腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Kali NetHunter 3.0 Released : Android Mobile Penetration Testing Platform : https://www.offensive-security.com/kali-nethunter/nethunter-3-0-released/
"Kali NetHunter 3.0 发布 - Android 渗透测试平台: https://t.co/1txpCPAsOf"
-
[ Attrack ] Neutrino Exploit Kit http://countuponsecurity.com/2016/01/06/neutrino-exploit-kit/
"对 Neutrino Exploit Kit 攻击过程的简单描述: https://t.co/M4gj3aBDmR"
-
[ Attrack ] Phishing Attacks Using Public Data http://goo.gl/k3XiJY #Phishing #SocialEngineering #SQLInjections #Trojans #Vulnerabilities
"通过公开数据实施网络钓鱼攻击 https://t.co/cvyIcqJSiy"
-
[ Attrack ] Rigging compromise - RIG Exploit Kit http://blog.talosintel.com/2016/01/rigging-compromise.html
"Talos 对 RIG Exploit KIT 攻击活动的观测数据 https://t.co/172Af1kJyY"
-
[ Crypto ] Researchers demonstrate new collision attacks against SHA-1 and MD5 in TLS, IKE and SSH - http://ow.ly/WL0bu
"来自法国 INRIA(国家信息与自动化研究所)的研究人员展示一种新的 SHA-1 和 MD5 碰撞攻击,SHA-1 和 MD5 加密算法被用于 TLS,IKE,SSH 协议中 https://t.co/1zYImP1nJj"
-
[ Detect ] New in the BApp Store: Java Deserialization Scanner - scans for Java deserialization vulnerabilities https://portswigger.net/bappstore/ShowBappDetails.aspx?uuid=228336544ebe4e68824b5146dbbd93ae
"Burp BApp 扩展 - Java 反序列化漏洞扫描工具 https://t.co/0IZTcXk53k "
-
[ Device ] EZCast dongle wifi key can be guessed and RCE vulns used to compromise device remotely. No vendor response. https://blog.checkpoint.com/wp-content/uploads/2015/12/EZCast_Report_Check_Point.pdf #IoT
"EZCast 同屏器远程代码执行漏洞: https://t.co/Z6a0bsq3wV"
-
[ Device ] [RT-SA-2015-001] AVM FRITZ!Box: Remote Code Execution via Buffer Overflow http://goo.gl/fb/DxK8ik #FullDisclosure
"AVM FRITZ!Box 路由器缓冲区溢出漏洞(附 RCE PoC): https://t.co/JeybjWEFSM "
-
[ Device ] [RT-SA-2014-014] AVM FRITZ!Box: Arbitrary Code Execution Through Manipulated… http://goo.gl/fb/GUOQvK #FullDisclosure
"AVM FRITZ!Box 路由器的固件升级过程存在漏洞,通过篡改固件可以实现任意代码执行 https://t.co/nqmHOjFhsS "
-
[ Device ] New post: Android-based Smart TVs Hit By Backdoor Spread Via Malicious App http://bit.ly/1TGFqyQ @ TrendMicro
"基于 Android 的智能电视遭到后门应用攻击 https://t.co/2cU4KbC3x9"
-
[ Fuzzing ] Retweeted Iván (@ aszy): Targeted Program Transformations for Symbolic Execution http://www.doc.ic.ac.uk/~cristic/papers/symex-transf-fse-ni-15.pdf http://fb.me/LJMNjKV8
"为符号执行做针对性的程序变换, Paper: https://t.co/qPxJzn9WiZ https://t.co/CovIElSl5y"
-
[ Mac OS X ] Using the OS X 10.10 Hypervisor Framework : A Simple DOS Emulator : http://www.pagetable.com/?p=764
"从 OS X 10.10 版本, OS X 开始内嵌 Hypervisor 框架,这篇 Blog 介绍基于此框架运行一个 DOS 系统模拟器: https://t.co/46BNXYA6Qk"
-
[ Malware ] Malicious Pastebin Replacement for jQuery http://ow.ly/WK2iU
"攻击者利用假的 jQuery Pastebin 文件传播恶意软件 https://t.co/WJu1jT6Bzg "
-
[ Network ] Cisco VLAN Trunking Protocol Vulnerabilities : http://tools.cisco.com/security/center/content/CiscoSecurityResponse/cisco-sr-20060913-vtp
"思科 VLAN 中继协议存在多个漏洞: https://t.co/k7Bzp0nraW"
-
[ Others ] Insightful thesis on detecting previously unseen code injection attacks & targeted malware http://www.crysys.hu/~pek/thesis/thesis.pdf (via @ maartenvhb) #DFIR
"硬件虚拟化攻击和恶意软件注入攻击的新检测方法, Paper: https://t.co/Y7DsP7K51P #DFIR"
-
[ Others ] Deserialization Vulnerability : Automating the hunt http://blog.h3xstream.com/2016/01/deserialization-vulnerability.html
"自动化挖掘反序列化漏洞 https://t.co/phXF6Ev5bo"
-
[ Others ] BMP / x86 Polyglot https://warroom.securestate.com/bmp-x86-polyglot/
"通过修改 BMP 文件使文件既是一张有效的 BMP 图片,又可以嵌入有效的 x86 指令 https://t.co/HaexSqKWtT"
-
[ Others ] Wrote a little DoS tool for apps that deserialize Java objects, none of the recent defenses do anything about it: https://www.contrastsecurity.com/security-influencers/java-deserializing-open-source-tool
"Java 对象反序列化拒绝服务工具,作者写这个工具是想证明:尽管 Java 的反序列化漏洞已经补上了,但是仍然可以拒绝服务: https://t.co/T19bJlb4sx"
-
[ Popular Software ] Looks like I got the first bug disclosed for 2016 from @ thezdi! http://www.zerodayinitiative.com/advisories/ZDI-16-001/
"以色列 Unitronics 公司的 HMI/PLC IDE 存在文件解析缓冲区溢出漏洞(CVE-2015-7939): https://t.co/TRNR65jFQP"
-
[ ReverseEngineering ] Just released the source code of WWCD - What Would Capstone Decode IDA plugin https://github.com/sektioneins/WWCD for demo see: http://youtu.be/GooE05QnuY0
"WWCD - IDA 插件,提供 Capstone 反汇编支持 https://t.co/zf4aH1bpgp: https://t.co/jF4m2RkH9w"
-
[ Tools ] TCP Reverse Shell with Password Prompt - 151 bytes : https://www.exploit-db.com/exploits/39185/
"带密码的 TCP 反弹 Shell Shellcode - 151 字节: https://t.co/kflFxb59kT"
-
[ Tools ] Viper : Binary Analysis Framework for Malware : http://viper.li/ cc : @ botherder
"Viper - 恶意二进制样本管理和分析框架: https://t.co/cuTvUHtmfs "
-
[ Web Security ] Facebook Vulnerability Reflected File Download http://blog.infogen.al/2016/01/facebook-vulnerability-reflected-file.html #websec #vuln #bugbounty #hacking #infosec https://t.co/Ib0O1SoDJt
"Facebook 反射式文件下载漏洞 https://t.co/Ib0O1SoDJt https://t.co/geG7bmbEEm"
-
[ Web Security ] http://pkav.net/XSS2.png 有用也好,无用也罢,愿 XSS 为你所用。
"一张图诠释 XSS,来自 PKAV 的 Jackmasa https://t.co/ypISOUXTJe "
