智能运维

VMWare published an advisory on 25th Oct 2022 in which it disclosed two vulnerabilities in VMware Cloud Foundation. The flaw tracked as CVE-2022-31678 is rated Critical with a CVSS score of…

向我的技术倡导者和专家同事致以问候。 在此会话中，我将演示如何使用 DevOps CLI 创建服务连接。 使用案例：- 创建DevOps服务连接，提示PAT（个人访问令牌） 创建DevOps服务连接，无需提示PAT（个人访问令牌） 自…

On Aug 17th, tech giant Apple rolled out security updates for their iOS, iPadOS, and macOS platforms to fix two new out-of-bound vulnerabilities in iOS, iPadOS, and macOS. Apple didn&#…

HelpSystems published its news on an out-of-band Cobalt Strike update to address a critical RCE vulnerability in Cobalt Strike. The CVE-2022-42948 is a remote code vulnerability that hackers can expl…

The red team is regarded as the aggressive part of the security apparatus. Red teams adopt the attacker’s mindset; they simulate real-world assaults and emulate the strategies and procedures of…

关于ThreadLocal 既然提到了线程，自然绕不开ThreadLocal类，它提供了线程本地变量，此变量和一般的变量不同。通过get & set 方法，每个线程可以获取到自己独立的变量。这个变量实例通常是私有且静态的，可以存…

Phishing as a Service (PaaS) is when Cyber criminals become service providers instead of executing cyber-attacks on their own, they provide phishing services for a fee. A new and unique Shared Phishi…

On 1st November, OpenSSL published an advisory that talks about two high-severity vulnerabilities in its software library. The vulnerabilities in OpenSSL allow attackers to carry out buffer…