PHP Remote Code Execution 0-Day Discovered in Real World CTF Exercise - Wallarm Blog
An unusual PHP script was found during an hCorem Capture the Flag task, revealing millions of everyday users are vulnerable to attack. Learn the deep tech.
lab.wallarm.com
We all know that Capture the Flag (CTF) tasks are synthetic. They are designed as games or puzzles for security professionals to solve in order to hone, demonstrate, and add skills. It’s like merging chess, a maze, and a physically challenging 10K obstacle course, but for security aficionados.
“Computer security represents a challenge to education due to its interdisciplinary nature… Attack-oriented CTF competitions try to distill the essence of many aspects of professional computer security work into a single short exercise that is objectively measurable. The focus areas that CTF competitions tend to measure are vulnerability discovery, exploit creation, toolkit creation, and operational tradecraft.”
Trail of Bits on GitHub
'News' 카테고리의 다른 글
| Bad Binder: Android In-The-Wild Exploit (0) | 2019.11.25 |
|---|---|
| IoT Device Search & Default Credential Scanner (0) | 2019.11.25 |
| Microsoft Edge - Local File Disclosure and EoP (0) | 2019.11.21 |
| WhatsApp Bug / Secretly Install Spyware On Your Devices (0) | 2019.11.21 |
| New ZombieLoad v2 Attack Affects (0) | 2019.11.21 |
wtdsoul