腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Firmware ] Intel FSP(固件支持程序包)入口代码的逆向: https://puri.sm/posts/primer-to-reverse-engineering-intel-fsp/
-
[ Others ] James Forshaw 在 ZeroNights 2017 会议关于滥用 Access Tokens Bypass UAC 的演讲: https://github.com/tyranid/ZeroNights2017/releases/tag/v1.0
-
[ Others ] 从实现角度对几款 U2F 双因素认证 TOKEN 设备的比较: https://github.com/hillbrad/U2FReviews#implissues https://twitter.com/i/web/status/931951629603037184
-
[ Popular Software ] Windows Server 2016 版本的 ADPREP 程序存在一个 Bug: https://secureidentity.se/adprep-bug-in-windows-server-2016/
-
[ Tools ] IFL - IDA Pro 的一款插件,用于生成可以导航的函数引用列表: https://github.com/hasherezade/ida_ifl
-
[ Tools ] Kali Linux 中排名前十的 WiFi 黑客工具介绍: http://www.hackingtutorials.org/wifi-hacking-tutorials/top-10-wifi-hacking-tools-in-kali-linux/
-
[ Tools ] al-khaser - 恶意软件常用的虚拟机、模拟器、调试器、沙箱探测技术收集: https://github.com/LordNoteworthy/al-khaser
-
[ Tools ] domain-scan - 子域名扫描工具: https://github.com/18F/domain-scan/blob/master/docs/lambda.md#using-domain-scan-with-amazon-lambda
-
[ Tools ] idaplugins-list - 一份 IDA Plugin列表: https://github.com/onethawt/idaplugins-list/blob/master/README.md
-
[ Vulnerability ] 读取 Excel 用的 LibXL 库存在多个漏洞可导致远程代码执行: https://threatpost.com/multiple-vulnerabilities-in-libxl-library-open-door-to-rce-attacks/128938/
-
[ Android ] 一份 HackerOne 的 Android 报告与资源收集:https://github.com/B3nac/Android-Reports-and-Resources
-
[ Browser ] 利用 Angular 4 开发 Google Chrome Extension: https://www.red-gate.com/simple-talk/dotnet/software-tools/developing-google-chrome-extension-using-angular-4/
-
-
-
[ Industry News ] 德国联邦网络管理局宣布将禁止儿童GPS追踪设备:https://www.pentestpartners.com/security-blog/destroy-kids-gps-watches-says-german-federal-network-agency/
-
[ MalwareAnalysis ] Verint 团队对一款基于 Google Drive 的远控木马及其背后的攻击组织的分析报告: http://cyber.verint.com/wp-content/uploads/2016/05/GDRAT-Malware-Report-2-1.pdf
-
[ Others ] Making prawn espressos, or hacking ships by deciphering BAPLIE EDIFACT messaging: https://www.pentestpartners.com/security-blog/making-prawn-espressos-or-hacking-ships-by-deciphering-baplie-edifact-messaging/
-
[ Tools ] 反编译器的危险:https://blog.ret2.io/2017/11/16/dangers-of-the-decompiler/
-
[ Vulnerability ] BIG-IP SSL vulnerability CVE-2017-6168: https://support.f5.com/csp/article/K21905460
-
[ Vulnerability ] Rails 5.1.4 YAML unsafe deserialization RCE payload: https://gist.github.com/niklasb/df9dba3097df536820888aeb4de3284f
-
[ Windows ] HEVD-Arbitrary-Overwrite-Exploit-Win10-rs3: https://github.com/k0keoyo/HEVD-Arbitrary-Overwrite-Exploit-Win10-rs3/tree/master