腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
-
-
[ Tools ] KernelExplorer - 研究员 Pavel Yosifovich 开源的用于分析 Windows 内核的工具集,包括 MemMapView、ProcList、JobView 等多个子工具: https://github.com/zodiacon/KernelExplorer
-
[ Web Security ] XXE OOB extracting via HTTP+FTP using single opened port : https://skavans.ru/en/2017/12/02/xxe-oob-extracting-via-httpftp-using-single-opened-port/
-
[ Android ] Google Safe Browsing 团队将把反垃圾软件保护策略(Unwanted Software Policy)扩展到 Android 平台上: https://security.googleblog.com/2017/12/additional-protections-by-safe-browsing.html
-
[ Conference ] botconf 2017 大会议程表:https://botconf2017.sched.com/
-
-
-
[ Linux ] Linux kernel LDT UAF 漏洞分析(CVE-2017-17053): https://xorl.wordpress.com/2017/12/03/cve-2017-17053-linux-kernel-ldt-use-after-free/
-
[ Malware ] 最近 Mirai 被发现在北美及北非一些国家活跃着 : http://blog.trendmicro.com/trendlabs-security-intelligence/new-mirai-attack-attempts-detected-south-america-north-african-countries/
-
[ MalwareAnalysis ] 钓鱼邮件威胁检测实战及典型样本分析:https://www.anquanke.com/post/id/88145
-
-
-
[ Tools ] ProcessIsolator - Hook SSDT 将控制权交给用户态程序实现访问控制(允许/拒绝)的工具: https://github.com/int0/ProcessIsolator