腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Crypto ] 密码窃取行动深入分析: https://benkowlab.blogspot.fr/2017/12/an-inside-view-of-password-stealer.html
-
[ Protocol ] 利用差分加密分析的方法解密空调设备的校验和机制: http://www.righto.com/2017/12/decoding-air-conditioner-controls.html
-
-
-
[ Tools ] Invoke-WCMDump - 从凭据管理器转储 Windows 凭据的 PowerShell 脚本: https://github.com/peewpw/Invoke-WCMDump
-
[ Windows ] Windows 内核的 Shim Engine 及其滥用: https://www.blackhoodie.re/assets/archive/Kernel_Shim_Engine_for_fun_-_pwissenlit.pdf
-
[ Windows ] 如何为 PE 可执行文件实现加壳和数据混淆: https://0x00sec.org/t/packers-executable-compression-and-data-obfuscation/847
-
-
[ Firmware ] DEEP INSERT Card Skimmer 的硬件逆向研究,来自 SensePost: https://sensepost.com/blog/2017/deep-insert-card-skimmer-research/
-
-
[ Popular Software ] ACDSee Ultimate 10 远程代码执行漏洞披露(CVE-2017-2886): http://blog.talosintelligence.com/2017/12/vulnerability-spotlight-talos-2017-0393.html
-
[ Popular Software ] Node.js Security: Breaking The Loop : https://www.slideshare.net/LiranTal1/nodejs-security-xss-vulnerable-dependencies-snyk-owasp
-
[ Popular Software ] Apache Synapse 远程代码执行漏洞(CVE-2017-15708): http://www.openwall.com/lists/oss-security/2017/12/10/4?from=timeline
-
-
-