APT-Q-12 使用的 0day 漏洞技术和策略披露 https://ti.qianxin.com/blog/articles/operation-deviltiger-0day-vulnerability-techniques-and-tactics-used-by-apt-q-12-disclosed-en/ #好文推荐#DFIR
TGTGInsighttelegram intelligenceLIVE / telegram public index
前段时间一直被MajdataPlay的外键输入问题困扰:有玩家反映majplay会无征兆地出现拖判和吃音,但是内屏一切正常 因为我是第一次接触游戏开发,IO这方面也完全没经验 一开始我和bb本怀疑是线程调度的问题,即:IO线程时间片被其他线程挤占了,导致IO线程无法及时处理HID设备回报。为了验证这个猜想,我们尝试提高了IO线程的优先级,照旧 接下来我怀疑是我那套框架有问题:majplay是根据上一帧与这一帧的按键状态判断按键是不是"click"。为此我重写了这部分的实现,改进了IO线程与主线程之间的交互,问题照旧....... 到这里我已经怀疑这不是majplay的锅:IO线程没有任何异常,IO线程与主线程的交互没有问题,Note判定逻辑也没有问题,那就是设备确实没有回报给majplay或者设备发过来的回报中按键确实没有按下,但是大佬说hdd没有这种问题.....(人已经快崩溃了,这完全看不透也摸不着,因为我用单片机模拟玩家打高速纵连是完全没有问题的,我在家里用手台测试也没有问题) 到最后,bb本灵光一闪,说有没有可能是led刷新率过高,把按键控制板干爆炸了?我们让大佬把led刷新间隔从16ms改成100ms,吃音问题瞬间没有了,无语了 。。。。。。。。。。。。。。。。。。。。 adx是一个控制板同时管理按键和led,为什么我没有遇到吃音问题呢,因为我的手台不是adx的... #dev
Hashtags
Results
找到 6 条相似帖子
搜索 #dfir
当前筛选 #dfir清除筛选
DFIR 报告 BlackSuit 勒索软件 https://thedfirreport.com/2024/08/26/blacksuit-ransomware/ 译文 https://mp.weixin.qq.com/s/SKwJxWRs1UOXte7rimjFHQ #好文推荐#DFIR
3side кибербезопасности
@By3side · Post #792 · 2026/04/08 08:01
Настольная книга. Если вы давно мечтали увидеть все инструменты в одном месте, а не сохранять кучу разрозненных ссылок "на потом", то мы нашли буквально настольную книгу для исследователей безопасности. Наполнение: - Исследование сетей; - Управление уязвимостями; - Мониторинг безопасности; - и многое другое, классное, интересное. К каждому инструменту идёт краткое описание и минимально полезный набор команд. Мы себе уже сохранили, рекомендуем поступить также. #AppSec#DFIR 🧠Кибер ПТУ | 👨🏫Менторство ИБ 📂Другие каналы
APT29 钓鱼攻击 https://www.mandiant.com/resources/blog/apt29-evolving-diplomatic-phishing #好文推荐#威胁情报#DFIR
WPS Office 存在0day(现已修复其中一个,另一个未修复完全),正在被 APT-C-60 利用 https://www.welivesecurity.com/en/eset-research/analysis-of-two-arbitrary-code-execution-vulnerabilities-affecting-wps-office/ #广告#渗透接单中心@shanding007 #好文推荐#DFIR
GitHub Trends
@githubtrending · Post #15601 · 2026/04/05 11:30
#yara#awesome_list#blueteam#blueteam_tools#cti#detection#detection_engineering#dfir#hacktools#incident_response#ioc#iocs#ir#ransomware#redteam#rmm#security#siem#soc#threat_hunting#threat_intelligence You can access comprehensive security detection lists and threat hunting resources that help identify malicious activity across your infrastructure. These curated collections include indicators like suspicious file hashes, domain names, IP addresses, and behavioral patterns organized by threat type—from ransomware and phishing to command-and-control servers and vulnerable drivers. By integrating these lists into your security tools like SIEM platforms and endpoint detection systems, you gain immediate visibility into known threats while learning detection methodologies through guides and YARA rules. This accelerates your ability to hunt for compromises, validate security controls, and stay current with emerging attack techniques without building detection logic from scratch. https://github.com/mthcht/awesome-lists