腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Tools ] WSC2 - 以 Websocket 进行 C&C 通信的后门: https://github.com/Arno0x/WSC2
-
[ Tools ] ooni-probe - 网络干扰检测工具: https://github.com/TheTorProject/ooni-probe
-
[ Tools ] SpookFlare - Meterpreter 加载器生成工具,可绕过客户端与网络端防御: https://github.com/hlldz/SpookFlare
-
[ Tools ] Duo Labs 开源了两个 IDAPython 脚本,用于辅助 ARM Cortex M 固件逆向以及 ARM thumb 指令搜索: https://github.com/duo-labs/idapython
-
[ Tools ] 在安卓手机上配置并运行 Radare2 : http://www.blackstormsecurity.com/docs/radare2_arm.pdf
-
[ Tools ] LogonTracer:可视化事件日志以识别被黑账户: http://blog.jpcert.or.jp/2017/11/visualise-event-logs-to-identify-compromised-accounts---logontracer-.html
-
[ Tools ] CALDERA - 企业网环境中模拟入侵者行为的自动化系统: https://github.com/mitre/caldera
-
-
[ Virtualization ] AWS EC2 Virtualization 2017: http://www.brendangregg.com/blog/2017-11-29/aws-ec2-virtualization-2017.html
-
[ Vulnerability ] Cisco Talos 团队对 7zip CVE-2016-2334 HFS+ 代码执行漏洞的分析: http://blog.talosintelligence.com/2017/11/exploiting-cve-2016-2334.html
-
[ Web Security ] Google Caja 平台的 XSS 漏洞,这个是去年作者报告漏洞修复之后的 Bypass: http://blog.bentkowski.info/2017/11/yet-another-google-caja-bypasses-hat.html
-
[ Windows ] 通过 KPROCESS 结构的 InstrumentationCallback 域实现 Hook: https://secrary.com/Random/InstrumentationCallback
-
-
[ Browser ] IE浏览器缓解技术逆向初探: https://www.anquanke.com/post/id/87816 https://weibo.com/1560130242/FxvnO4RlT?ref=collection&type=comment
-
-
[ Browser ] 减少由第三方软件造成的 Chrome 崩溃: https://blog.chromium.org/2017/11/reducing-chrome-crashes-caused-by-third.html
-
[ Conference ] Windows 10新子系统*新挑战(看雪2017安全开发者峰会演讲回顾0x9): https://mp.weixin.qq.com/s/CLw5LVg_Gq1qLW8TSKcYYw
-
-
[ Firmware ] Firmware is the new Black - 过去 3 年中 BIOS/UEFI 相关的安全漏洞分析,来自 BlackHat USA 2017 会议: https://t.co/jobwFtcaxf
-
[ Industry News ] CISCO 修补了 WebEx players 中的多个严重漏洞: https://threatpost.com/cisco-patches-critical-playback-bugs-in-webex-players/129057/
-
-
[ Others ] Intel SGX SDK 1.8 引入 monotonic counter (MC) 用于缓解 SGX 的 rollback 攻击: https://davejingtian.org/2017/11/10/some-notes-on-the-monotonic-counter-in-intel-sgx-and-me/
-
[ Popular Software ] Cisco WebEx 网络录制文件播放器存在多个漏洞: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-webex-players
-
-
[ Tools ] tempestsdr: an sdr tool for eavesdropping on computer screens via unintentionally radiated rf: https://www.rtl-sdr.com/tempestsdr-a-sdr-tool-for-eavesdropping-on-computer-screens-via-unintentionally-radiated-rf/
-
[ Virtualization ] 当虚拟机重启时 KVM 定时器中断造成的 0x5c 蓝屏死机问题分析: http://terenceli.github.io/%E6%8A%80%E6%9C%AF/2017/11/27/clock-init-failed-bsod
-
[ Vulnerability ] CVE-2017-16943: Exim BDAT Use-After-Free 分析: https://blog.rapid7.com/2017/11/28/cve-2017-16943-exim-bdat-uaf/
-