腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Attack ] Escaping the Lua 5.2 sandbox with untrusted bytecode https://apocrypha.numin.it/talks/lua_bytecode_exploitation.pdf
"Lua 5.2 中通过不可信的字节码实现沙盒逃逸: https://t.co/rcqPtJjatj ;"
-
[ Browser ] Edge/IE - Spoofing the Referer and defeating the XSS Filter with two lines of code. http://www.brokenbrowser.com/referer-spoofing-defeating-xss-filter/ https://t.co/b0raf7WBTD
" Edge/IE 浏览器两行代码欺骗 Referer,绕过 XSS Filter: https://t.co/cnu7SsOFZk https://t.co/b0raf7WBTD"
-
[ Crypto ] Periodic reminder that "Applied Crypto Hardening" is great resource: https://bettercrypto.org/static/applied-crypto-hardening.pdf [PDF] https://t.co/LMM8XhrFR9
" 加密加固实践︰ https://t.co/LMM8XhrFR9 "
-
[ Crypto ] Ultimate Guide to Cracking Foreign Character Passwords Using Hashcat http://www.netmux.com/blog/ultimate-guide-to-cracking-foreign-character-passwords-using-has
" 利用 Hashcat 破解含外国字符的密码: https://t.co/Ed9zqhyJiE"
-
[ Defend ] [NEW White paper] The Adaptive Defense Model for #CyberSecurity http://bddy.me/2cy4uwj https://t.co/jgBsmksDVh
" FireEye 公开了一篇 Paper,谈《自适应性防御模型》: https://t.co/dvfrFr11w5 "
-
[ iOS ] New post: A Case of Misplaced Trust: How a Third-Party App Store Abuses Apple’s Developer Enterprise P http://bit.ly/2cisDDo @ TrendMicro
" 第三方 App Store 是如何滥用苹果的开发者企业计划的,来自趋势科技的 Blog: https://t.co/75QW9t89vE "
-
[ Linux ] Do #ifdefs Influence the Occurrence of Vulnerabilities? An Empirical Study of the Linux Kernel http://arxiv.org/pdf/1605.07032.pdf
" #ifdefs 对 Linux 内核漏洞的产生有什么影响,Paper: https://t.co/Mb3ZpjrpGr "
-
[ macOS ] New paper: Behavioural Detection and Prevention of Malware on OS X, by @ _vivami https://www.virusbulletin.com/virusbulletin/2016/september/behavioural-detection-and-prevention-malware-os-x/ https://t.co/RX3zrDO7n1
" OS X 恶意软件基于行为的检测与防护: https://t.co/R0LzzGWb6u "
-
[ Malware ] LuaBot: Malware targeting cable modems https://w00tsec.blogspot.com/2016/09/luabot-malware-targeting-cable-modems.html
"LuaBot - 针对有线调制解调器的恶意软件: https://t.co/qSEflarOJ1"
-
[ Operating System ] Prepare servers for iOS 10 & macOS Sierra. Crypto Deprecations: - SSLv3 - RC4 - PPTP VPN https://support.apple.com/en-us/HT206871 https://support.apple.com/en-us/HT206844
"更新到 iOS 10 及 macOS Sierra 前需要注意的一些新变化。(更新后都将不再支持PPTP连接): https://t.co/WQnXPKuPHq https://t.co/KnW5qCouue-SSLv3-RC4 "
-
[ Others ] Bypassing ASLR via a side-channel attack against the branch target prediction: http://www.cs.binghamton.edu/~dima/micro16.pdf
" 通过侧信道攻击分支预测缓冲区的方法绕过 ASLR,Paper︰ https://t.co/VLEGTGm8xS"
-
[ Pentest ] swarm - A Modular Distributed Penetration Testing Tool http://www.kitploit.com/2016/09/swarm-modular-distributed-penetration.html
" Swarm - 模块化分布式渗透测试工具: https://t.co/SjP5KEhsRd"
-
[ Popular Software ] Remote Root Code Execution / Privilege Escalation (0day) CVE-2016-6662 http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html
" MySQL 5.7.15 RCE/提权 Exploit(CVE-2016-6662): https://t.co/ftqpoOIJAM"
-
[ Tools ] So, I just pushed this to GitHub (AS IS). A distributed fuzzer for Windows & Linux using PIN - https://github.com/carlosgprado/BrundleFuzz/wiki
" 基于动态二进制插桩技术的分布式 Fuzz 框架 BrundleFuzz,基于 AFL 实现: https://t.co/6VTGS6DHtq"
-
[ Tools ] Introduction to Arybo, a new tool to ease the manipulation/reversing of complex expressions! http://bit.ly/2cyr7R9 https://t.co/Mz7ksmgqNX
"Arybo - 复杂 MBA 表达式逆向/修改工具: https://t.co/HdW8D5bqSN "
-
[ Web Security ] XSS found on http://www.google.fr http://goo.gl/fb/MCDeD3 #FullDisclosure
" www.google.fr 站点的一枚 XSS: https://t.co/Atle1o2gGM "
-
[ Windows ] Just published my article "Deep-Dive in WoW64" about WoW64 internals and 64b VEH in 32b process. http://esec-lab.sogeti.com/posts/2016/09/12/deep-dive-wow64.html
" 深度剖析 WoW64,关于 WoW64 进程的执行过程以及异常向量: https://t.co/DlpnIWDzXS"
-
[ Windows ] New #Windows patching policy on the way. https://threatpost.com/new-windows-patch-policy-at-odds-with-acceptable-risk/120491/
" Windows 的一项新补丁策略马上就要推出: https://t.co/2rru1waKZn"
