Explore >> Select a destination

You are here

 parsiya.net
The JavaScript Bridge in Modern Desktop Applications
| | zero.lol
A Questionable Journey From XSS to RCE - zero.lol
10.2 parsecs away

Travel
| |
| | www.tempertemper.net
There's no such thing as 'menubar navigation' - tempertemper
22.4 parsecs away

Travel
| | A problem markup and interaction pattern I encounter a lot is a result of people (understandably) following a misleading example from the W3C.
| | positive.security
Windows 10 RCE: The exploit is in the link | Positive Security
16.2 parsecs away

Travel
| | Chaining a misconfiguration in IE11/Edge Legacy with an argument injection in a Windows 10/11 default URI handler and a bypass for a previous Electron patch, we developed a drive-by RCE exploit for Windows 10. The main vulnerability in the ms-officecmd URI handler has not been patched yet and can also be triggered through other browsers (requires confirmation of an inconspicuous dialog) and desktop applications that allow URI opening.
| | www.trendmicro.com
Ransomware Spotlight: Clop | Trend Micro (US)
52.5 parsecs away

Travel
| We take a closer look at the operations of Clop, a prolific ransomware family that has gained notoriety for its high-profile attacks. We review this ransomware group's constantly changing schemes and discuss how companies can shore up defenses against this threat.