logo

2021

Dec 18, 2021
Using CloudFront Relay Cobalt Strike Traffic
Dec 18, 2021
Static Program Analysis Intruction
Dec 18, 2021
Google 是如何落地静态代码分析的
Sep 18, 2021
为 CodeQL 自定义规则编写测试文件
Apr 10, 2021
AWS S3 subdomain takeover
Mar 29, 2021
HTTP/2 Header Field Re-used Attack Trick

2020

Nov 25, 2020
This is a test page for testing Github Action
Nov 16, 2020
Smogcloud - AWS external network asset discovery platform
Sep 14, 2020
Write a simple HTTPS server use Go
Jun 29, 2020
Hack The Box - Postman Writeup - Linux
May 22, 2020
使用 CloudWatch Event 监控 ElasticSearch 事件
Apr 25, 2020
CobaltStrike Aggressor Script 实现 Beacon 上线告警功能
Mar 2, 2020
HashCat:如何利用HashCat破解NTLMv2 hash?
Feb 28, 2020
我也来喷一喷零信任
Jan 1, 2020
如何实现一个基于 Golang 的 webshell?

2019

Nov 25, 2019
如何配置Policy强制AWS控制台使用MFA,CLI不用MFA?
Nov 23, 2019
如何限制IAM User只能在指定的IP登录?
Nov 23, 2019
S3 pre-signed URL 与 KMS 加密那些事
Nov 21, 2019
S3 Bucket 如何配置才能做到只允许某一个IAM User操作?
Nov 21, 2019
聊一聊AssumeRole和Trust Relationship
Nov 19, 2019
AWS Lambda Node.js 反弹shell
Nov 19, 2019
ECS Fargate 初体验
Nov 17, 2019
S3FS 简介及部署
Nov 15, 2019
EBS卷挂载不用UUID导致的EC2实例无法正常启动的问题
Nov 13, 2019
聊一聊AWS S3的版本控制
Nov 8, 2019
AWS S3 Multipart Upload
Nov 1, 2019
AWS ALB Access log与KMS加密S3 Bucket的那些恩怨情仇
Nov 1, 2019
几个关于AWS NLB的有趣问题
Oct 25, 2019
KMS:如果A账号的AMI使用AWS managed key加密需要将其共享给B账号应该如何操作?
Oct 14, 2019
OSCP:Vulnhub Kioptrix Level 2 Writeup
Oct 13, 2019
OSCP:Vulnhub Kioptrix Level 1 Writeup
Oct 9, 2019
如何配置ADFS使域账号可以登陆多个AWS账户
Oct 7, 2019
一个信息安全从业人员的自我修养——我的安全技术栈
Jun 19, 2019
OSCP Note - Common use of Netcat(nc) and Ncat
May 29, 2019
A command similar to wget in Windows: Invoke-WebRequest
May 28, 2019
Use AWS SSM(Systems Manager) execute remote script file at EC2 instance
May 23, 2019
AWS VPC DHCP Options Set change Effective immediately
May 23, 2019
How do I set the S3 bucket policy so that it can only be accessed by the specified IP
May 22, 2019
How Winodws Escalation Privilege from administrator privilege to system privilege

2018

Nov 6, 2018
Gogs RCE Vulnerability Analysis
Mar 2, 2018
Enterprise Cyber security build of Windows lateral movement attacks detection

2017

Dec 25, 2017
Flask debug mode PIN code generation mechanism security research notes

2016

Oct 22, 2016
An example of network security problems in the IoT era