腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Backdoor ] BIOS Boots What? Finding Evil in Boot Code at Scale!,FireEye 对 Bios 后门的分析报告: https://www.fireeye.com/blog/threat-research/2018/08/bios-boots-what-finding-evil-in-boot-code-at-scale.html
-
[ Blockchain ] rattle - 以太坊合约二进制文件静态分析框架: https://github.com/trailofbits/rattle
-
[ Firmware ] UEFI 固件更新机制存在漏洞允许攻击者远程攻击系统: https://threatpost.com/update-mechanism-flaws-allow-remote-attacks-on-uefi-firmware/134785/
-
[ Industry News ] .NET Core 3.0 现已支持 Windows 窗体和 WPF 应用程序: https://blogs.msdn.microsoft.com/dotnet/2018/08/08/are-your-windows-forms-and-wpf-applications-ready-for-net-core-3-0/
-
[ Linux ] 类 Unix 操作系统系统调用: https://john-millikin.com/unix-syscalls#linux-i386-interrupt
-
[ MachineLearning ] 利用主动学习(Active Learning)检测 Android 重打包恶意软件(Paper): https://arxiv.org/pdf/1808.01186.pdf
-
[ Others ] 2018 年 MSRC Top 100 security researchers 榜单揭晓 : https://blogs.technet.microsoft.com/msrc/2018/08/08/microsofts-top-100-security-researchers-black-hat-2018-edition/
-
[ Others ] 深入理解 .NET Part3 :数据的装箱(从栈到堆)与拆箱(从堆到栈) : http://www.dsibinski.pl/2018/08/net-internals-03-boxing-and-unboxing/
-
[ Popular Software ] Check Point 安全团队对 WhatsApp 即时聊天应用的漏洞挖掘详情: https://research.checkpoint.com/fakesapp-a-vulnerability-in-whatsapp/BurpExtension-WhatsApp-Decryption-CheckPoint - BurpSuite WhatsApp 协议解密扩展: https://github.com/romanzaikin/BurpExtension-WhatsApp-Decryption-CheckPoint
-
[ SecurityReport ] Accenture 发布 2018 年年中威胁报告: https://www.accenture.com/t20180803T064557Z__w__/us-en/_acnmedia/PDF-83/Accenture-Cyber-Threatscape-Report-2018.pdf
-
[ Tools ] BurpSuite 如何在扫描期间自动维护会话: https://portswigger.net/blog/automatically-maintaining-session-during-scans
-
[ Tools ] xori - 二进制反汇编和静态分析工具,来自 BlackHat USA 2018,介绍: https://sites.google.com/secured.org/malwareunicorn/xoriGitHub: https://github.com/endgameinc/xori
-
[ Tools ] vuLnDAP - 用 Golang 编写的易受攻击的基于 LDAP 的 Web 应用程序: https://digi.ninja/projects/vulndap.php
-
[ Tools ] kemon - macOS 内核监控回调框架: https://github.com/didi/kemon
-
[ Vulnerability ] Discourse 子站点的 CloudFlare Web 缓存欺骗漏洞详情披露: https://hackerone.com/reports/260697
-
[ Cloud ] 检测 AWS 中的凭据泄露,来自 Netflix Security Tools and Operations team : https://medium.com/netflix-techblog/netflix-cloud-security-detecting-credential-compromise-in-aws-9493d6fd373a
-
[ Industry News ] 使用面部识别技术关联不同社交媒体站点账户:渗透测试人员和红队成员的新社工利器: https://www.trustwave.com/Resources/SpiderLabs-Blog/Mapping-Social-Media-with-Facial-Recognition--A-New-Tool-for-Penetration-Testers-and-Red-Teamers/
-
[ MalwareAnalysis ] 风云再起,签名冒用引发信任危机: http://www.freebuf.com/articles/security-management/179726.html
-