腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Android 个人词典中的侧信道信息泄露漏洞的发现与利用(CVE-2018-9375): https://ioactive.com/discovering-and-exploiting-a-vulnerability-in-androids-personal-dictionary/
-
[ APT ] Windows Defender ATP 高级狩猎现已加入网络适配器信息收集: https://techcommunity.microsoft.com/t5/What-s-New/Advanced-hunting-now-includes-network-adapters-information/td-p/224402
-
[ Crypto ] Telegram Passport 的 Padding Oracle 攻击详情: https://pequalsnp-team.github.io/writeups/analisys_telegram_passport
-
[ Linux ] 通过内存转储打破 Linux 全盘加密保护: https://blog.appsecco.com/breaking-full-disk-encryption-from-a-memory-dump-5a868c4fc81e
-
[ Linux ] Linux 提权辅助命令: https://guif.re/linuxeop
-
[ macOS ] macOS packet-mangler 组件远程代码执行漏洞详情披露(CVE-2017-13904, CVE-2018-4249): https://lgtm.com/blog/apple_xnu_packet_mangler_CVE-2017-13904
-
[ Others ] 《Introduction to Computer Organization》,author: Robert G. Plantz: http://bob.cs.sonoma.edu/IntroCompOrg-x64/book.html
-
[ Pentest ] 绕过 Duo 的双因素身份验证: https://www.n00py.io/2018/08/bypassing-duo-two-factor-authentication-fail-open/
-
[ Pentest ] 从非域成员机器上使用低权限账户枚举域信息: https://www.attackdebris.com/?p=470
-
[ Pentest ] 使用 Office 的 XML 格式文档泄露账户 NetNTLM Hash: https://bohops.com/2018/08/04/capturing-netntlm-hashes-with-office-dot-xml-documents/
-
[ SecurityProduct ] Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) 本地提权漏洞 EXP: https://www.exploit-db.com/exploits/45149
-
[ Tools ] proxy_requests - 自动获取网络代理并配置 requests 库代理的脚本: https://github.com/rootVIII/proxy_requests
-
-
-
[ SecurityProduct ] Imperva SecureSphere 11.5 / 12.0 / 13.0 提权漏洞 EXP: https://www.exploit-db.com/exploits/45130/
-
[ Web Security ] 通过 Telerik Web UI 组件漏洞上传 webshell(CVE-2017-9248): https://capt-meelo.github.io/pentest/2018/08/03/pwning-with-telerik.html