CyberSecurityTechnologies

关闭频道

We have been working for YOU for more than 8 years!!! https://t.me/+9vdG4JOSgY8xMzdi See also: https://t.me/Cognitive_Security https://t.me/CyberSecurityOSINT https://t.me/Wireless_Cybersecurity For All Questions: in messages to the channel

显示更多

美国1 080 技术与应用3 823...

📈 Telegram 频道 CyberSecurityTechnologies 的分析概览

频道 CyberSecurityTechnologies 英语语言赛道中的是活跃参与者。目前社区聚集了 35 905 名订阅者，在 技术与应用 类别中位列第 3 823，并在美国地区排名第 1 080 位。

📊 受众指标与增长动态

自 невідомо 创建以来，项目保持高速增长，吸引了 35 905 名订阅者。

根据 05 六月, 2026 的最新数据，频道保持稳定运转。过去 30 天订阅人数变化为 -532，过去 24 小时变化为 -18，整体触达仍然可观。

认证状态： 未认证
互动率 (ER)： 平均受众互动率为 6.64%。内容发布后 24 小时内通常能获得 2.93% 的反应，占订阅者总量。
帖子覆盖： 每篇帖子平均可获得 2 385 次浏览，首日通常累积 1 053 次浏览。
互动与反馈： 受众积极参与，单帖平均反应数为 10。
主题关注点： 内容集中在 cve-2025, attack, threat, detection, llm 等核心主题上。

📝 描述与内容策略

作者将该频道定位为表达主观观点的平台：
“We have been working for YOU for more than 8 years!!! https://t.me/+9vdG4JOSgY8xMzdi See also: https://t.me/Cognitive_Security https://t.me/CyberSecurityOSINT https://t.me/Wireless_Cybersecurity For All Questions: in messages to the channel”

凭借高频更新（最新数据采集于 07 六月, 2026），频道始终保持新鲜度与高覆盖。分析显示受众积极互动，使其成为 技术与应用 类别中的关键影响点。

35 905

订阅者

-1824 小时

-997 天

-53230 天

2 385

帖子浏览量

~ 1 05324 小时

~ 1 40548 小时

6.64%

参与率

~ 2

每日帖子数

Ads index

beta

帖子存档

35 898

#DFIR 1⃣ A deep technical analysis of Windows input pipelines, security telemetry, and why PuTTY, WinSCP, MySQL, SSH, and SFTP passwords may leak into system memory https://hexderef.com/windows-11-passwords-in-memory-lsass-ctfmon-analysis 2⃣ Aether - Windows memory-forensics and threat hunting tool https://github.com/0xsp-SRD/aether

35 898

#DevOps #Tech_book #Cyber_Education "Fundamentals of DevOps and Software Delivery: A Hands-On Guide to Deploying and Managing Software in Production", 2025. ]-> Code samples

35 898

#WebApp_Security #Infosec_Standards NIST SP 800-228A ipd: "Guidelines for the Secure Deployment of RESTful Web APIs", May 2026. // This document: - Analyzes threats to RESTful APIs across the pre-runtime and runtime phases - Provides guidelines for implementing a set of controls to mitigate threats

35 898

#tools #AIOps "AIRGuard: Guarding Agent Actions with Runtime Authority Control", May 2026. // AIRGuard - runtime defense that combines authority context, resource trust labels, LLM-based risk simulation, and tiered enforcement to protect LLM agents from indirect prompt injection attacks via untrusted tool outputs

35 898

#AppSec #Threat_Research 1⃣ Click Or Trick (CVE-2025-59199): Escaping the Sandbox with Windows URIs https://www.safebreach.com/blog/click-or-trick-cve-2025-59199-escaping-the-sandbox-with-windows-uris 2⃣ Adobe Acrobat Reader Escript.api UAF RCE https://blog.exodusintel.com/2026/06/01/adobe-acrobat-reader-escript-api-use-after-free-remote-code-execution 3⃣ Exploiting Windows Defender's Remediation Workflow for LPE https://blog.calif.io/p/redsun-exploiting-windows-defenders

35 898

#NetSec #Blue_Team_Techniques "PLM-NIDS: A Protocol-Language Model for Network Intrusion Detection from Raw Packet Sequences Using RWKV State-Space Models", May 2026. ]-> https://github.com/shiva2vk/PLM-NIDS // The RWKV backbone’s O(T) recurrent inference enables per-packet streaming without flow buffering, making PLM-NIDS operationally viable at line rate. Because it reads only IP/TCP/UDP headers, it is inherently encryption-agnostic: TLS 1.3, QUIC, and future encrypted protocols are handled transparently

35 898

#Fuzzing #IoD_Security "Framework for Discovering GPS Spoofing Attacks in Drone Swarms", Jun 2026. // SwarmFuzz - fuzzing framework to efficiently find Swarm Propagation Vulnerabilities in drone swarms. It uses a combination of graph theory and gradient-guided optimization to find the potential attack parameters

35 898

#AIOps "Hijacking Agent Memory: Stealthy Trojan Attacks Through Conversational Interaction", May 2026. // MemPoison - novel memory poisoning attack that bypasses selective memory mechanisms in LLM agents, where an attacker can inject triggerable backdoors into the agent's long-term memory through dialogue interactions, thereby misleading its subsequent responses

35 898

#Whitepaper #Kernel_Security #Offensive_security "Debugging Filesystem Minifilters with WinDbg", 2026. // This technical reference poster explores Windows filesystem minifilters, kernel debugging, and filter communication ports from a red team perspective

35 898

#reversing #Kernel_Security BYOVD and Looting LSASS in the Modern EDR Era https://g3tsyst3m.com/byovd/BYOVD-and-Looting-LSASS-in-the-Modern-EDR-Era // The article details advanced BYOVD techniques exploiting kernel driver vulnerabilities to bypass Windows security, including methods for disabling LSASS protections, memory dumping, obfuscation, and defensive countermeasures

35 898

#Tech_book #Kernel_Security "Learning eBPF: Programming the Linux Kernel for Enhanced Observability, Networking, and Security", 2023. ]-> Repo

35 898

#Malware_analysis 1⃣ BlackToad: Network Manipulation in an AutoIt Payload https://www.jumpsec.com/guides/blacktoad-network-manipulation-in-an-autoit-payload 2⃣ BTMOB: A stealthy RAT burrowing deep into Android devices https://www.welivesecurity.com/en/malware/btmob-stealthy-rat-burrowing-deep-android-devices 3⃣ Deep Dive into a Device Code Phishing Toolkit https://newtonpaul.com/blog/device-code-lab-post-exploit

35 898

#Analytics #Threat_Research An analytical review of the main cybersecurity events for the week (May 23-30, 2026) 1⃣ Privilege Escalation via a Page UaF in Qualcomm's AI Accelerator Linux Kernel Driver // bug lives in Qualcomm's Cloud AI Accelerator kernel driver, qaic, which is present in mainline Linux 2⃣ The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN // Urban VPN's extension deliberately sets up a postMessage listener - a channel that lets any script on any page you visit send it messages 3⃣ Vaultjacking: One Captured PIN, the Entire Google Password Manager Vault 4⃣ A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities // ASR Rules 5⃣ Detecting Tycoon 2FA AiTM attacks across Entra ID and Google Workspace // Tycoon 2FA bypasses MFA on Entra ID and Google Workspace... 6⃣ CIFSwitch - vulnerability in Linux kernel's CIFS subsystem that allows root privileges to be gained 7⃣ PuTTY 0.84 released 8⃣ PyFory - Insecure Pickle Deserialization to RCE // CVE-2025-61622 9⃣ Drupal PostgreSQL SQLI // SELECT-only SQLi to RCE when the injected expression runs as a PostgreSQL superuser 🔟 Suricata 8.0.5 and 7.0.16 released ]-> Analytical review (May 16-23, 2026)

35 898

#SCA #Hardware_Security "FROST: Fingerprinting Remotely using OPFS-based SSD Timing", 2026. // SSD contention side channels can be mounted by a remote attacker from within the browser, without native code execution. FROST attack targets the Origin Private File System API in JavaScript, allowing us to create and access files on the disk, within the browser’s sandboxed environment

35 898

#exploit #Kernel_Security An AI audit of FreeBSD https://blog.calif.io/p/an-ai-audit-of-freebsd ]-> setcred (CVE-2026-45250) ]-> ptrace (CVE-2026-45253) ]-> procdesc (CVE-2026-45251) ]-> Bonus // Disclaimer

35 898

#tools #NetSec #hardening Puck - Autonomous endpoint investigation via MCP https://github.com/puck-security/puck-scout // Puck is a three-component system that enables AI-driven, read-only endpoint investigation. The AI client asks questions, the MCP server orchestrates, and endpoint agents execute read-only commands

35 898

#tools #Whitepaper #Blue_Team_Techniques "SIEM Detection Logic Conversion with LLMs", 2025. ]-> Scripts used to convert Splunk detections to Elastic Security using OpenAI and Google Gemini // This research explores how LLMs and automation scripts can expedite the translation of detection logic between SIEMs, converting detections in minutes instead of hours

35 898

#tools #DFIR #Malware_analysis #Blue_Team_Techniques MalShark - AI-powered malware traffic analysis and network forensics tool via MCP https://github.com/MohitDabas/malshark // Most pcap tools require an analyst to know exactly what to look for. This server bridges the gap...

35 898

#AppSec #Threat_Research "Resolving the Correct Library: A Loader-Level Defense Solution Against Shared Object Hijacking", Jan. 2026. https://anonymous.4open.science/r/shareb_object_library_hijacking-5E36 // developed a loader-centric glibc prevention mechanism that enforces checking shared library identity at load time by binding dependencies to immutable build identifiers and cryptographic hashes