EXP-401 (OSEE):用五天課程訓練通透十年的知識體系
2025-05-22EXP-401(OSEE),也叫做 Advanced Windows Exploitation(AWE),是 OffSec 中唯一的「Expert」等級課程,也是公認最困難、通過率最低的證照
作者文章
全境擴散:從 Windows 11 到 Libarchive 的 Half-Day 威脅與全面影響
2025-02-12Windows 11 的 KB5031455 更新讓檔案總管支援 RAR、7z 等格式,看似提升便利性,卻暗藏資安隱患。DEVCORE 研究組發現 libarchive 存在多個漏洞,包括 Heap Buffer Overflow、任意檔案寫入與刪除,而修補機制的延遲更導致「Half-day」攻擊風險。攻擊者可藉此影響如 ClickHouse 等廣泛使用 libarchive 的專案。Windows 真的變得更方便,還是埋下了更大的風險?
From Convenience to Contagion: The Half-Day Threat and Libarchive Vulnerabilities Lurking in Windows 11
2025-02-12Windows 11's KB5031455 update adds RAR and 7z support via libarchive, but DEVCORE discovered multiple vulnerabilities, including Heap Buffer Overflow and arbitrary file operations. Delayed patching also enables “Half-day” attacks, putting projects like ClickHouse at risk. A step forward in convenience—or a hidden security threat?
Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS
2024-05-24DEVCORE 研究組在 Pwn2Own Toronto 2022 白帽駭客競賽期間,在 MikroTik 的路由器產品中,發現了存在九年之久的 WAN 端弱點,透過串連 Canon printer 的弱點,DEVCORE 成為史上第一個在 Pwn2Own 賽事中成功挑戰 SOHO Smashup 項目的隊伍;最終 DEVCORE 在 Pwn2Own Toronto 2022 奪下冠軍,並獲頒破解大師(Master of Pwn)的稱號。
Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS
2024-05-24DEVCORE research team found a 9-year-old WAN bug on RouterOS, the product of MikroTik. Combined with another bug of the Canon printer, DEVCORE becomes the first team ever to successfully complete an attack chain in the brand new SOHO Smashup category of Pwn2Own. And DEVCORE also won the title of Master of Pwn in Pwn2Own Toronto 2022.