腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] ADVDroid - statically vetting Android apps based soot. Based on Androguard. https://github.com/Xbalien/ADVDroid
"ADVDroid - Android 应用程序静态分析框架,基于 soot 和 Androguard: https://t.co/BK8WrUQyFs"
-
[ Malware ] SSHBearDoor is backdoored SSH server used by BlackEnergy group, detected now only by ESET https://www.virustotal.com/en-gb/file/0969daac4adc84ab7b50d4f9ffb16c4e1a07c6dbfc968bd6649497c794a161cd/analysis/1451806935/ https://t.co/ByVuN3wc2E
"SSHBearDoor 是一个 SSH Server 后门,BlackEnergy 家族利用这个后门攻击新闻媒体和电气能源行业,目前该样本只有 ESET 能够检测到: Virustotal 检测结果: https://t.co/8aVaNV0Hlb welivesecurity 对该样本的分析: http://www.welivesecurity.com/2016/01/03/blackenergy-sshbeardoor-details-2015-attacks-ukrainian-news-media-electric-industry/ https://t.co/ByVuN3wc2E "
-
[ Malware ] Analyzing Ransom32, the first JavaScript ransomware variant http://securityaffairs.co/wordpress/43250/cyber-crime/ransom32-crypto-ransomware.html
"Ransom32 - 第一个 JavaScript 勒索软件变种 https://t.co/bYCo6sAmsn"
-
[ Network ] Detect Tor Exit doing sniffing by passively detecting unique DNS query https://github.com/NullHypothesis/exitmap/issues/37 Looking for feedback/comments! #tor #32c3
"通过被动观测 DNS 查询记录检测 Tor Exit Sniffer 节点 https://t.co/i4DJ3Tnm8f "
-
[ Others ] Understanding CPython by Patching - part1: https://orenmn.wordpress.com/2015/12/25/understanding-cpython-by-patching-part-1/ part2: https://orenmn.wordpress.com/2016/01/02/understanding-cpython-by-patching-part-2/
"通过 Patch 的方法理解 CPython - Part 1: https://t.co/JuFdsHpgJy Part 2: https://t.co/NQU4mPfoEy"
-
[ Tools ] VerbalExpression — regular expressions with normal words https://github.com/VerbalExpressions/JSVerbalExpressions https://t.co/zUTJr9fJio
"VerbalExpression — 帮助构造复杂正则表达式的工具,仅需要输入一些普通字符 https://t.co/zUTJr9fJio https://t.co/rPwFFHWr8P"
-
[ Tools ] Caddy - The HTTP/2 Web Server with Fully Managed SSL https://caddyserver.com/ (automatic HTTPS with Let's Encrypt)
"Caddy - HTTP/2 Web 服务器,支持 Let's Encrypt, 提供自动化的 HTTPS: https://t.co/NADEq5Ou8H"
-
[ Tools ] Reef – IDAPython plugin for finding Xrefs from a function http://www.reddit.com/r/ReverseEngineering/comments/3z25j9/reef_idapython_plugin_for_finding_xrefs_from_a/
"Reef - 用于查找函数内交叉引用的 IDAPython 插件: https://t.co/4EVqWgapD3 "
-
[ Windows ] How Attackers Dump Active Directory Database Credentials by @ PyroTek3 https://adsecurity.org/?p=2398 https://t.co/BOuEr0vzIi
"攻击者是如何 Dump 活动目录的数据库凭据的,来自 @PyroTek3 https://t.co/ry8sLIY0f3 https://t.co/BOuEr0vzIi"
