腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] 在 Android 手机上安装 Frida 框架,篡改 SSLContext,Bypass Certificate Pinning 特性: https://blog.it-securityguard.com/the-stony-path-of-android-%F0%9F%A4%96-bug-bounty-bypassing-certificate-pinning/
-
[ Linux ] Linux 内核 waitid 系统调用本地提权漏洞(CVE-2017-5123)Exploit: https://github.com/nongiach/CVE/tree/master/CVE-2017-5123
-
[ Malware ] Necurs 僵尸网络利用 DDE 攻击方式大范围传播 Locky 勒索软件: https://threatpost.com/necurs-based-dde-attacks-now-spreading-locky-ransomware/128554/
-
[ OpenSourceProject ] Cisco Talos 团队发现 Google PDFium 的 Tiff 图片解码功能存在代码执行漏洞: http://blog.talosintelligence.com/2017/10/GooglePDFium-Vulnerabilitiy.html?utm_source=dlvr.it&utm_medium=twitter&utm_campaign=Feed%3A+feedburner%2FTalos+%28Talos+Blog%29
-
[ Tools ] Cloud Security Suite (cs-suite) - 亚马逊 AWS 云基础设施安全审计工具: https://github.com/SecurityFTW/cs-suite
-
[ Vulnerability ] Apache James 3.0.1 JMX Server 反序列化漏洞的分析(CVE-2017-12628): https://nickbloor.co.uk/2017/10/22/analysis-of-cve-2017-12628/
-
-
[ IoTDevice ] IoT_reaper : 一个正在快速扩张的新 IoT 僵尸网络: http://blog.netlab.360.com/iot-reaper-a-quick-summary-of-a-rapid-spreading-new-iot-botnet/
-
-
[ Programming ] 移动开发(安全编码)最佳实践,来自 NowSecure 团队: https://info.nowsecure.com/rs/201-XEW-873/images/secure-mobile-development.pdf
-
-
[ Vulnerability ] Infineon 开发的流行加密库 RSA Library v1.02.013 存在严重漏洞,弱因数分解的实现可以导致攻击者拿到加密密钥: http://blog.ptsecurity.com/2017/10/a-major-flaw-in-popular-encryption.html
-
[ Windows ] Windows DNS API远程代码执行及 PoC 构造(dnsapi.dll Nsec3_RecordRead 中的越界读写漏洞,CVE-2017-11779): http://www.freebuf.com/articles/network/150852.html
-