[
    {
        "title": "邮件钓鱼免杀完全指南（2026 实战版）· 三、绕过 SPF/DKIM/DMARC 邮件认证",
        "link": "https://mp.weixin.qq.com/s/UGfGCaWPSYEe4W1gQzMy8A",
        "description": "系列说明：本文是《邮件钓鱼免杀完全指南（2026 实战版）》系列的第三篇。",
        "author": "IceByte-Sec",
        "category": "IceByte-Sec",
        "pubDate": "2026-05-17T21:47:23"
    },
    {
        "title": "Bp插件：AI驱动的智能Fuzz生成器",
        "link": "https://mp.weixin.qq.com/s/5-fe8mwvj524OSYUpMAIIA",
        "description": "Burp AI Fuzzer 是一款基于大语言模型驱动的 Burp Suite 插件，能自动解析 HTTP 请求上下文生成针对性 Fuzz 字典。支持多模板管理、一键标记参数和 Intruder 深度集成，适合 Web 安全测试人员在授权渗透测试中提升模糊测试效率。",
        "author": "0x八月",
        "category": "0x八月",
        "pubDate": "2026-05-17T21:18:11"
    },
    {
        "title": "【安全圈】黑客利用 Burst Statistics WordPress 插件认证绕过漏洞发动攻击",
        "link": "https://mp.weixin.qq.com/s/BUzZBnN07Iqe_zyiDwsvtQ",
        "description": "AI 漏洞挖掘开始交付\\\\x26quot;工程化结果\\\\x26quot;\\\\x0d\\\\x0a从音频解码到工业 CAD，从车端 CAN 帧到企业 Java 中间件——这一次，AI 红队没有靠\\\\x26quot;灵感\\\\x26quot;。",
        "author": "安全圈",
        "category": "安全圈",
        "pubDate": "2026-05-17T19:00:33"
    },
    {
        "title": "【安全圈】黑客利用 Burst Statistics WordPress 插件认证绕过漏洞发动攻击",
        "link": "https://mp.weixin.qq.com/s/wxXwtTn6epofgw0Cl-D-gA",
        "description": "AI 漏洞挖掘开始交付\\\\x26quot;工程化结果\\\\x26quot;\\\\x0d\\\\x0a从音频解码到工业 CAD，从车端 CAN 帧到企业 Java 中间件——这一次，AI 红队没有靠\\\\x26quot;灵感\\\\x26quot;。",
        "author": "安全圈",
        "category": "安全圈",
        "pubDate": "2026-05-17T19:00:33"
    },
    {
        "title": "CVE-2015-1328 Overlayfs内核本地提权复现",
        "link": "https://mp.weixin.qq.com/s/KSaJfV_qU6iokXy4v8-jLg",
        "description": null,
        "author": "晨星安全团队",
        "category": "晨星安全团队",
        "pubDate": "2026-05-17T16:52:07"
    },
    {
        "title": "自动化渗透测试利器NucleiFuzzer",
        "link": "https://mp.weixin.qq.com/s/5NlCon9G6u3Y-S7QuRiInA",
        "description": "NucleiFuzzer 是一款由安全研究者 0xKayala 开发的自动化渗透测试框架，当前版本为 v4.0",
        "author": "小兵搞安全",
        "category": "小兵搞安全",
        "pubDate": "2026-05-17T16:33:36"
    },
    {
        "title": "一次一口吃掉大象：PHP中与JPEG相关的内存安全漏洞",
        "link": "https://mp.weixin.qq.com/s/Hsdo8b1x8O9Tbk4fIuxOaA",
        "description": "PHP内核很少被视作攻击面，但ext/standard扩展里大量处理文件的C代码其实暗藏风险。本文拆解了两个真实漏洞：getimagesize函数在读取JPEG APP段时泄露堆内存（CVE-2025-14177），以及iptcembed函",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-17T15:09:00"
    },
    {
        "title": "插件推荐 | burp实用插件记录",
        "link": "https://mp.weixin.qq.com/s/kypR6oEUJGTKzEaV7VmbKg",
        "description": null,
        "author": "安全艺术",
        "category": "安全艺术",
        "pubDate": "2026-05-17T15:00:00"
    },
    {
        "title": "CVE-2019-0227漏洞复现",
        "link": "https://mp.weixin.qq.com/s/mPNPN2JnOtGjhw-n0DI9KA",
        "description": "首次以红队身份参加攻防演练是种什么体验？本文复盘了演练最后 3 小时死磕 Axis 服务、从“看得见却打不进”的郁闷到本地环境深度死磕的极客经历。全景展现 Webshell 释放与 FreeMarker 不落盘两种利用手法，并从流量视角深度剖析 JNDI 注入的实战大坑。",
        "author": "SkillLab",
        "category": "SkillLab",
        "pubDate": "2026-05-17T14:32:38"
    },
    {
        "title": "CVE-2025-48804｜BitUnlocker 把 BitLocker 的脸打了",
        "link": "https://mp.weixin.qq.com/s/keJR9JUMn5_BEmn8Kcn81Q",
        "description": "一台全量打补丁的 Windows 11 笔记本，BitLocker 开着，TPM 芯片在工作，你觉得丢了顶多是",
        "author": "船山信安",
        "category": "船山信安",
        "pubDate": "2026-05-17T12:20:35"
    },
    {
        "title": "Agent运行时安全详解：攻击视角下的提示词注入、工具滥用与执行面防御",
        "link": "https://mp.weixin.qq.com/s/F-Z5dYmz8p1ZTlVmlF3tQA",
        "description": null,
        "author": "Security for AI",
        "category": "Security for AI",
        "pubDate": "2026-05-17T10:30:16"
    },
    {
        "title": "SQL注入的方法0x001",
        "link": "https://mp.weixin.qq.com/s/szBoJ3IIWwBRJl8CjUNcWg",
        "description": "免责声明：严格禁止对任何未授权系统/网络进行扫描、攻击或入侵。禁止制作/传播恶意程序，禁止参与任何网络犯罪。",
        "author": "建哥聊安全",
        "category": "建哥聊安全",
        "pubDate": "2026-05-17T10:27:47"
    },
    {
        "title": "当 AWS SDK 客户端跌落系统角色——一个被忽视的提权陷阱",
        "link": "https://mp.weixin.qq.com/s/STw4pAcOug1ksV1pSBTDnw",
        "description": "云安全不止是看 S3 桶有没有公开、VPC 隔没隔离。真正致命的问题往往藏在应用如何调用云服务的逻辑里面。这篇文章通过一个真实的“从 S3 导入数据”漏洞，拆解 AWS SDK 凭据初始化的坑：一旦错误处理把凭据设为 nil，客户端会顺着凭",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-17T09:26:19"
    },
    {
        "title": "ssh-keysign-pwn：Linux 内核五月第四起本地提权漏洞",
        "link": "https://mp.weixin.qq.com/s/5GlfjT4usi_mj5HUA6q2ng",
        "description": "导语：你有一台Linux服务器，上面有一个普通用户账号。你没有root密码，也没有sudo权限。但你",
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-17T08:04:08"
    },
    {
        "title": "邮件钓鱼免杀完全指南（2026 实战版）· 二、OSINT 信息收集四步法",
        "link": "https://mp.weixin.qq.com/s/P6xV5_yhvX9UDM4wBL1i7w",
        "description": "系列说明：本文是《邮件钓鱼免杀完全指南（2026 实战版）》系列的第二篇。上篇建立了全链路攻击视野，本篇深入攻击链最前端——如何利用开源情报（OSINT）在不动声色间获取目标企业的完整邮箱清单和人员画像。",
        "author": "IceByte-Sec",
        "category": "IceByte-Sec",
        "pubDate": "2026-05-16T22:51:07"
    },
    {
        "title": "冰蝎 v4.1 被曝 0‑click 高危漏洞，一连接就被反制，可窃取凭据...！",
        "link": "https://mp.weixin.qq.com/s/6LP7Izufmkq20Es7gNFoPw",
        "description": null,
        "author": "Z2O安全攻防",
        "category": "Z2O安全攻防",
        "pubDate": "2026-05-16T21:24:17"
    },
    {
        "title": "记录一次对校内系统的安全测试",
        "link": "https://mp.weixin.qq.com/s/dF64jY2-z_z6jQKAlP1_5g",
        "description": null,
        "author": "智动心域",
        "category": "智动心域",
        "pubDate": "2026-05-16T20:41:31"
    },
    {
        "title": "【域攻防】noPac域内提权",
        "link": "https://mp.weixin.qq.com/s/gBS86kfrhbzwlpyC9s8LsA",
        "description": "「时光会把你雕刻成，你应有的样子」",
        "author": "平凡在修行",
        "category": "平凡在修行",
        "pubDate": "2026-05-16T20:00:30"
    },
    {
        "title": "JDownloader 网站遭黑客攻击，Windows 和 Linux 用户面临恶意安装程序的威胁",
        "link": "https://mp.weixin.qq.com/s/wPfdL_WOy2q524P4fkF-vg",
        "description": "一款深受数百万用户信赖的热门开源下载管理器，在攻击者入侵其官方网站后，突然变成了恶意软件传播平台。",
        "author": "暗镜",
        "category": "暗镜",
        "pubDate": "2026-05-16T19:09:46"
    },
    {
        "title": "弱口令到Root Shell  配置正确的重要性",
        "link": "https://mp.weixin.qq.com/s/jQ9GGUXsCKJLS2zmIeJ_Uw",
        "description": null,
        "author": "YMs0ra的安全漫路",
        "category": "YMs0ra的安全漫路",
        "pubDate": "2026-05-16T18:51:52"
    },
    {
        "title": "黑客利用OrBit Rootkit窃取Linux系统SSH与Sudo凭证",
        "link": "https://mp.weixin.qq.com/s/90KTh-M2nElYmocKULWtoA",
        "description": null,
        "author": "网安百色",
        "category": "网安百色",
        "pubDate": "2026-05-16T18:08:24"
    },
    {
        "title": "VMware Fusion漏洞可致攻击者获取root权限",
        "link": "https://mp.weixin.qq.com/s/Mej9s5_vLeu62bG2Fq4dQQ",
        "description": null,
        "author": "网安百色",
        "category": "网安百色",
        "pubDate": "2026-05-16T18:08:24"
    },
    {
        "title": "OpenClaw 曝出四大漏洞，可导致数据窃取、权限提升与持久化攻击",
        "link": "https://mp.weixin.qq.com/s/Wxqixof2NyhiaNhlVHEa5g",
        "description": "OpenClaw四大漏洞可致数据窃取、权限提升与持久化攻击，速修复。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-16T18:02:34"
    },
    {
        "title": "伪装成 Google Gemini CLI 的新型 Windows 恶意软件攻击活动分析",
        "link": "https://mp.weixin.qq.com/s/WJF0n601BGOonfD1vTxcTg",
        "description": "近期，针对 Windows 平台的恶意软件攻击活动出现新动向，攻击者通过仿冒 Google Gemini CL",
        "author": "Khan安全团队",
        "category": "Khan安全团队",
        "pubDate": "2026-05-16T16:52:53"
    },
    {
        "title": "SRC 每日漏洞复现学习系列（第 2 篇）垂直越权漏洞+漏洞报告模板",
        "link": "https://mp.weixin.qq.com/s/qfELG3imPQpmkD8Cy6waMw",
        "description": "很多刚入门学网络安全、接触 SRC 漏洞挖掘的同学， 越权漏洞是仅次于 XSS，最好发现、最容易复现、收录率最",
        "author": "网络安全学习室",
        "category": "网络安全学习室",
        "pubDate": "2026-05-16T10:19:46"
    },
    {
        "title": "赛欧思一周资讯分类汇总(2026-05-11 ~ 2026-05-16)",
        "link": "https://mp.weixin.qq.com/s/L-vJLaRnt53liEwRwiDAVQ",
        "description": "一周资讯分类汇总：2026年5月7日，暗网曝光阿根廷政府及新闻网站 Cronica.com 大规模数据泄露事件。涉及 .gob.ar 和 .edu.ar 域名下上百个政府与教育机构网站的超 8000 万条用户凭据，包括 DNI、密码、电话等敏感信息。",
        "author": "赛欧思安全研究实验室",
        "category": "赛欧思安全研究实验室",
        "pubDate": "2026-05-16T09:30:37"
    },
    {
        "title": "18年潜伏Nginx RCE漏洞曝光 CVE-2026-42945",
        "link": "https://mp.weixin.qq.com/s/7XsBXsQAp7lHba8ycOgprQ",
        "description": "导语：2026年5月13日，安全公司Depthfirst借助其AI工具\\\\x26quot;Rift\\\\x26quot;发现了Nginx中",
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-16T09:24:02"
    },
    {
        "title": "Next.js曝出高危SSRF漏洞 CVE-2026-44578",
        "link": "https://mp.weixin.qq.com/s/mw1m6iKZY1AL1rN31D1QXw",
        "description": "导语：2026年5月11日，Vercel发布安全公告披露Next.js存在SSRF漏洞（CVE-2026-",
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-16T09:24:02"
    },
    {
        "title": "AI 驱动的红队免杀知识库 | Webshell 免杀、WAF/RASP/EDR 绕过、流量伪装等实战Tips",
        "link": "https://mp.weixin.qq.com/s/40xun7CtUT31EISAr98TMw",
        "description": null,
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-16T09:24:02"
    },
    {
        "title": "关键Exchange Server 0day漏洞在野外攻击中被积极利用",
        "link": "https://mp.weixin.qq.com/s/9pUyo4DPM4zPlpSml9Hx-w",
        "description": "Exchange 0day正在被积极利用，目前尚无官方补丁。",
        "author": "爱拍照的老李",
        "category": "爱拍照的老李",
        "pubDate": "2026-05-16T09:00:34"
    },
    {
        "title": "黑客利用 OrBit Rootkit 从 Linux 系统中窃取 SSH 和 sudo 凭据",
        "link": "https://mp.weixin.qq.com/s/GdhhQwftXQQh9YjWWDX1cQ",
        "description": "将自身嵌入到 Linux 系统的核心，接入四十多个基本系统功能，从而使其几乎完全不可见……",
        "author": "爱拍照的老李",
        "category": "爱拍照的老李",
        "pubDate": "2026-05-16T09:00:34"
    },
    {
        "title": "俄黑客组织Turla 将 Kazuar 后门转变为模块化 P2P 木马网络以实现持久访问",
        "link": "https://mp.weixin.qq.com/s/h671x3uIGVMoVIozCWrsoQ",
        "description": "微软披露俄黑客组织的最新活动。",
        "author": "爱拍照的老李",
        "category": "爱拍照的老李",
        "pubDate": "2026-05-16T09:00:34"
    },
    {
        "title": "Turla 将 Kazuar 后门转化为模块化 P2P 僵尸网络，实现持久访问",
        "link": "https://mp.weixin.qq.com/s/YRDbjx_EU3fBNIA8LF4fxA",
        "description": "Turla 将 Kazuar 后门转化为模块化 P2P 僵尸网络，实现持久访问",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-16T08:08:57"
    },
    {
        "title": "linux 下获取文件绝对路径",
        "link": "https://mp.weixin.qq.com/s/yuywjtjvSES1lxWnvyAmFw",
        "description": "这个函数的作用是显示当前文件的完整路径。",
        "author": "生有可恋",
        "category": "生有可恋",
        "pubDate": "2026-05-16T08:00:47"
    },
    {
        "title": "Hermes的应用（七）：分析DirtyFrag(CVE-2026-43284)高危漏洞Poc",
        "link": "https://mp.weixin.qq.com/s/bdy4PrPmqG6DTBfPcaCUAw",
        "description": null,
        "author": "白帽子",
        "category": "白帽子",
        "pubDate": "2026-05-16T06:05:21"
    },
    {
        "title": "天塌了，全球互联网基础设施，nginx爆RCE，利用方式竟如此简单",
        "link": "https://mp.weixin.qq.com/s/Coxl5fLG-dGr9Qimlkc6MQ",
        "description": "天塌了，互联网基础设施，nginx爆RCE，利用方式竟如此简单",
        "author": "爱坤sec",
        "category": "爱坤sec",
        "pubDate": "2026-05-16T02:31:03"
    },
    {
        "title": "【内网渗透】rootkit后门Reptile2.0权限维持",
        "link": "https://mp.weixin.qq.com/s/9LjTCP9K3Y802Xh7BmmNfw",
        "description": "Reptilexa0是一款针对 Linux 系统的高级xa0内核级 Rootkit（LKM - Loadable Kernel Module）xa0权限维持工具。",
        "author": "皇后红队",
        "category": "皇后红队",
        "pubDate": "2026-05-16T01:53:18"
    },
    {
        "title": "分享两个应急响应中实用的进程任务管理器",
        "link": "https://mp.weixin.qq.com/s/MP-GbaH9MCcsbG3Jt3uY9A",
        "description": "在 Windows 应急响应现场，很多时候我们第一眼看的不是日志，也不是流量，而是进程。",
        "author": "毅心安全",
        "category": "毅心安全",
        "pubDate": "2026-05-16T00:17:50"
    },
    {
        "title": "红队攻击 Web3 AI 代理攻击途径的指南攻击",
        "link": "https://mp.weixin.qq.com/s/_BDvYVudigZa_fTDThIYJA",
        "description": "本指南介绍了上下文操纵——一种针对 Web3 AI 代理的综合攻击分类法，根据最近的研究，它已被证明比传统的单",
        "author": "Esn技术社区",
        "category": "Esn技术社区",
        "pubDate": "2026-05-15T23:46:36"
    },
    {
        "title": "终端隐形链：OSC 8超链接注入攻击",
        "link": "https://mp.weixin.qq.com/s/v3ES8XbXVu4GKjwKXBlHNA",
        "description": "终端模拟器是现代开发者和系统管理员的日常入口，但很少有人意识到，那串出现在命令行上的蓝色下划线文字，背后承载的远不止一个URL。",
        "author": "Ghost Wolf Lab",
        "category": "Ghost Wolf Lab",
        "pubDate": "2026-05-15T20:29:12"
    },
    {
        "title": "威胁情报｜node-ipc 遭供应链入侵投毒攻击分析",
        "link": "https://mp.weixin.qq.com/s/8iUR6_plQg7zuFlgmuu_Ww",
        "description": "本次事件是xa0npm 公共生态中一起典型的供应链沦陷案例。攻击者通过复用真实项目的合法发布路径，精准在xa0node-ipcxa0的xa0CommonJS 入口文件中注入了恶意投毒逻辑，实现了‘无交互、加载即触发’的强隐蔽、高危攻击效果。",
        "author": "慢雾科技",
        "category": "慢雾科技",
        "pubDate": "2026-05-15T19:50:36"
    },
    {
        "title": "微软警告：HPE Operations Agent 可能在无恶意软件攻击中被滥用",
        "link": "https://mp.weixin.qq.com/s/n9TqWGWGQCfe0MNsIc7u2w",
        "description": "微软披露了一起隐蔽的入侵活动，攻击者绕过了传统的恶意软件和漏洞利用，而是滥用受信任的企业工具悄无声息地渗透网络。",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-15T19:15:00"
    },
    {
        "title": "Windows DNS客户端漏洞可导致远程代码执行攻击",
        "link": "https://mp.weixin.qq.com/s/XreczO_mTaQmUlrBUFr9vw",
        "description": "Windows DNS客户端高危漏洞可致远程代码执行，微软紧急修复。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-15T18:32:34"
    },
    {
        "title": "【漏洞通告】Palo Alto Networks PAN-OS身份绕过认证漏洞（CVE-2026-0265）",
        "link": "https://mp.weixin.qq.com/s/Ov5oKKQ1b8UCqYd39v_w8w",
        "description": "2026年5月15日，深瞳漏洞实验室监测到一则Palo Alto Networks PAN-OS组件存在绕过认证漏洞的信息，漏洞编号：CVE-2026-0265，漏洞威胁等级：高危。",
        "author": "深信服千里目安全技术中心",
        "category": "深信服千里目安全技术中心",
        "pubDate": "2026-05-15T18:25:30"
    },
    {
        "title": "【漏洞通告】Nginx ngx_http_rewrite_module 缓冲区溢出漏洞(CVE-2026-42945)",
        "link": "https://mp.weixin.qq.com/s/a0VH9NHrucR7MDvgLPVp8Q",
        "description": "2026年5月14日，深瞳漏洞实验室监测到一则Nginx组件存在缓冲区溢出漏洞的信息，漏洞编号：CVE-2026-42945，漏洞威胁等级：高危。",
        "author": "深信服千里目安全技术中心",
        "category": "深信服千里目安全技术中心",
        "pubDate": "2026-05-15T18:25:30"
    },
    {
        "title": "【漏洞通告】Linux Kernel Fragnesia 权限提升漏洞(CVE-2026-46300)",
        "link": "https://mp.weixin.qq.com/s/r2FHhy43tRYoZlBt9OYgcw",
        "description": "Linux内核（Linux Kernel）是一个开源的操作系统内核，它是Linux操作系统的核心组件，负责管理计算机的硬件资源，并提供了许多系统服务，如进程管理、内存管理、文件系统管理和设备驱动程序等。",
        "author": "深信服千里目安全技术中心",
        "category": "深信服千里目安全技术中心",
        "pubDate": "2026-05-15T18:25:30"
    },
    {
        "title": "【漏洞预警】Linux Kernel 越权任意文件读取漏洞，PoC 已公开",
        "link": "https://mp.weixin.qq.com/s/mutmN1nje_x5bZAmQm8I9g",
        "description": "攻击者借助 pidfd_getfd() 在进程退出竞争窗口窃取已打开的文件描述符，可读取 /etc/shadow 与 SSH 私钥等敏感文件。",
        "author": "云鼎实验室",
        "category": "云鼎实验室",
        "pubDate": "2026-05-15T18:00:38"
    },
    {
        "title": "【高危漏洞预警】Windows 存储空间控制器提权漏洞（CVE-2026-35415）",
        "link": "https://mp.weixin.qq.com/s/dxSq7GoaSDEWy5-6intj3Q",
        "description": "【漏洞描述】组件介绍Microsoft 存储空间控制器是 Windows 操作系统中用于管理存储空间（Stor",
        "author": "信通云服",
        "category": "信通云服",
        "pubDate": "2026-05-15T17:53:42"
    },
    {
        "title": "伪装成 Google Gemini CLI 的新型 Windows 恶意软件攻击活动分析",
        "link": "https://mp.weixin.qq.com/s/ZruHEc_FUxwuKrPl-sb4aw",
        "description": "近期，针对 Windows 平台的恶意软件攻击活动出现新动向，攻击者通过仿冒 Google Gemini CL",
        "author": "Khan安全团队",
        "category": "Khan安全团队",
        "pubDate": "2026-05-15T16:58:25"
    },
    {
        "title": "免杀分析 | PowerShell命令执行、检测与绕过",
        "link": "https://mp.weixin.qq.com/s/7Tto5H7OxmpTQGkyyVfOuQ",
        "description": "在现代 Active Directory 环境中，PowerShell 的每一行代码都置于 AMSI、脚本块日志和全系统转录的严密监视之下。本文基于 CRTP 课程实战经验，深度拆解了 PowerShell 下载执行摇篮（Cradles）的多维实现。",
        "author": "LTAC",
        "category": "LTAC",
        "pubDate": "2026-05-15T16:54:23"
    },
    {
        "title": "当编程代理成为攻击跳板：恶意技能如何绕过模型防御",
        "link": "https://mp.weixin.qq.com/s/jBMLcmk59OVmZ-5OSfpsQQ",
        "description": "Claude Code 等编程代理的技能系统正在成为新的攻击面。更麻烦的是，动态上下文（Dynamic Context）机制允许 shell 命令在模型审查前执行，这让提示注入防御形同虚设。本文深入剖析 Clawsights 恶意技能攻击路",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-15T16:47:00"
    },
    {
        "title": "提权实录：通过命名管道劫持可写服务",
        "link": "https://mp.weixin.qq.com/s/BWBnWC_fvISyebvj1YLrWQ",
        "description": "命名管道ACL宽松配合可写服务文件，低权限用户通过管道触发SYSTEM执行taskkill，趁机替换恶意程序并借服务重启加载，获取SYSTEM权限。",
        "author": "T00ls安全",
        "category": "T00ls安全",
        "pubDate": "2026-05-15T16:04:09"
    },
    {
        "title": "【已复现】Linux Kernel ptrace 本地权限提升漏洞(QVD-2026-26977)安全风险通告",
        "link": "https://mp.weixin.qq.com/s/SIs8VZVo_vnjeVuBB7NGsA",
        "description": "致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。",
        "author": "奇安信 CERT",
        "category": "奇安信 CERT",
        "pubDate": "2026-05-15T15:50:31"
    },
    {
        "title": "扩展Burp Suite：玩转Montoya API（第十部分）——Burp AI",
        "link": "https://mp.weixin.qq.com/s/yxOz7w8LWBxkLvom9xJKHA",
        "description": "本文介绍如何利用Burp Suite Montoya API中的AI功能来开发扩展，通过一个名为\\\\x26quot;AI Reporter\\\\x26quot;的扩展示例，演示了如何用AI分析HTTP请求/响应并自动生成安全问题报告。文章详细讲解了AI功能的启用、系统提示词的编",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-15T15:46:00"
    },
    {
        "title": "实战逻辑漏洞（短信横向）利用",
        "link": "https://mp.weixin.qq.com/s/jI4hCcuQWPqcm8IDslVQ0g",
        "description": "免责声明请勿利用文章内的相关技术从事非法测试，由于传播、利用此文所提供的信息或者工具而造成的任何直接或者间接的",
        "author": "Quest安全团队",
        "category": "Quest安全团队",
        "pubDate": "2026-05-15T15:44:21"
    },
    {
        "title": "已存在18年的 Nginx 漏洞可导致 RCE 攻击",
        "link": "https://mp.weixin.qq.com/s/gIFuEQSBYVxhxkrf0PUk1g",
        "description": "速修复",
        "author": "代码卫士",
        "category": "代码卫士",
        "pubDate": "2026-05-15T14:35:13"
    },
    {
        "title": "补丁刚装好，攻击者就进来了：泛微OA未认证RCE漏洞从发现到批量扫描全记录",
        "link": "https://mp.weixin.qq.com/s/OudH7CI-wacuf-geG2CgmA",
        "description": "2026年3月12日，泛微官方发布了E-cology 10安全补丁。五天后，Vega威胁情报团队捕获到第一批针对该漏洞的定向攻击。",
        "author": "昆仑AI安全实验室",
        "category": "昆仑AI安全实验室",
        "pubDate": "2026-05-15T14:34:17"
    },
    {
        "title": "Linux 内核漏洞 Fragnesia 可被利用实现本地 root 提权攻击",
        "link": "https://mp.weixin.qq.com/s/me40O_2lRabfwNWmT1_HgA",
        "description": "研究人员披露了一处全新 Linux 内核提权漏洞，漏洞命名为 Fragnesia，漏洞编号 CVE-2026-",
        "author": "黑猫安全",
        "category": "黑猫安全",
        "pubDate": "2026-05-15T14:24:31"
    },
    {
        "title": "NGINX 漏洞 Rift：这款全球部署最广泛的 Web 服务器，一处潜伏 18 年 的漏洞刚刚被曝光",
        "link": "https://mp.weixin.qq.com/s/cLvCw_5YgZlQFbcDJSd6og",
        "description": "如果你正在运行 NGINX 服务，从部署概率来看，绝大多数企业与站点都在使用，本周爆出的这条安全新闻值得高度重",
        "author": "黑猫安全",
        "category": "黑猫安全",
        "pubDate": "2026-05-15T14:24:31"
    },
    {
        "title": "JWT 密钥强度为零：Note Mark 满分漏洞与令牌伪造攻击",
        "link": "https://mp.weixin.qq.com/s/z1KWGTQ61Zc4IEOq1bPBUg",
        "description": "JWT 密钥强度为零：Note Mark 满分漏洞与令牌伪造攻击",
        "author": "CVE-SEC",
        "category": "CVE-SEC",
        "pubDate": "2026-05-15T14:00:00"
    },
    {
        "title": "URL 编码的双重身份：SiYuan Tooltip XSS 与 Electron RCE 深度解析",
        "link": "https://mp.weixin.qq.com/s/CQPAqdtJWyh7RKuRF7XgTg",
        "description": "URL 编码的双重身份：SiYuan Tooltip XSS 与 Electron RCE 深度解析",
        "author": "CVE-SEC",
        "category": "CVE-SEC",
        "pubDate": "2026-05-15T13:30:00"
    },
    {
        "title": "Fragnesia：Dirty Frag补丁引发了新的Linux内核LPE漏洞（CVE-2026-46300）",
        "link": "https://mp.weixin.qq.com/s/XATQ38PUyqouMWTDHKg3DQ",
        "description": "研究人员在 Linux 内核中发现了另一个本地权限提升 (LPE) 漏洞，并予以披露：CVE-2026-46300，又名“Fragnesia”。",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-15T12:18:00"
    },
    {
        "title": "从客户端加密配置到伪造签名：一次支付金额篡改漏洞的挖掘实录",
        "link": "https://mp.weixin.qq.com/s/tGCBO7xlYvu7bUqGhND8Hw",
        "description": "这篇文章记录的，就是一次从客户端加密配置入手，逐步恢复本地配置、还原签名算法、伪造合法请求，最后验证到真实业务订单付款阶段可被改价的完整过程。",
        "author": "开心网安",
        "category": "开心网安",
        "pubDate": "2026-05-15T10:45:20"
    },
    {
        "title": "每周高级威胁情报解读(2026.05.08~05.14)",
        "link": "https://mp.weixin.qq.com/s/Orp3GYn3lNQNWnYEFXFk9Q",
        "description": "EasterBunny：归因于APT29的高级间谍工具；Kimsuky组织依托GitHub+Dropbox分发恶意载荷；Lazarus Group 利用 Git 钩子隐藏恶意软件；Paper Werewolf使用新工具包针对俄罗斯工业、金融和运输组织；Gamaredon的感染链：伪造电子邮件、GammaDrop和GammaLoad",
        "author": "奇安信威胁情报中心",
        "category": "奇安信威胁情报中心",
        "pubDate": "2026-05-15T10:30:32"
    },
    {
        "title": "客户要求 | Elasticsearch未授权访问的危害证明",
        "link": "https://mp.weixin.qq.com/s/FCSQ6NDKsSiQPJqpL1xftA",
        "description": "之前挖某运营商项目碰到的有意思的漏洞，客户要求证明危害，所以有了下文内容。",
        "author": "安全艺术",
        "category": "安全艺术",
        "pubDate": "2026-05-15T09:47:57"
    },
    {
        "title": "6. 二进制文件格式与解析",
        "link": "https://mp.weixin.qq.com/s/XlwRxJlYP5kUnnmWSIxSBg",
        "description": "在安全分析领域，深入理解二进制文件格式是开展一切静态分析工作的基础。恶意软件（malware）经常通过篡改文件结构来隐藏自身行为——加壳压缩以逃避特征码检测、修改导入表以混淆依赖关系、伪造数字签名以骗取系统信任。",
        "author": "SPEEDCoding",
        "category": "SPEEDCoding",
        "pubDate": "2026-05-15T09:01:11"
    },
    {
        "title": "代码审计篇——文件操作",
        "link": "https://mp.weixin.qq.com/s/6-vZTQjtGYZU5vXP8NV9BQ",
        "description": "一、文件操作漏洞文件操作类漏洞，在代码审计中属于：高危害：任意文件读取可导致敏感信息泄露（配置文件、数据库连接",
        "author": "一己之见安全团队",
        "category": "一己之见安全团队",
        "pubDate": "2026-05-15T08:18:36"
    },
    {
        "title": "AI 驱动的红队免杀知识库 | Webshell 免杀、WAF/RASP/EDR 绕过、流量伪装等实战Tips",
        "link": "https://mp.weixin.qq.com/s/KX6rGdogPP90AHfEDW6c8w",
        "description": "AI Redteam Notes这是一个 AI 辅助生成 的红队对抗技术笔记仓库。",
        "author": "李白你好",
        "category": "李白你好",
        "pubDate": "2026-05-15T08:02:43"
    },
    {
        "title": "发现蜜罐、提取 JWT、导出 Vue 路由——我的浏览器变成了渗透神器",
        "link": "https://mp.weixin.qq.com/s/-glEdwJwjzVRMHc1u3R3sw",
        "description": null,
        "author": "只会看监控的实习生",
        "category": "只会看监控的实习生",
        "pubDate": "2026-05-15T08:00:46"
    },
    {
        "title": "docker  默认网段与现实网段冲突",
        "link": "https://mp.weixin.qq.com/s/CViujnbB_UQlEpMavX928g",
        "description": "默认 docker 会使用 172.17.0.0 网段",
        "author": "生有可恋",
        "category": "生有可恋",
        "pubDate": "2026-05-15T07:01:01"
    },
    {
        "title": "NPM仓库 node-ipc 再次被投毒，周下载量超67万",
        "link": "https://mp.weixin.qq.com/s/OX-EA6rypIb8CcaMLLQDFw",
        "description": "2026 年 5 月 14 日下午 10 点，墨菲安全实验室检测到 NPM 包node‑ipc再次被投毒……",
        "author": "墨菲安全实验室",
        "category": "墨菲安全实验室",
        "pubDate": "2026-05-15T00:36:35"
    },
    {
        "title": "当异常绕过handleException：最新VM2沙箱绕过 CVE-2026-45411 原理分析",
        "link": "https://mp.weixin.qq.com/s/mCYZZlLjzmGg57_B2MgU0g",
        "description": null,
        "author": "YMs0ra的安全漫路",
        "category": "YMs0ra的安全漫路",
        "pubDate": "2026-05-14T22:31:37"
    },
    {
        "title": "CVE-2026-8181-Burst Statistics-身份验证绕过漏洞分析报告",
        "link": "https://mp.weixin.qq.com/s/vgdZuggfifXPjY3XQNdHYQ",
        "description": "该漏洞是Burst Statistics插件中一个严重的身份验证绕过漏洞，影响版本3.4.0至3.4.1.1。漏洞根因位于`includes/Frontend/class-mainwp-proxy.php`文件中的`is_mainwp_authenticated()`函数。",
        "author": "Sec打更人",
        "category": "Sec打更人",
        "pubDate": "2026-05-14T22:20:52"
    },
    {
        "title": "CVE-2026-42945-NGINX-ngx_http_rewrite_module-堆缓冲区溢出分析报告",
        "link": "https://mp.weixin.qq.com/s/jO2KhtHCL8JRE4WIBYaI_Q",
        "description": "该漏洞是存在于NGINX `ngx_http_rewrite_module`模块中的一个高危堆缓冲区溢出漏洞，CVE编号为CVE-2026-42945，代号\\\\x26#39;NGINX Rift\\\\x26#39;。",
        "author": "Sec打更人",
        "category": "Sec打更人",
        "pubDate": "2026-05-14T22:11:05"
    },
    {
        "title": "【免杀】使用ollvm混淆程序",
        "link": "https://mp.weixin.qq.com/s/Pz_Y14DRzZc_MCUpi_eT4g",
        "description": "如何有源代码、快速的、不使用壳的情况下混淆程序，最好的就是在编译的时候添加。这里以最简单的猜大小的例子举例。",
        "author": "不止Sec",
        "category": "不止Sec",
        "pubDate": "2026-05-14T20:19:47"
    },
    {
        "title": "【银行逆向百例】17Android逆向之libDexHelper梆梆加固frida检测绕过",
        "link": "https://mp.weixin.qq.com/s/LxbfK28ZoSZg5hbJ5qGfHA",
        "description": null,
        "author": "挖个洞先",
        "category": "挖个洞先",
        "pubDate": "2026-05-14T20:12:22"
    },
    {
        "title": "NGINX 漏洞预警：18 年老洞可 RCE，PoC 已公开",
        "link": "https://mp.weixin.qq.com/s/s4fizQHJgSEMm2p-g0UEwg",
        "description": "NGINX 18年漏洞已公开",
        "author": "猎户攻防实验室",
        "category": "猎户攻防实验室",
        "pubDate": "2026-05-14T19:37:36"
    },
    {
        "title": "BypassPro 自动化bypass Auth和Waf",
        "link": "https://mp.weixin.qq.com/s/V5NJMWePGlf31dTUFrdr8A",
        "description": "对 Auth/Waf 自动化 bypass 的 burpsuite 插件",
        "author": "进击的HACK",
        "category": "进击的HACK",
        "pubDate": "2026-05-14T19:17:24"
    },
    {
        "title": "【安全圈】安卓新增入侵日志功能，助力深度分析复杂间谍软件攻击",
        "link": "https://mp.weixin.qq.com/s/yXIJyDjEMxqggNx1t5vt2w",
        "description": "AI 漏洞挖掘开始交付\\\\x26quot;工程化结果\\\\x26quot;\\\\x0d\\\\x0a从音频解码到工业 CAD，从车端 CAN 帧到企业 Java 中间件——这一次，AI 红队没有靠\\\\x26quot;灵感\\\\x26quot;。",
        "author": "安全圈",
        "category": "安全圈",
        "pubDate": "2026-05-14T19:00:58"
    },
    {
        "title": "【安全圈】研究人员公布概念验证，利用 Windows BitLocker 零日漏洞可访问受保护驱动器",
        "link": "https://mp.weixin.qq.com/s/OnXI-rDV3sgZPW2qgLvLIw",
        "description": "AI 漏洞挖掘开始交付\\\\x26quot;工程化结果\\\\x26quot;\\\\x0d\\\\x0a从音频解码到工业 CAD，从车端 CAN 帧到企业 Java 中间件——这一次，AI 红队没有靠\\\\x26quot;灵感\\\\x26quot;。",
        "author": "安全圈",
        "category": "安全圈",
        "pubDate": "2026-05-14T19:00:58"
    },
    {
        "title": "【已复现】Linux内核Fragnesia权限提升漏洞（CVE-2026-46300）",
        "link": "https://mp.weixin.qq.com/s/Z5bL9bRj-C1ltheUCPtLwQ",
        "description": "近日，绿盟科技CERT监测到网上披露了Linux内核Fragnesia权限提升漏洞（CVE-2026-46300）。CVSS评分7.8，目前漏洞细节与PoC已公开，请相关用户尽快采取措施进行防护。",
        "author": "绿盟科技CERT",
        "category": "绿盟科技CERT",
        "pubDate": "2026-05-14T18:33:28"
    },
    {
        "title": "18年积弊：NGINX脚本引擎堆缓冲区溢出可致远程代码执行",
        "link": "https://mp.weixin.qq.com/s/Z-hV8A4XQ0G5OoN1ptEsNw",
        "description": "2026年初，安全研究组织depthfirst通过其自动化代码审计系统对NGINX源代码进行深度扫描，识别出五个安全缺陷，其中四个已获得NGINX官方确认并分配CVE编号。这一发现揭示了NGINX核心组件中存在的严重内存损坏问题，攻击者可利用这些漏洞实现远程代码执行",
        "author": "奇安信威胁情报中心",
        "category": "奇安信威胁情报中心",
        "pubDate": "2026-05-14T18:27:10"
    },
    {
        "title": "Windows 11遭新型BitUnlocker降级攻击，5分钟内可解密加密磁盘",
        "link": "https://mp.weixin.qq.com/s/IdPUuR5PyeqluHd0EfaOAw",
        "description": "BitUnlocker攻击5分钟破解Win11加密，微软补丁仍存致命漏洞。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-14T18:04:01"
    },
    {
        "title": "Android零点击漏洞PoC公开，攻击者可远程获取Shell权限",
        "link": "https://mp.weixin.qq.com/s/rF7Ho-CHeRmBcBygTCIilA",
        "description": "可远程获取Shell的Android零点击漏洞PoC利用代码公开。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-14T18:04:01"
    },
    {
        "title": "对称加密与非对称加密算法原理详解",
        "link": "https://mp.weixin.qq.com/s/eubdY7pqCe0_KysexvCRZA",
        "description": null,
        "author": "谈思实验室",
        "category": "谈思实验室",
        "pubDate": "2026-05-14T17:50:06"
    },
    {
        "title": "【高危漏洞预警】NGINX ngx_http_rewrite_module堆缓冲区溢出漏洞(CVE-2026-42945)",
        "link": "https://mp.weixin.qq.com/s/aa3dru8viVfzXNaTzVlZyA",
        "description": null,
        "author": "飓风网络安全",
        "category": "飓风网络安全",
        "pubDate": "2026-05-14T17:39:34"
    },
    {
        "title": "黑客瞄准韩国大型电子制造商",
        "link": "https://mp.weixin.qq.com/s/_GD0N8jdY_OLfw7YN-IWEw",
        "description": "与伊朗有关联的黑客组织 MuddyWater发起了一场大规模的网络间谍活动，目标至少涉及多个行业和国家的 9 家知名机构。",
        "author": "安全威胁纵横",
        "category": "安全威胁纵横",
        "pubDate": "2026-05-14T17:08:51"
    },
    {
        "title": "Burp Suite扩展开发：Montoya方法第九部分——自定义扫描检查",
        "link": "https://mp.weixin.qq.com/s/mnue8r-8KGIQ6aEXIBARFA",
        "description": "Burp Suite新增了\\\\x26quot;自定义扫描检查\\\\x26quot;功能，允许用类似Java的语言编写扫描规则，比BChecks更强大。本文用三个实际例子演示如何将之前用扩展实现的检查移植成自定义扫描脚本，包括基于时间的反序列化检测、被动检测和基于Collabor",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-14T16:58:00"
    },
    {
        "title": "实战-对自己学校内网的渗透测试",
        "link": "https://mp.weixin.qq.com/s/N6R-bB1jXtoVIyuUUVNJxA",
        "description": "一直以来都想拿自己学校的内网练练手，跟负责网安的老师说了一声后，回去直接开搞。这里作了比较详细的记录，希望大家能多多指点。",
        "author": "陌笙不太懂安全",
        "category": "陌笙不太懂安全",
        "pubDate": "2026-05-14T16:54:39"
    },
    {
        "title": "NGINX Rift：利用18年前的漏洞实现NGINX远程代码执行（CVE-2026-42945）",
        "link": "https://mp.weixin.qq.com/s/XNh9mBd7nbPpyZdrwtaMdA",
        "description": null,
        "author": "404号浪漫",
        "category": "404号浪漫",
        "pubDate": "2026-05-14T16:46:49"
    },
    {
        "title": "WxProbe —— 公众号敏感信息收集工具",
        "link": "https://mp.weixin.qq.com/s/3vnxJTS6QEjHYvA0fjRIrQ",
        "description": null,
        "author": "泷羽Sec-陌离",
        "category": "泷羽Sec-陌离",
        "pubDate": "2026-05-14T15:04:19"
    },
    {
        "title": "【靶场开源】NGINX 远程代码执行高危漏洞（CVE-2026-42945）",
        "link": "https://mp.weixin.qq.com/s/eQj7H3iv-fq9gIfvQmXRmA",
        "description": "💡 好靶场团队宗旨：我们立志于为所有的网络安全同伴制作出好的靶场，让所有初学者都可以用最低的成本入门网络安全",
        "author": "好靶场",
        "category": "好靶场",
        "pubDate": "2026-05-14T14:34:06"
    },
    {
        "title": "【内网工具】sharefinder--主动网络共享枚举",
        "link": "https://mp.weixin.qq.com/s/O68ximwpPKhUK63m0UFevw",
        "description": "本文所涉及的技术、思路和工具仅用于安全测试和防御研究，切勿将其用于非法入侵或攻击他人系统等目的，一切后果由",
        "author": "安全天书",
        "category": "安全天书",
        "pubDate": "2026-05-14T13:44:42"
    },
    {
        "title": "CVE-2026-44381：MISP 威胁情报平台 ORDER BY 子句 SQL 注入",
        "link": "https://mp.weixin.qq.com/s/h7YAlhZGWIZfJHWC4m0dyg",
        "description": "CVE-2026-44381：MISP 威胁情报平台 ORDER BY 子句 SQL 注入",
        "author": "CVE-SEC",
        "category": "CVE-SEC",
        "pubDate": "2026-05-14T13:30:00"
    },
    {
        "title": "Exim 高危漏洞 CVE-2026-45185",
        "link": "https://mp.weixin.qq.com/s/McJxlZgyHBXqcoGbLVNu-A",
        "description": "在 AI 加持下，漏洞已经呈现爆发趋势了，根本就看不过来。",
        "author": "独眼情报",
        "category": "独眼情报",
        "pubDate": "2026-05-14T13:27:20"
    },
    {
        "title": "CVE-2026-44442：ERPNext 授权检查缺失漏洞",
        "link": "https://mp.weixin.qq.com/s/IdcRYetzS9u6gScivEry2g",
        "description": "CVE-2026-44442：ERPNext 授权检查缺失漏洞",
        "author": "CVE-SEC",
        "category": "CVE-SEC",
        "pubDate": "2026-05-14T13:00:00"
    },
    {
        "title": "DarkSword：构建基于浏览器的 iOS 平台 C2 研究",
        "link": "https://mp.weixin.qq.com/s/gYPFXVKIn5mbkuUmlcmpEQ",
        "description": null,
        "author": "安全狗的自我修养",
        "category": "安全狗的自我修养",
        "pubDate": "2026-05-14T12:13:41"
    },
    {
        "title": "访问控制失效：单个参数如何导致未经授权的云帐户创建和持续访问",
        "link": "https://mp.weixin.qq.com/s/Lsb-hmtTphI0NpvzIRVH5w",
        "description": null,
        "author": "安全狗的自我修养",
        "category": "安全狗的自我修养",
        "pubDate": "2026-05-14T12:13:41"
    },
    {
        "title": "Dirty Frag的双漏洞组合",
        "link": "https://mp.weixin.qq.com/s/9z4hqgJx3y6LwelzXnsaXg",
        "description": "韩国安全研究员Hyunwoo Kim公布了名为Dirty Frag的双漏洞组合，编号CVE-2026-43284和CVE-2026-43500。CVSS评分7.8，属于高危级别。",
        "author": "船山信安",
        "category": "船山信安",
        "pubDate": "2026-05-14T12:10:52"
    },
    {
        "title": "Exim BDAT 严重漏洞可导致内存损坏和代码执行攻击",
        "link": "https://mp.weixin.qq.com/s/GDn4pBXhg-PvsLxKMYcEVg",
        "description": "速修复",
        "author": "代码卫士",
        "category": "代码卫士",
        "pubDate": "2026-05-14T12:04:18"
    },
    {
        "title": "NGINX爆新漏洞，特定配置下可实现远程代码执行",
        "link": "https://mp.weixin.qq.com/s/8Q_GrV54Gt1fdBuNbLaWjg",
        "description": "立即查看详情 →",
        "author": "微步在线研究响应中心",
        "category": "微步在线研究响应中心",
        "pubDate": "2026-05-14T11:50:49"
    },
    {
        "title": "CVE-2026-8196-JeecgBoot-mLogin接口授权绕过漏洞报告",
        "link": "https://mp.weixin.qq.com/s/04Nk2TcwRw3zv7djwnrW8A",
        "description": "CVE-2026-8196-JeecgBoot-mLogin接口授权绕过漏洞报告",
        "author": "Sec打更人",
        "category": "Sec打更人",
        "pubDate": "2026-05-14T11:26:01"
    },
    {
        "title": "泛微ecology 历史漏洞浅析(二)",
        "link": "https://mp.weixin.qq.com/s/DzBEQWostGd0rGg5vluKSA",
        "description": "泛微ecology 历史漏洞浅析(二)",
        "author": "红细胞安全实验室",
        "category": "红细胞安全实验室",
        "pubDate": "2026-05-14T11:19:23"
    },
    {
        "title": "CVE复现 | CVE-2025-58360漏洞复现",
        "link": "https://mp.weixin.qq.com/s/BtkmHs3kCnSgnkVeAxq5ng",
        "description": "CVE复现 | CVE-2025-58360漏洞复现",
        "author": "凌日网络与信息安全团队LapR1skT",
        "category": "凌日网络与信息安全团队LapR1skT",
        "pubDate": "2026-05-14T11:00:28"
    },
    {
        "title": "【漏洞通告】泛微 E-cology10 invoke命令执行漏洞",
        "link": "https://mp.weixin.qq.com/s/oTvDu7ct1hXG9ccPDZbgAQ",
        "description": null,
        "author": "安迈信科应急响应中心",
        "category": "安迈信科应急响应中心",
        "pubDate": "2026-05-14T10:52:56"
    },
    {
        "title": "nginx Rift（CVE-2026-42945）攻击者可触发 worker 崩溃，特定条件下可远程代码执行",
        "link": "https://mp.weixin.qq.com/s/a1QEQ9CYZ9vt1tnTdWikOw",
        "description": "长话短说2026 年 5 月 13 日（UTC），F5 发布 nginx 安全公告，披露 ngx_http_r",
        "author": "独眼情报",
        "category": "独眼情报",
        "pubDate": "2026-05-14T10:45:41"
    },
    {
        "title": "【已复现】漏洞通告 | Linux 内核 Fragnesia 权限提升漏洞(CVE-2026-46300)",
        "link": "https://mp.weixin.qq.com/s/G--7OVlmwJfe4d506K06sQ",
        "description": "Fragnesia漏洞利用了Linux XFRM ESP-in-TCP实现中的一个逻辑缺陷，该缺陷涉及在skb合并过程中对共享页面片段的处理不当。漏洞利用了这样一种情况：在套接字转换到espintcp ULP模式之前，文件支持的页面会被拼接到TCP接收队列中。一旦启用ESP处理，内核就会对",
        "author": "中成信息",
        "category": "中成信息",
        "pubDate": "2026-05-14T10:39:39"
    },
    {
        "title": "【已复现】Linux Kernel Fragnesia 本地权限提升漏洞(CVE-2026-46300)安全风险通告",
        "link": "https://mp.weixin.qq.com/s/cs8GKRAk6IGzxEpmMs-Y5Q",
        "description": "致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。",
        "author": "奇安信 CERT",
        "category": "奇安信 CERT",
        "pubDate": "2026-05-14T10:15:04"
    },
    {
        "title": "Dirty Frag：无需漏洞触发条件的 Linux 本地提权，你的防御控制真的在工作吗？",
        "link": "https://mp.weixin.qq.com/s/XWNHIKRs_uykWPtT3ekfyA",
        "description": "Dirty Frag来袭，无需条件、绕过防护、瞬间 Root，10 年 Linux 版本，1 行代码秒提权，快来验证你的防线是在实时报警，还是在带毒裸奔！",
        "author": "塞讯安全验证",
        "category": "塞讯安全验证",
        "pubDate": "2026-05-14T10:02:28"
    },
    {
        "title": "在人工智能深度伪造冒充攻击活动后，对 Python 后门威胁进行了分析",
        "link": "https://mp.weixin.qq.com/s/Lw_axGxenit_wpfcBdohEA",
        "description": "主要发现最初的入侵是通过带有 ZIP 压缩恶意 LNK 附件的鱼叉式网络钓鱼邮件实现的。",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-14T09:42:11"
    },
    {
        "title": "逻辑漏洞渗透",
        "link": "https://mp.weixin.qq.com/s/OoW7oG-z7h8JeYvTddbCSQ",
        "description": "业务逻辑缺陷漏洞（Business Logic Vulnerability） 是指由于应用程序的业务逻辑处理存在缺陷（如流程跳跃、状态篡改、权限校验缺失等），导致攻击者能够绕过正常业务流程，实现非预期的操作后果（如越权访问、任意密码重置、低价交易等）...",
        "author": "成渝Sec",
        "category": "成渝Sec",
        "pubDate": "2026-05-14T07:03:06"
    },
    {
        "title": "飞牛安装 windows 虚拟机",
        "link": "https://mp.weixin.qq.com/s/waDB-1arUUtwtYZUHp_XZQ",
        "description": "用惯了企业版的虚拟化，再用开源的虚拟机方案各种不适应。",
        "author": "生有可恋",
        "category": "生有可恋",
        "pubDate": "2026-05-14T05:45:21"
    },
    {
        "title": "【严重】FlipperCode 插件曝出 CVE-2026-6433：未经身份验证即可通过 eval() 接管系统",
        "link": "https://mp.weixin.qq.com/s/J4NqVdgzZYNId2I2-pUXuQ",
        "description": "【严重】FlipperCode 插件曝出 CVE-2026-6433：未经身份验证即可通过 eval() 接管系统",
        "author": "爱坤sec",
        "category": "爱坤sec",
        "pubDate": "2026-05-14T02:31:08"
    },
    {
        "title": "【高危AI漏洞预警】CVE-2026-42203｜LiteLLMxa0AIxa0Gatewayxa0服务端模板注入远程代码执行（RCE）",
        "link": "https://mp.weixin.qq.com/s/Q4eugNKoZ7ZdDdmx1PuFZA",
        "description": null,
        "author": "飓风网络安全",
        "category": "飓风网络安全",
        "pubDate": "2026-05-13T23:29:11"
    },
    {
        "title": "【项目实战】|从 /graphql 到未授权：另一种Swagger测试思路",
        "link": "https://mp.weixin.qq.com/s/kCV7-wwdhhpRnBwdgDbS1w",
        "description": null,
        "author": "Z2O安全攻防",
        "category": "Z2O安全攻防",
        "pubDate": "2026-05-13T21:49:06"
    },
    {
        "title": "Windows权限提升高级利用技术之任意文件读到SYSTEM权限代码执行",
        "link": "https://mp.weixin.qq.com/s/vn_ve-_IwNGcC3Zmy5ps8g",
        "description": null,
        "author": "卡卡罗特取西经",
        "category": "卡卡罗特取西经",
        "pubDate": "2026-05-13T21:20:13"
    },
    {
        "title": "Node-RED EXEC 节点未授权命令执行漏洞复现",
        "link": "https://mp.weixin.qq.com/s/Dv295GjxO59yH3-dnbNVGA",
        "description": "最近攻防演练中遇到了一个存在未授权访问的 Node-RED 管理界面，记录一下利用过程。",
        "author": "SecurityPaper",
        "category": "SecurityPaper",
        "pubDate": "2026-05-13T21:11:58"
    },
    {
        "title": "linux提权漏洞喜加一",
        "link": "https://mp.weixin.qq.com/s/IaBbKIaNWLzJ6xda39Gwqw",
        "description": "最近公开的 Fragnesia 项目，可以看作又一个围绕 Linux page cache 的本地提权利用样本",
        "author": "独眼情报",
        "category": "独眼情报",
        "pubDate": "2026-05-13T20:13:42"
    },
    {
        "title": "SandboxJS 逃逸漏洞严重，可能导致主机被接管",
        "link": "https://mp.weixin.qq.com/s/evx6EPYWV480lhWB9oR83g",
        "description": "SandboxJS 逃逸漏洞严重，可能导致主机被接管",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-13T19:25:00"
    },
    {
        "title": "Microsoft Teams 漏洞可导致黑客实施欺骗攻击",
        "link": "https://mp.weixin.qq.com/s/pzRVNuZP6l7TxzPZV0Ta4g",
        "description": "微软Teams漏洞可伪造本地设备，高危欺骗攻击威胁企业安全。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-13T19:03:25"
    },
    {
        "title": "【安全圈】Windows 11遭新型BitUnlocker降级攻击：5分钟内可解密加密磁盘",
        "link": "https://mp.weixin.qq.com/s/jLv7O743kX1FCGw0QgK77w",
        "description": "AI 漏洞挖掘开始交付\\\\x26quot;工程化结果\\\\x26quot;\\\\x0d\\\\x0a从音频解码到工业 CAD，从车端 CAN 帧到企业 Java 中间件——这一次，AI 红队没有靠\\\\x26quot;灵感\\\\x26quot;。",
        "author": "安全圈",
        "category": "安全圈",
        "pubDate": "2026-05-13T19:01:39"
    },
    {
        "title": "【安全圈】Exim 新 BDAT 漏洞致 GnuTLS 构建面临代码执行风险",
        "link": "https://mp.weixin.qq.com/s/jz2esBqKqwTAu6frORFX9A",
        "description": "AI 漏洞挖掘开始交付\\\\x26quot;工程化结果\\\\x26quot;\\\\x0d\\\\x0a从音频解码到工业 CAD，从车端 CAN 帧到企业 Java 中间件——这一次，AI 红队没有靠\\\\x26quot;灵感\\\\x26quot;。",
        "author": "安全圈",
        "category": "安全圈",
        "pubDate": "2026-05-13T19:01:39"
    },
    {
        "title": "【AI-Red攻防学习篇】 攻击单个 Agent：提示词注入、记忆投毒与目标劫持",
        "link": "https://mp.weixin.qq.com/s/a4NBM5iEviR3AmfGBZX4ng",
        "description": "[引言] 在 AI 红队的视野中，Agent（智能体） 与传统的 Chatbot（聊天机器人） 有着本质的区别",
        "author": "APT-101",
        "category": "APT-101",
        "pubDate": "2026-05-13T19:01:23"
    },
    {
        "title": "孚盟云CRM BusinessPriceReport.aspx SQL注入漏洞",
        "link": "https://mp.weixin.qq.com/s/7AOjDNkDRfxquCJfKyh2Tw",
        "description": "漏洞简介上海孚盟软件有限公司是一家专业的外贸SaaS服务和行业解决方案提供商。",
        "author": "0day收割机",
        "category": "0day收割机",
        "pubDate": "2026-05-13T17:11:38"
    },
    {
        "title": "ProScanKill:Windows进程溯源与处置工具",
        "link": "https://mp.weixin.qq.com/s/OaWGrQkTDBFO-reeJYCv5A",
        "description": "ProScanKill 是一款面向网络安全运维、应急响应、终端自查的 Windows 专属开源进程深度查杀工具",
        "author": "Neon-X Sec",
        "category": "Neon-X Sec",
        "pubDate": "2026-05-13T16:43:27"
    },
    {
        "title": "神秘黑客组织利用Linux服务器运维组件漏洞大量安插后门",
        "link": "https://mp.weixin.qq.com/s/G9oSiIyDSGLYm91Su2EvSg",
        "description": null,
        "author": "二进制空间安全",
        "category": "二进制空间安全",
        "pubDate": "2026-05-13T16:25:41"
    },
    {
        "title": "整合分析 | Fortinet 双子星高危漏洞：未认证即可远程代码执行",
        "link": "https://mp.weixin.qq.com/s/NQubWOmtdjp6fbj3mAInhQ",
        "description": null,
        "author": "奇安信 CERT",
        "category": "奇安信 CERT",
        "pubDate": "2026-05-13T16:10:05"
    },
    {
        "title": "OpenClaw高风险历史漏洞专项分析报告（含POC/EXP）",
        "link": "https://mp.weixin.qq.com/s/PB6k-1EdM48BRdnHITe-dQ",
        "description": "本文档汇总OpenClaw自发布以来所有超危、高危漏洞",
        "author": "网空安全手札",
        "category": "网空安全手札",
        "pubDate": "2026-05-13T15:55:06"
    },
    {
        "title": "【漏洞复现】Apache HTTP Server mod_http2 双重释放漏洞（CVE-2026-23918）",
        "link": "https://mp.weixin.qq.com/s/E1wcifKl3CcQ0HDpLFt4ew",
        "description": "CVE-2026-23918",
        "author": "信通云服",
        "category": "信通云服",
        "pubDate": "2026-05-13T15:44:43"
    },
    {
        "title": "扩展Burp Suite的乐趣与收益——Montoya方式——第8部分：BChecks——快速扩展Active和Passive Scanner",
        "link": "https://mp.weixin.qq.com/s/otUlBTdyN38OiRXyRGifBA",
        "description": "BChecks是Burp Suite去年推出的一种轻量级扫描规则扩展方式，用类似YAML的语言编写，无需开发完整扩展。本文通过SQL注入、盲注、SSRF等真实案例，带你快速上手BChecks，同时指出它的局限性：无法获取响应时间、不能操作字",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-13T13:04:00"
    },
    {
        "title": "十亿量级IoT设备面临威胁：arduino-esp32 VLA栈溢出漏洞（CVE-2026-42854）技术分析",
        "link": "https://mp.weixin.qq.com/s/lZhiWbxa2avLPWeb9VMTjA",
        "description": "十亿量级IoT设备面临威胁：arduino-esp32 VLA栈溢出漏洞（CVE-2026-42854）技术分析",
        "author": "CVE-SEC",
        "category": "CVE-SEC",
        "pubDate": "2026-05-13T10:30:00"
    },
    {
        "title": "SRC中的缓存欺骗与缓存投毒理论与实战",
        "link": "https://mp.weixin.qq.com/s/fZ1Kr7QfRk3cfh975ABxJw",
        "description": "SRC中的缓存欺骗与投毒",
        "author": "古月安全",
        "category": "古月安全",
        "pubDate": "2026-05-13T10:04:32"
    },
    {
        "title": "针对安卓零点击漏洞的PoC漏洞利用程序已发布，该漏洞可实现远程Shell访问",
        "link": "https://mp.weixin.qq.com/s/2WMoV1V7Zp3VYtvTVL_WlQ",
        "description": "威胁简报恶意软件漏洞攻击谷歌 2026 年 5 月发布的 Android 安全公告揭示了 Android 核心",
        "author": "Ots安全",
        "category": "Ots安全",
        "pubDate": "2026-05-13T09:58:23"
    },
    {
        "title": "黑客把恶意代码藏进 Git Hooks，开发者面试题也可能是投毒入口",
        "link": "https://mp.weixin.qq.com/s/SLA5eHRGmNLFIObRPYc2aQ",
        "description": "5月13日，星期三，您好！中科汇能与您分享信息安全快讯",
        "author": "汇能云安全",
        "category": "汇能云安全",
        "pubDate": "2026-05-13T09:49:49"
    },
    {
        "title": "不会Burp Suite？可以试试它",
        "link": "https://mp.weixin.qq.com/s/haPJwf8rVYbH2P85mF1b9Q",
        "description": "免责声明：严格禁止对任何未授权系统/网络进行扫描、攻击或入侵。禁止制作/传播恶意程序，禁止参与任何网络犯罪。",
        "author": "建哥聊安全",
        "category": "建哥聊安全",
        "pubDate": "2026-05-13T09:14:33"
    },
    {
        "title": "攻防实战 | Geoserver实战记录",
        "link": "https://mp.weixin.qq.com/s/oTSr_FnOJGFUw8s-piKMDA",
        "description": "攻防中关于Geoserver的一些打法记录，师傅们还想看哪些类型或组件的漏洞可以在文末进行留言哈，我后续会持续",
        "author": "安全艺术",
        "category": "安全艺术",
        "pubDate": "2026-05-13T08:59:22"
    },
    {
        "title": "西门子 ROS# 存在严重漏洞，可实现任意文件访问和主机接管",
        "link": "https://mp.weixin.qq.com/s/glIcbK_uxbaDckf3DSFltw",
        "description": "2026年5月12日，西门子产品安全应急响应小组 (ProductCERT) 发布了一份重要的安全公告，指出",
        "author": "sec随谈",
        "category": "sec随谈",
        "pubDate": "2026-05-13T08:57:49"
    },
    {
        "title": "84个 npm 包遭供应链投毒攻击解析",
        "link": "https://mp.weixin.qq.com/s/ZyTTCmtKUQgBo9AjKak7_w",
        "description": "npm 仓库凭空多出 84 个恶意版本，涵盖 42 个 @tanstack/* 包——而且全部是通过 TanStack 自己的 CI/CD 管道合法签名的。",
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-13T08:19:12"
    },
    {
        "title": "信息收集思路大总结(太干了)",
        "link": "https://mp.weixin.qq.com/s/gG8WgR8NYahfRg_xIjpLBg",
        "description": null,
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-13T08:19:12"
    },
    {
        "title": "NetTools 新增IP 归属地查询，帮助你快速获取任意 IP 地址的详细信息",
        "link": "https://mp.weixin.qq.com/s/-KeyNYLF9dOoxUPyfZOOPw",
        "description": null,
        "author": "网络技术联盟站",
        "category": "网络技术联盟站",
        "pubDate": "2026-05-13T08:13:01"
    },
    {
        "title": "漏洞预警 | cPanel&WHM身份认证绕过漏洞",
        "link": "https://mp.weixin.qq.com/s/MY9lKTgrp9GgA7I51AZwMA",
        "description": "cPanel\\\\x26amp;WHM存在身份认证绕过漏洞，攻击者通过Basic认证头在密码字段注入CRLF字符，将恶意键值对写入原始会话文件。随后触发token_denied流程，使系统重新解析该文件并将注入的hasroot=1、user=root等记录提升至JSON缓存，最终获得管理员权限。",
        "author": "浅安安全",
        "category": "浅安安全",
        "pubDate": "2026-05-13T07:50:37"
    },
    {
        "title": "漏洞预警 | 孚盟云SQL注入漏洞",
        "link": "https://mp.weixin.qq.com/s/1Nep-sTJLyYJCXO3rL6zEw",
        "description": "孚盟云存在SQL注入漏洞，未经验证的攻击者可通过该漏洞获取数据库敏感信息。",
        "author": "浅安安全",
        "category": "浅安安全",
        "pubDate": "2026-05-13T07:50:37"
    },
    {
        "title": "cPanel 和 WHM 的新漏洞可导致代码执行和拒绝服务攻击",
        "link": "https://mp.weixin.qq.com/s/C6flk23xhsVfCu_zEVs-Ng",
        "description": null,
        "author": "暗镜",
        "category": "暗镜",
        "pubDate": "2026-05-13T06:01:06"
    },
    {
        "title": "pidinfo 根据进程 ID 获取进程信息",
        "link": "https://mp.weixin.qq.com/s/UpGsT1qa9MGjjdLVdKhUOA",
        "description": "通过 PID 获取进程信息：命令行、工作目录、打开的网络会话",
        "author": "生有可恋",
        "category": "生有可恋",
        "pubDate": "2026-05-13T05:17:20"
    },
    {
        "title": "Teamview安装版密码提取免杀（最新版v15.76.6.0）",
        "link": "https://mp.weixin.qq.com/s/T9hiu2yGCSHphqPhEHzB6Q",
        "description": "Teamview安装版密码提取免杀（最新版v15.76.6.0）",
        "author": "爱坤sec",
        "category": "爱坤sec",
        "pubDate": "2026-05-13T02:30:36"
    },
    {
        "title": "小心JPEG图像文件正在成为新型恶意载体",
        "link": "https://mp.weixin.qq.com/s/yGBs5h5YNGcpHGzU3aw8Hg",
        "description": "安全研究人员近日披露，网络攻击者正在利用“武器化 JPEG（Weaponized JPEG）文件”作为恶意载体",
        "author": "河南等级保护测评",
        "category": "河南等级保护测评",
        "pubDate": "2026-05-13T00:00:36"
    },
    {
        "title": "如何在linux上检测恶意软件",
        "link": "https://mp.weixin.qq.com/s/Fz8CWplz7DNncIHDPvIi_w",
        "description": "也可以在linux上传卡巴斯基病毒清除工具\\\\x0a\\\\x0a下载链接：https://www.kaspersky.com.cn/downloads/free-virus-removal-tool\\\\x0a\\\\x0alinux 直接运行，就会使用图形化扫描，如果有图形化可以直接运行\\\\x0a\\\\x0a下述命令只扫描不杀毒\\\\x0a\\\\x0a全盘扫描\\\\x0a\\\\x0a./kvrt.run -- -accepteula -silent -dontencrypt -allvolumes\\\\x0a\\\\x0a\\\\",
        "author": "ListSec",
        "category": "ListSec",
        "pubDate": "2026-05-12T22:20:53"
    },
    {
        "title": "威胁行为者Mr_Rot13积极利用CVE-2026-41940漏洞实施后门部署",
        "link": "https://mp.weixin.qq.com/s/2iUEEejnBxRdQWrwTisEPA",
        "description": "0x01 核心速览【事件】【事件】奇安信XLab披露了一个被内部命名为“Mr_Rot13”的黑客组织，正积极利",
        "author": "404号浪漫",
        "category": "404号浪漫",
        "pubDate": "2026-05-12T22:16:06"
    },
    {
        "title": "Grav CMS 组合拳漏洞| CVE-2026-42613&CVE-2026-42607复现&研究",
        "link": "https://mp.weixin.qq.com/s/fScOkKDIDsdUSyOlYyNkpQ",
        "description": "点击蓝字，关注我们0x0 背景介绍•受影响系统：Grav CMS•受影响版本：v1.7.52（核心发行包）•",
        "author": "404号浪漫",
        "category": "404号浪漫",
        "pubDate": "2026-05-12T22:14:00"
    },
    {
        "title": "空密码后台 → SQLite 落地 Webshell → 内核 CVE-2026-31431 root",
        "link": "https://mp.weixin.qq.com/s/c6VZNFWIDw0h_xuK0G45Yw",
        "description": "RRRRRR",
        "author": "YMs0ra的安全漫路",
        "category": "YMs0ra的安全漫路",
        "pubDate": "2026-05-12T21:53:05"
    },
    {
        "title": "黑客利用伪造DeepSeek TUI GitHub仓库传播恶意软件",
        "link": "https://mp.weixin.qq.com/s/jCu1hHqoAA7k8jvZwPsp3w",
        "description": "黑客伪造DeepSeek TUI仓库传播恶意软件，禁用安全防护并窃取数据。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-12T20:50:58"
    },
    {
        "title": "蚁剑最新高危漏洞分析：为什么一个“终端输出”最后变成了客户端 RCE？",
        "link": "https://mp.weixin.qq.com/s/6lAzHpefcbFDM3s6a2R0gA",
        "description": "不要相信远程服务器返回的内容",
        "author": "六边形攻防安全",
        "category": "六边形攻防安全",
        "pubDate": "2026-05-12T20:33:50"
    },
    {
        "title": "链锁裂变｜TeamPCP 供应链攻击劫持 guardrails-ai，七模块凭据收割全景分析",
        "link": "https://mp.weixin.qq.com/s/P4LnwNy2wVbLDEk12-3XIw",
        "description": "2026年5月12日，腾讯安全发现知名LLM框架guardrails-ai遭供应链攻击。黑客植入恶意代码，旨在窃取多云凭据及敏感文件，并进行持久化控制。",
        "author": "腾讯安全威胁情报中心",
        "category": "腾讯安全威胁情报中心",
        "pubDate": "2026-05-12T20:18:36"
    },
    {
        "title": "【免杀神器】morphkatz",
        "link": "https://mp.weixin.qq.com/s/ebJ9qpyYRDfZggmW_RVwTQ",
        "description": "本文所涉及的技术、思路和工具仅用于安全测试和防御研究，切勿将其用于非法入侵或攻击他人系统等目的，一切后果由",
        "author": "安全天书",
        "category": "安全天书",
        "pubDate": "2026-05-12T19:59:29"
    },
    {
        "title": "针对 Windows 11 的新型 BitUnlocker 降级攻击可在 5 分钟内访问加密磁盘",
        "link": "https://mp.weixin.qq.com/s/oNRHKr8lkKy8AGrf3bACmg",
        "description": "一款名为 BitUnlocker 的新工具揭示了一种针对微软 BitLocker 加密的实用降级攻击，攻击者可以利用修补和证书吊销之间的关键漏洞，在 5 分钟内，通过物理访问的方式解密已打补丁的 Windows 11 计算机上的受保护卷。",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-12T19:22:00"
    },
    {
        "title": "PHP SOAP 扩展存在严重漏洞，可导致远程代码执行攻击",
        "link": "https://mp.weixin.qq.com/s/wB1Nto61yY1wymP3O27sYg",
        "description": "PHP 核心字符串处理和 ext-soap 组件中发现了一系列严重的漏洞，使众多 Web 服务器面临被完全控制的直接风险。",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-12T19:13:00"
    },
    {
        "title": "BitUnlocker降级攻击数分钟内即可绕过Windows 11磁盘加密",
        "link": "https://mp.weixin.qq.com/s/AGjYLjAN6S8F6rw0t3Ex2g",
        "description": null,
        "author": "网安百色",
        "category": "网安百色",
        "pubDate": "2026-05-12T18:22:23"
    },
    {
        "title": "PHP SOAP扩展漏洞或致远程代码执行",
        "link": "https://mp.weixin.qq.com/s/mFK47EiAfZTEblT2Mfmw9g",
        "description": "近期披露的PHP漏洞，尤其是其广泛使用的SOAP扩展中的缺陷，已引发网络安全界的严重警报。",
        "author": "网安百色",
        "category": "网安百色",
        "pubDate": "2026-05-12T18:22:23"
    },
    {
        "title": "字典跑不出Actuator？从JS前缀到绕过Cookie下载HeapDump",
        "link": "https://mp.weixin.qq.com/s/CDCpzDqcfrK1qCIQwaNJog",
        "description": "〇、起因前段时间对某目标进行测试，前期信息收集阶段没什么特别的发现，索性先把小程序端过了一遍。",
        "author": "进击的HACK",
        "category": "进击的HACK",
        "pubDate": "2026-05-12T18:16:13"
    },
    {
        "title": "基于LLVM的通用自包含化(Shellcode)编译器开发思路",
        "link": "https://mp.weixin.qq.com/s/7w1262ie20u8T2pi-P8_9g",
        "description": "看雪论坛作者ID：TeddyBe4r",
        "author": "看雪学苑",
        "category": "看雪学苑",
        "pubDate": "2026-05-12T17:59:51"
    },
    {
        "title": "安卓惊现零点击核弹漏洞！远程Shell权限被轻易窃取，PoC已公开",
        "link": "https://mp.weixin.qq.com/s/JHM9OoEF3h-HDS2wNRk3Ew",
        "description": "安卓adbd零点击漏洞PoC发布，可远程获取设备权限",
        "author": "看雪学苑",
        "category": "看雪学苑",
        "pubDate": "2026-05-12T17:59:51"
    },
    {
        "title": "【高危漏洞预警】PHP SOAP扩展内存错误引用漏洞(CVE-2026-6722)",
        "link": "https://mp.weixin.qq.com/s/GyAx7mJ6GeT1DhL4YbvZtA",
        "description": "漏洞描述:PHP是一种广泛使用的开源通用脚本语言特别适合Wеb开发,可嵌入HTML中执行服务器端逻辑。",
        "author": "飓风网络安全",
        "category": "飓风网络安全",
        "pubDate": "2026-05-12T17:48:56"
    },
    {
        "title": "Kali Linux 安装全攻略：U盘启动/双系统/虚拟机（附常见报错解决）",
        "link": "https://mp.weixin.qq.com/s/czZtewlGYFuy2ex3aGGomw",
        "description": "本篇汇总了3种主流安装方式（虚拟机、U盘启动、双系统）的详细步骤，同时整理了新手安装时最常遇到的10种报错，附带“报错现象+原因+解决方案”，一站式解决你的安装难题，建议收藏备用！",
        "author": "编程技术栈",
        "category": "编程技术栈",
        "pubDate": "2026-05-12T17:19:40"
    },
    {
        "title": "Apache Tomcat Tribes EncryptInterceptor 加密绕过反序列化漏洞分析（CVE-2026-34486）",
        "link": "https://mp.weixin.qq.com/s/q6W0t4fsx_SStzcXlXCCKg",
        "description": "CVE-2026-34486 漏洞分析",
        "author": "ap0s",
        "category": "ap0s",
        "pubDate": "2026-05-12T17:16:34"
    },
    {
        "title": "在Burp插件中玩转Collaborator：检测Java反序列化的实战教程（第七部分）",
        "link": "https://mp.weixin.qq.com/s/WNFxCG2pi5goXGwIpH_dzQ",
        "description": "本文将教你如何在Burp Suite的Montoya API插件中调用Collaborator，实现基于DNS反连的Java反序列化漏洞检测。从手动验证到代码实现，一步步带你搞定。\\\\x0a大家好！上一期我们写了一个自定义扫描插件，给Burp Sc",
        "author": "幻泉之洲",
        "category": "幻泉之洲",
        "pubDate": "2026-05-12T15:28:00"
    },
    {
        "title": "通过不安全反序列化导致的远程代码执行：Wazuh XDR/SIEM（CVE-2026–25769）",
        "link": "https://mp.weixin.qq.com/s/E186F3A-_hDMaO6OvRLPQQ",
        "description": "官网：http://securitytech.cc对影响 Wazuh 集群部署的已认证远程代码执行漏洞进行技术",
        "author": "安全狗的自我修养",
        "category": "安全狗的自我修养",
        "pubDate": "2026-05-12T15:19:01"
    },
    {
        "title": "注释写着\\\"需要认证\\\"，代码说\\\"不\\\"——CVE-2026-42864 未授权 SSRF 导致 AWS 凭据窃取",
        "link": "https://mp.weixin.qq.com/s/9TcFGZP7cqgvp4lfKJ_CcA",
        "description": "注释写着\\\\x26quot;需要认证\\\\x26quot;，代码说\\\\x26quot;不\\\\x26quot;——CVE-2026-42864 未授权 SSRF 导致 AWS 凭据窃取",
        "author": "CVE-SEC",
        "category": "CVE-SEC",
        "pubDate": "2026-05-12T14:00:00"
    },
    {
        "title": "Apache Tomcat Tribes EncryptInterceptor 故障开放绕过，未经身份验证的远程代码执行 PoC",
        "link": "https://mp.weixin.qq.com/s/VfGLmrCmB8F0L77d5k4jIQ",
        "description": "威胁简报恶意软件漏洞攻击CVE-2026-34486Apache Tomcat Tribes 集群中的 Enc",
        "author": "Ots安全",
        "category": "Ots安全",
        "pubDate": "2026-05-12T13:08:04"
    },
    {
        "title": "PowerShell 脚本库，可 100% 绕过杀毒软件",
        "link": "https://mp.weixin.qq.com/s/CKQ1BUoNXJci4BPl7ScWhA",
        "description": "威胁简报恶意软件漏洞攻击此仓库包含专为渗透测试设计的PowerShell 脚本，包括反向 shell。",
        "author": "Ots安全",
        "category": "Ots安全",
        "pubDate": "2026-05-12T13:08:04"
    },
    {
        "title": "越权漏洞挖掘新思路",
        "link": "https://mp.weixin.qq.com/s/Taru2nAeqEjnQoFtbhFcfA",
        "description": null,
        "author": "web安全小白",
        "category": "web安全小白",
        "pubDate": "2026-05-12T12:19:01"
    },
    {
        "title": "对Auth/Waf 自动化bypass的burpsuite插件",
        "link": "https://mp.weixin.qq.com/s/31t-MuE3ONY5G7GVSDCfJw",
        "description": null,
        "author": "攻防录",
        "category": "攻防录",
        "pubDate": "2026-05-12T11:19:06"
    },
    {
        "title": "还不会搭建 API 中转站？New API 搭建属于你自己的 AI Token 中转站",
        "link": "https://mp.weixin.qq.com/s/GV1ajrIhcQ-t2vqrn-LSdw",
        "description": "还不会搭建 API 中转站？New API 搭建属于你自己的 AI Token 中转站",
        "author": "W不懂安全",
        "category": "W不懂安全",
        "pubDate": "2026-05-12T10:52:51"
    },
    {
        "title": "CTF 国赛技术点系列（第 9 期）——Linux 权限与本地提权基础（国赛渗透必考）",
        "link": "https://mp.weixin.qq.com/s/NupY-VvT4gWjV8JMZyCaIw",
        "description": "一、技术点定位Linux 权限与本地提权，是国赛靶机渗透、Web 后台联动、运维类题型必考核心。",
        "author": "网络安全学习室",
        "category": "网络安全学习室",
        "pubDate": "2026-05-12T10:11:51"
    },
    {
        "title": "普华PMS OfficeService.aspx 任意文件读取漏洞",
        "link": "https://mp.weixin.qq.com/s/CcP_QXQqww280C_lkJfQHQ",
        "description": "普华PMS OfficeService.aspx 接囗处存在任意文件读取漏洞,未经身份验证的远程攻击者通过漏洞可以获取到服务器敏感信息，导致系统处于极不安全的状态。",
        "author": "Nday Poc",
        "category": "Nday Poc",
        "pubDate": "2026-05-12T10:05:41"
    },
    {
        "title": "信息收集思路大总结(太干了)",
        "link": "https://mp.weixin.qq.com/s/dvWRDTl_7wmKQs-veX43Vg",
        "description": "太干了，兄弟。",
        "author": "乌雲安全",
        "category": "乌雲安全",
        "pubDate": "2026-05-12T09:44:49"
    },
    {
        "title": "【SRC实战】|越权漏洞“默认你不会改参数”",
        "link": "https://mp.weixin.qq.com/s/PkmZzctiOXq6PO2GKikklQ",
        "description": "两个真实的越权案例",
        "author": "隐雾安全",
        "category": "隐雾安全",
        "pubDate": "2026-05-12T09:30:22"
    },
    {
        "title": "AI遭劫持：Claude Chrome扩展程序存在严重漏洞，恶意脚本可控制您的AI",
        "link": "https://mp.weixin.qq.com/s/D-PMrvpJ0NXO7wRXf5gkow",
        "description": "人工智能助手正在迅速融入我们的日常工作流程，但是当一个值得信赖的人工智能开始接受恶意旁观者的指令时会发生什么呢",
        "author": "sec随谈",
        "category": "sec随谈",
        "pubDate": "2026-05-12T09:19:17"
    },
    {
        "title": "黑客在虚假 Claude 恶意软件活动中使用类似 PlugX 的 DLL 侧加载链",
        "link": "https://mp.weixin.qq.com/s/MWQqRO0MT-HtPOdjKtfCSw",
        "description": "伪造Claude AI助手的新型攻击。",
        "author": "爱拍照的老李",
        "category": "爱拍照的老李",
        "pubDate": "2026-05-12T09:01:16"
    },
    {
        "title": "新的“Dirty Frag”Linux漏洞可能在攻击中被利用",
        "link": "https://mp.weixin.qq.com/s/xGOq3_-dHbu2c1OZ9Iao2g",
        "description": "又一个新的linux提权漏洞细节公开。",
        "author": "爱拍照的老李",
        "category": "爱拍照的老李",
        "pubDate": "2026-05-12T09:01:16"
    },
    {
        "title": "记一次护网通过外网弱口令一路到内网",
        "link": "https://mp.weixin.qq.com/s/HNwkrb9j-uGirSeQ6am2aA",
        "description": null,
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-12T08:28:35"
    },
    {
        "title": "FastGPT NoSQL注入致管理员登录绕过：CVE-2026-40351深度剖析",
        "link": "https://mp.weixin.qq.com/s/FSgkK2IehfyHyso0O9buSA",
        "description": "导语：FastGPT AI Agent平台被披露存在严重NoSQL注入漏洞（CVE-2026-40351）",
        "author": "黑白之道",
        "category": "黑白之道",
        "pubDate": "2026-05-12T08:28:35"
    },
    {
        "title": "漏洞预警 | Android ADB认证绕过漏洞",
        "link": "https://mp.weixin.qq.com/s/KKgcaiYm3J2aScouaYKRtA",
        "description": "Android ADB存在认证绕过漏洞，攻击者可通过提供非RSA TLS客户端证书成为授权ADB host并获取shell用户权限，从而远程访问系统调试接口，执行读取敏感信息、执行命令、修改配置等操作。",
        "author": "浅安安全",
        "category": "浅安安全",
        "pubDate": "2026-05-12T08:04:19"
    },
    {
        "title": "拿Shell只需后台权限？深度剖析 Ivanti EPMM 最新 RCE 漏洞 (CVE-2026-6973)",
        "link": "https://mp.weixin.qq.com/s/f9IH0K1mGrR_2s6hAF1TMQ",
        "description": "大家好，最近网安圈子又不太平了，不知道大家的监控报警有没有响？",
        "author": "安全圈动向",
        "category": "安全圈动向",
        "pubDate": "2026-05-12T08:02:32"
    },
    {
        "title": "【紧急】Supsystic Contact Form 插件 CVE-2026-4257 漏洞：未经身份验证即可 RCE！",
        "link": "https://mp.weixin.qq.com/s/AbwpUiNtK0Nv5wriDzw57A",
        "description": "【紧急】Supsystic Contact Form 插件 CVE-2026-4257 漏洞：未经身份验证即可 RCE！",
        "author": "爱坤sec",
        "category": "爱坤sec",
        "pubDate": "2026-05-12T02:30:53"
    },
    {
        "title": "针对wasm反CFF的尝试",
        "link": "https://mp.weixin.qq.com/s/AIbbvF1chsdk4hYqOf1J2A",
        "description": "本文简单探索针对wasm反CFF的技术方案，提供测试用例及PoC。",
        "author": "青衣十三楼飞花堂",
        "category": "青衣十三楼飞花堂",
        "pubDate": "2026-05-12T00:01:09"
    },
    {
        "title": "DAEMON Tools 供应链攻击导致官方安装程序被恶意软件入侵",
        "link": "https://mp.weixin.qq.com/s/roVvvw6O6sEOCO5RMEoQNQ",
        "description": null,
        "author": "犀牛安全",
        "category": "犀牛安全",
        "pubDate": "2026-05-12T00:00:37"
    },
    {
        "title": "PHP unserialize() 潜伏21年致命Use-After-Free漏洞",
        "link": "https://mp.weixin.qq.com/s/YufKn9BT3T5iHElqTptkdA",
        "description": null,
        "author": "飓风网络安全",
        "category": "飓风网络安全",
        "pubDate": "2026-05-11T23:54:45"
    },
    {
        "title": "Blinko plugins路径遍历漏洞存在任意文件读取漏洞 附POC",
        "link": "https://mp.weixin.qq.com/s/G3nX_Sk5SNhT-JM_uCrEJQ",
        "description": "免责声明：请勿利用文章内的相关技术从事非法测试，由于传播、利用此文所提供的信息或者工具而造成的任何直接或者间",
        "author": "南风漏洞复现文库",
        "category": "南风漏洞复现文库",
        "pubDate": "2026-05-11T23:26:26"
    },
    {
        "title": "解剖 UAT-8302：一个 APT 组织的完整恶意软件图谱",
        "link": "https://mp.weixin.qq.com/s/4h9hDJj9Mhq0dOMR_GQ5Jg",
        "description": "0x01 核心速览【事件】【影响】【事件】【影响】Cisco Talos 评估认为，UAT-8302 是一个具",
        "author": "404号浪漫",
        "category": "404号浪漫",
        "pubDate": "2026-05-11T21:46:36"
    },
    {
        "title": "记一次NTP服务异常连接的安全排查",
        "link": "https://mp.weixin.qq.com/s/6jEcUC8HrHF_YgGbXKzoUA",
        "description": "NTP排查",
        "author": "ListSec",
        "category": "ListSec",
        "pubDate": "2026-05-11T21:21:37"
    },
    {
        "title": "CTF之通过栈溢出偷出信息",
        "link": "https://mp.weixin.qq.com/s/ViZnGRYTJX1pVWSuFehKhQ",
        "description": "栈溢出是二进制安全中的经典，当程序未检查输入边界时，超长数据会覆盖栈帧中的返回地址，导致控制流劫持。现代防御机制包括Stack Canary、PIE地址随机化和NX保护。NX机制使传统的Ret2Shellcode技术失效，促使攻击者转向Ret2Text、Ret2Libc和Ret2CSU等方式。",
        "author": "书中自有代码来",
        "category": "书中自有代码来",
        "pubDate": "2026-05-11T20:36:45"
    },
    {
        "title": "OSCP百日备考06｜PowerShell 从入门到实战，Windows 靶机与域渗透的核心引擎",
        "link": "https://mp.weixin.qq.com/s/DPHvRd98w71LPXJY4UoCwg",
        "description": "前几期我们把 Linux / Windows 基础、网络原理和核心工具都过了一遍，后台收到最多的私信，全是关于",
        "author": "泷羽Sec-陌离",
        "category": "泷羽Sec-陌离",
        "pubDate": "2026-05-11T20:33:24"
    },
    {
        "title": "JDownloader 下载器遭入侵，用户被植入新型 Python 远控木马",
        "link": "https://mp.weixin.qq.com/s/90q38E8GKrO2alavTNm_eA",
        "description": "JDownloader遭供应链攻击，用户被植入Python远控木马。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-11T19:48:07"
    },
    {
        "title": "cPanel高危漏洞可致文件泄露与远程代码执行，数千服务器面临风险",
        "link": "https://mp.weixin.qq.com/s/XB8J58Eh--JnAVefQ7z1jQ",
        "description": "cPanel新漏洞可能导致文件泄露与远程代码执行。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-11T19:48:07"
    },
    {
        "title": "Next.js高危漏洞可致SSRF攻击、DoS瘫痪",
        "link": "https://mp.weixin.qq.com/s/FNxwrq5MdzBVTUbWfDgR9A",
        "description": "Next.js 与 React Server Components 修复多个高危漏洞。",
        "author": "FreeBuf",
        "category": "FreeBuf",
        "pubDate": "2026-05-11T19:48:07"
    },
    {
        "title": "JDownloader 下载器被黑客入侵，使用新型 Python 远程控制木马感染用户",
        "link": "https://mp.weixin.qq.com/s/R3y3BW3-zzUb8IE3x41q0g",
        "description": "JDownloader 下载器被黑客入侵，使用新型 Python 远程控制木马感染用户",
        "author": "安全圈的那点事儿",
        "category": "安全圈的那点事儿",
        "pubDate": "2026-05-11T19:28:00"
    },
    {
        "title": "警惕！新型银行木马TCLBANKER曝光",
        "link": "https://mp.weixin.qq.com/s/MgQeXdXlSfT1luJHc1EFZw",
        "description": "伪装Logitech工具，通过WhatsApp和Outlook双渠道传播",
        "author": "安世加",
        "category": "安世加",
        "pubDate": "2026-05-11T18:00:23"
    },
    {
        "title": "一次异常艰难的渗透测试",
        "link": "https://mp.weixin.qq.com/s/QZtJz3_AtLxdGgzB1iXaOQ",
        "description": "从暴力破解——》普通用户权限注入——》堆叠注入+文件下载的任意文件读取——》配置文件+源码审计——》ROOT权限SELECT注入——》读取后台账号密码——》jdbc反序列化不出网——》",
        "author": "陌笙不太懂安全",
        "category": "陌笙不太懂安全",
        "pubDate": "2026-05-11T17:49:50"
    },
    {
        "title": "全新免杀skills：AI自主分析对抗杀软、沙箱！！！",
        "link": "https://mp.weixin.qq.com/s/A_KzZMzJwmKQgK0pY0cavQ",
        "description": "AI自主分析对抗杀软、沙箱",
        "author": "信益安信息安全研究院",
        "category": "信益安信息安全研究院",
        "pubDate": "2026-05-11T17:28:07"
    },
    {
        "title": "【天穹】内核暗渡：Linux Copy Fail 漏洞 CVE-2026-31431 利用分析",
        "link": "https://mp.weixin.qq.com/s/c30OU3STwWdvcLF0cbeUzA",
        "description": "01 概述近期，Linux 内核爆出高危本地提权漏洞 CVE-2026-31431（Copy Fail），影响",
        "author": "奇安信技术研究院",
        "category": "奇安信技术研究院",
        "pubDate": "2026-05-11T16:57:11"
    }
]