Stop making excuses.

// David Bombal Memberships //
Free: https://courses.davidbombal.com/p/david-bombal-free-courses
All-Inclusive Membership (includes Boson ExSim and NetSim): https://courses.davidbombal.com/p/all-inclusive-subscription-course

// FREE…

The vast majority of threat hunting takes place on easily visible and accessible system artifacts. These include log entries, network data, command line histories, persistence locations, and many other locations on a system or in the environment. Thanks to…

According to Volexity 1), a cybersecurity company based in Washington, DC, a webshell was discovered in the Atlassian Confluence server during an incident response investigation. Initially believed to be an issue specific to Atlassian Confluence, Volexity…

Symbiote is a new Linux® malware we discovered that acts in a parasitic nature, infecting other running processes to inflict damage on machines.

这里记录每周值得分享的科技内容，周五发布。 本杂志开源（GitHub: ruanyf/weekly），欢迎提交 issue，投稿或推荐科技内容。 周刊讨论区的帖子《谁在招人？》，提供大量程序员就业信息，欢迎访问或发布工作/实习岗位。 封面图 中国科学家绘制的世界首幅、最详细的1:250万月球全月地质图发布，统计出月球包含12341个撞击坑、17种岩石、14类地质构造。（via） 本周话题：为什么软件变得复杂 我一直认为，软件开发的最大关注点，就是避免复杂性。软件设计越简单越好，太多的程序员以构建复杂的解决方案为荣。…

KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions. - microsoft/krabsetw

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities. - h3xduck/TripleCross

Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking. - netero1010/RDPHijack-BOF

Posted by Maddie Stone, Google Project Zero This blog post is an overview of a talk, “ 0-day In-the-Wild Exploitation in 2022…so far”,...