腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Browser ] Android Chrome 浏览器可以显示敏感硬件信息(如设备型号): https://wwws.nightwatchcybersecurity.com/2018/12/25/chrome-browser-for-android-reveals-hardware-information/
-
[ Linux ] Linux v4.20 中安全相关的改进: https://outflux.net/blog/archives/2018/12/24/security-things-in-linux-v4-20/
-
[ Others ] 为 DNS 服务器配置 DNS-over-TLS 和 DNS-over-HTTPS: https://blog.technitium.com/2018/12/configuring-dns-over-tls-and-dns-over.html
-
[ Tools ] reflective-rewrite - Reflective DLL Injection 项目的二次开发,相比原项目更加隐蔽: https://github.com/realoriginal/reflective-rewrite
-
[ Tools ] SymDiff - 用于比较 PDB 文件中的符号不同的工具: https://github.com/WalkingCat/SymDiff
-
[ Vulnerability ] Adobe Flash ActiveX 插件 28.0.0.137 远程代码执行(PoC): https://www.exploit-db.com/exploits/46051
-
[ Vulnerability ] WordPress.org 可进行蠕虫攻击的存储型 XSS 漏洞披露: https://blog.ripstech.com/2018/wordpress-org-stored-xss/
-
[ APT ] 0xffff0800 重新分享了其包括各种 APT 变种的恶意软件样本库: https://twitter.com/0xffff0800/status/1076919385250562048
-
[ Attack ] wget 将下载文件的源 URL 保存在扩展属性中(包括URL中的用户名及密码) : https://twitter.com/gynvael/status/1077671412847046657
-
[ Fuzzing ] 如何使用 KittyFuzzer 结合 ISF 中的工控协议组件对工控协议进行 Fuzz: https://mp.weixin.qq.com/s/QcGd746CkQVIxx847Zp8Jg
-
[ Mitigation ] Adobe Reader Indexing 解析保护机制绕过 : https://www.zerodayinitiative.com/blog/2018/12/21/zdi-18-1372-the-elegant-bypass
-
-
[ Rootkit ] UEFI rootkit 介绍(俄语): https://exelab.ru/f/index.php?action=vthread&forum=2&topic=25409&page=1#8
-
[ Vulnerability ] jQuery-File-Upload 未授权任意文件上传、ImageTragick RCE、不安全直接对象引用漏洞的分析: https://blog.detectify.com/2018/12/13/jquery-file-upload-a-tale-of-three-vulnerabilities/