每周蓝军技术推送（2024.10.26-11.1）

https://trustedsec.com/blog/offensively-groovy

https://github.com/FalconOps-Cybersecurity/udpz

https://github.com/ZephrFish/LOLSearches

https://blog.zsec.uk/lolsysadmin/

https://github.com/Maldev-Academy/ExecutePeFromPngViaLNK

https://github.com/0xHossam/KernelCallbackTable-Injection-PoC

https://github.com/xaitax/Chrome-App-Bound-Encryption-Decryption

https://www.elastic.co/security-labs/katz-and-mouse-game

https://github.com/deletehead/OctoC2t

https://www.trendmicro.com/en_us/research/24/j/using-grpc-http-2-for-cryptominer-deployment.html

https://www.riskinsight-wavestone.com/en/2024/10/loadlibrary-madness-dynamically-load-winhttp-dll/

https://github.com/Permiso-io-tools/SkyScalpel

https://www.blackhat.com/sector/2024/briefings/schedule/index.html#skyscalpel-making--breaking-policy-obfuscation-in-the-cloud-41117

https://www.aquasec.com/blog/aws-cdk-risk-exploiting-a-missing-s3-bucket-allowed-account-takeover/

https://posts.specterops.io/maestro-9ed71d38d546

https://www.cyberark.com/resources/threat-research-blog/anatomy-of-an-llm-rce

https://embracethered.com/blog/posts/2024/claude-computer-use-c2-the-zombais-are-coming/

https://blog.eleuther.ai/third-party-evals/

https://arxiv.org/abs/2408.11650

https://cybench.github.io/

https://blog.talosintelligence.com/threat-actors-use-copyright-infringement-phishing-lure-to-deploy-infostealers/

https://securityonline.info/cve-2024-38094-exploited-attackers-gain-domain-access-via-microsoft-sharepoint-server/

https://medium.com/@moblig/how-i-accessed-microsofts-servicenow-exposing-all-microsoft-emplyee-emails-chat-support-5f8d535eb63b

https://github.com/OpenBAS-Platform/openbas