腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Conference ] Botconf 2018 大会议题内容放出: https://www.botconf.eu/botconf-2018/botconf-2018-schedule/
-
[ Hardware ] 通过形式验证工具 SymbiYosys 来设计无 bug 的 RISC-V 核心: https://tomverbeure.github.io/risc-v/2018/11/19/A-Bug-Free-RISC-V-Core-without-Simulation.html
-
[ Pentest ] Web 应用渗透测试笔记: https://techvomit.net/web-application-penetration-testing-notes/
-
[ Vulnerability ] Steam 浏览器协议远程命令执行漏洞分析: https://revuln.blogspot.com/2018/12/steam-browser-protocol-insecurity-when.html
-
[ Vulnerability ] 使用 imap 绕过 PHP disable_functions 限制: https://lab.wallarm.com/rce-in-php-or-how-to-bypass-disable-functions-in-php-installations-6ccdbf4f52bb
-
[ Browser ] Microsoft Browser Security — From People Who Owned It,Edge 浏览器沙箱安全分享,来自 Black hat EU 2018 大会: https://i.blackhat.com/eu-18/Thu-Dec-6/eu-18-Ding-Cutting-Edge-Microsoft-Browser-Security-From-People-Who-Owned-It.pdf
-
[ Others ] 在隔离的内核空间中运行驱动程序,来自 Black hat EU 2018 大会 : https://i.blackhat.com/eu-18/Wed-Dec-5/eu-18-Korkin-Divide-Et-Impera-MemoryRanger-Runs-Drivers-In-Isolated-Kernel-Spaces.pdf
-
-
-
[ Virtualization ] 理解 Azure Durable Functions : https://medium.com/@MikhailShilkov/making-sense-of-azure-durable-functions-645ecb3c1d58