Ohook, TSforge, and Online KMS activation methods, along with advanced troubleshooting. - massgravel/Microsoft-Activation-Scripts

3.98K views05:36

网络安全笔记

Linux系统中有软链接和硬链接的概念，这篇文章详细解释他们之间的差别。
https://bhoot.dev/2024/on-linux-file-and-links/

3.6K views03:18

网络安全笔记

Linux硬链接：在进行文件备份时，硬链接能在不额外占用大量存储空间的情况下创建文件副本。因为多个硬链接指向同一个数据块，对原文件进行修改，备份的硬链接文件也能实时体现这些变化，保证数据一致性，同时删除其中一个硬链接不会影响其他链接和数据块，提高数据安全性。例如，在重要配置文件备份场景中，系统管理员可以为关键的配置文件创建多个硬链接，分布在不同目录下。当系统出现故障需要恢复配置时，只要数据块未被删除，任何一个硬链接都可用于恢复配置。

思考：如遇勒索，只要其中还有未被加密的数据块，是否可以恢复？

👍2

4.11K views03:28

网络安全笔记

超强职场AI工具

文案创作
ChatGPT https://chatgpt.com/
Claude https://claude.ai/
Deepseek https://www.deepseek.com/

日常办公
Gamma https://gamma.app/zh-tw
RecCloud https://reccloud.com/tw/
Formulabot https://www.formulabot.com/

资料搜寻
Perplexity https://www.perplexity.ai/
Gemini https://gemini.google.com/
Bohrium https://www.dp.tech/en/product/bohrium

图片生成
Midjourney https://www.midjourney.com/
Recraft https://www.recraft.ai/
Stability.ai https://stability.ai/stable-image

ChatGPT helps you get answers, find inspiration, and be more productive.

👍5❤1

3.32K views23:10

网络安全笔记

一种高性能分布式文件系统，旨在应对 AI 训练和推理工作负载的挑战。
https://github.com/deepseek-ai/3FS

GitHub - deepseek-ai/3FS: A high-performance distributed file system designed to address the challenges of AI training and inference…

A high-performance distributed file system designed to address the challenges of AI training and inference workloads. - deepseek-ai/3FS

3.84K views23:25

网络安全笔记

鸡肋tg漏洞：https://cti.monster/blog/2025/03/04/evilloader.html

CVE-2024-7014 RETURN: UPDATED EVILLOADER

3.87K views08:53

网络安全笔记

每一轮大的技术风口并不完全是一哄而上的炒作，里面包含了一些真正的机会，值得关注和跟上。这也是为什么周刊每一次都对新技术倍加关注、积极评价的原因。
当然，赶上技术风口的前提，还是要有真才实学，能做出实打实的产品。否则，真遇到风口，你也无法脱颖而出，拿到技术炒作的红利。

👍7

3.33K views12:55

网络安全笔记

https://telegra.ph/weekly-340-03-07

科技爱好者周刊（第 340 期）：技术炒作三十年

这里记录每周值得分享的科技内容，周五发布。本杂志开源，欢迎投稿。另有《谁在招人》服务，发布程序员招聘信息。合作请邮件联系（yifeng.ruan@gmail.com）。封面图成都建筑师刘家琨，本周获得号称“建筑界诺贝尔奖”的普利兹克奖，上图是他的作品苏州御窑金砖博物馆。（via）技术炒作三十年大家有没有发现，每隔一段时间，媒体就会大肆炒作一种新技术，宣扬它将对人类产生巨大影响，全社会都在关注，人人都在谈论。这种炒作就是大家常说的“风口”吧。突然之间，风就起来了，如果正好站在风口，猪也能飞起来。…

👍5

4.8K views12:55

网络安全笔记

要销声匿迹一段时间

😢4👍2❤1

3.76K views15:54

网络安全笔记

https://github.com/SecurityAura/DE-TH-Aura/tree/main/100DaysOfKQL

DE-TH-Aura/100DaysOfKQL at main · SecurityAura/DE-TH-Aura

Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or even inspiration). - SecurityAura/DE-TH-Aura

4.14K views22:47

网络安全笔记

https://github.com/prodaft/malware-ioc/tree/master

GitHub - prodaft/malware-ioc: This repository contains indicators of compromise (IOCs) of our various investigations.

This repository contains indicators of compromise (IOCs) of our various investigations. - prodaft/malware-ioc

👍1

4.92K views22:52

网络安全笔记

online

3.56K views14:52

网络安全笔记

mshta.exe 从命令行执行原始脚本
https://github.com/SecurityAura/DE-TH-Aura/blob/main/100DaysOfKQL/Day%2080%20-%20mshta.exe%20Executing%20Raw%20Script%20From%20Command%20Line.md

DE-TH-Aura/100DaysOfKQL/Day 80 - mshta.exe Executing Raw Script From Command Line.md at main · SecurityAura/DE-TH-Aura

Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or even inspiration). - SecurityAura/DE-TH-Aura

👍1

4.26K views10:47

网络安全笔记

macOS恶意软件知识库
https://notes.crashsecurity.io/notes/x/A38A7A0B-F556-46E6-BF37-514627580675/x/3370998C-0768-466C-BD49-B4F04E61766B

4.59K views11:52

网络安全笔记

https://github.com/SecurityAura/DE-TH-Aura/tree/main/100DaysOfKQL

DE-TH-Aura/100DaysOfKQL at main · SecurityAura/DE-TH-Aura

Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or even inspiration). - SecurityAura/DE-TH-Aura

4.37K views16:05

网络安全笔记

https://mp.weixin.qq.com/s/pKNyMQWkg2QDor_U0gV-CQ

4.16K views16:08