For secure defense on our E-Planet

The Event Analysis of Antiy Honeynet Capturing “Monroe Mining with ElasticSearch Groovy Vulnerability (Dog)”

1、Overview On June 13, 2019, the Attack Capture System of Antiy captured the attack that exploits the CVE-2015-1427 (ElasticSearch Groovy) remote command execution vulnerability. The principle of the vulnerability is that Elaticsearch uses groovy as a scripting language and uses a san
Continue Reading →

Windows Remote Code Execution Vulnerability (CVE-2019-0708) Alert

1、Overview On May 14, 2019, Microsoft released a security patch for the key remote code execution vulnerability of Remote Desktop Services (CVE-2019-0708). The affected versions of Windows system are vulnerable to remote code execution attack when Remote Desktop Services is enabled. T
Continue Reading →