腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ iOS ] 由 iOS/MacOS HID 事件子系统的共享内存中的可信长度域导致的沙箱逃逸漏洞,来自 Project Zero: https://bugs.chromium.org/p/project-zero/issues/detail?id=1623
-
[ Linux ] ELF 文件格式详解 Part 6:理解程序头 符号表和重定位2: https://blog.k3170makan.com/2018/10/introduction-to-elf-format-part-vi_18.html
-
[ MalwareAnalysis ] 嵌入 .SettingContent-ms 的恶意 PDF 样本分析: https://rinseandrepeatanalysis.blogspot.com/2018/10/analysis-settingcontent-ms-exploit.html
-
[ MalwareAnalysis ] 追踪 Tick 组织针对东亚的攻击活动: https://blog.talosintelligence.com/2018/10/tracking-tick-through-recent-campaigns.html
-
[ MalwareAnalysis ] Avast 对利用 MikroTik 漏洞进行挖矿的攻击活动的分析: https://blog.avast.com/mikrotik-routers-targeted-by-cryptomining-campaign-avast
-
[ Operating System ] IAT Hooking 技术详解: https://pentest.blog/offensive-iat-hooking/
-
[ Others ] 能用于远程执行命令的 DCOM 接口分享: https://twitter.com/i/web/status/1053307120643387393
-
[ Programming ] 通过内存标记提高 C/C++ 程序内存使用的安全性: https://schd.ws/hosted_files/llvmdev18/c8/Serebryany-Memory-Tagging-LLVM-10-2018.pdf
-
[ SecurityAdvisory ] Cisco 发布 2018 年 10 月安全公告,公布受 libssh 身份验证漏洞影响的思科产品信息: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181019-libssh
-
[ Tools ] Slither - Solidity 静态分析框架介绍: https://blog.trailofbits.com/2018/10/19/slither-a-solidity-static-analysis-framework/
-
[ Tools ] http-notify - 通过 Apache 与 Nginx 的日志追踪 HTTP 访问活动的工具: https://github.com/trimstray/http-notify
-
[ Tools ] Kaspersky 对 ShadowBrokers 泄露的 DanderSpritz 和 FuzzBunch 框架做出技术分析: https://securelist.com/darkpulsar/88199/
-
[ Vulnerability ] FreeRTOS TCP/IP 栈漏洞披露,威胁从智能家居到关键基础设施系统的设备: https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-put-wide-range-devices-risk-compromise-smart-homes-critical-infrastructure-systems/
-
[ Vulnerability ] Oracle WebLogic 的两个反序列化 RCE 漏洞介绍: https://blogs.projectmoon.pw/2018/10/19/Oracle-WebLogic-Two-RCE-Deserialization-Vulnerabilities/
