腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Samsung URL filtering in kernel land: what could possibly go wrong?https://github.com/ud2/advisories/tree/master/android/samsung/nocve-2016-0001 via @ Fuzion24
"三星手机内核 URL 过滤存在缺陷,影响 Note 3 和 Galaxy S6,来自 Github ud2 的公告: https://t.co/Nb0PudcN2o"
-
[ Attack ] Music-themed Malvertising Lead to Angler http://research.zscaler.com/2016/01/music-themed-malvertising-lead-to-angler.html
"音乐主题恶意广告站点将用户引向 Angler Exploit Kit,来自 Zscaler Blog: https://t.co/C6ZnjdD3yX"
-
[ Attack ] A Guidance Template for Attack Sequence Specification in Cyber Attack Simulation http://scholarworks.rit.edu/cgi/viewcontent.cgi?article=9941&context=theses
"模拟网络攻击序列用的模板规范,来自罗彻斯特理工学院的 Paper: https://t.co/XaPrQ80Ao3 "
-
[ Attack ] Attackers Seek to Hack Hardware for Ultimate Control https://blogs.mcafee.com/mcafee-labs/attackers-seek-to-hack-hardware-for-ultimate-control/
"攻击者开始将焦点放到硬件上,通过 Hack 硬件获得终极控制权,来自 McAfee Blog: https://t.co/14YUoVeEFB"
-
[ Attack ] MSN Home Page Drops More Malware Via Malvertising http://blog.malwarebytes.org/malvertising-2/2016/01/msn-home-page-drops-more-malware-via-malvertising/
"MSN 主页被植入恶意广告: https://t.co/DFRJj04m8B"
-
[ Browser ] Firefox Sandboxing Guide : https://firejail.wordpress.com/documentation-2/firefox-guide/
"Firefox 浏览器沙箱介绍: https://t.co/WnTefKcMSw"
-
[ Defend ] Intel Memory Protection Extensions Enabling Guide : https://software.intel.com/sites/default/files/managed/9d/f6/Intel_MPX_EnablingGuide.pdf (pdf)
"Intel 内存保护扩展启用指南,来自 Intel 的 Paper: https://t.co/ydyLBmn7v6"
-
[ Detect ] Beyond IDS - Practical Network Hunting : https://github.com/bsidesnyc/BSidesNYC2016/blob/master/Presentations/Josh%20Liburdi%20-%20Beyond%20IDS.%20Practical%20Network%20Hunting.pdf (pdf)
"Beyond IDS - 网络检测技术实践,来自 Bsides NYC 2016 会议: https://t.co/STz3pw4tk8"
-
[ Exploit ] Introduction to Windows shellcode development – Part 2 http://securitycafe.ro/2015/12/14/introduction-to-windows-shellcode-development-part-2/
"Windows Shellcode 开发指南,来自 Security Cafe Blog, Part 2: https://t.co/DRVMk1xfWX Part 1: http://securitycafe.ro/2015/10/30/introduction-to-windows-shellcode-development-part1/ "
-
[ Exploit ] Part 3 of my posts on windows kernel exploitation is up @ WhitehattersA finishing off the @ HackSysTeam vuln driver https://www.whitehatters.academy/intro-to-windows-kernel-exploitation-3-my-first-driver-exploit
"基于 HackSys 'Extreme Vulnerable Windows Driver' 的 Windows 内核漏洞利用开发,前两天推送过 Part 1 和 2, 今天是 Part 3: https://t.co/BD8kYYLhbj "
-
[ Industry News ] Tech Support Scammers Lure Users With Fake Norton Warnings, Turn Out To Be Symantec Reseller http://blog.malwarebytes.org/fraud-scam/2016/01/tech-support-scammers-lure-users-with-fake-norton-warnings-turn-out-to-be-symantec-reseller/
"技术支持骗子用假 Norton 警告诱惑用户,最终证明是 Symantec 代理商: https://t.co/VRJvNFvk4I"
-
[ iOS ] Security Content iOS 9.2.1 - https://support.apple.com/en-us/HT205732
"iOS 9.2.1 安全公告,来自 Apple: https://t.co/iqvDg8qtvO"
-
[ IoTDevice ] Administrator auto-logout design flaw in ASUS wireless routers http://goo.gl/fb/IoGncM #FullDisclosure
"华硕无线路由器管理员自动 logout 缺陷,来自 FullDisclosure: https://t.co/geXbrLy8H1"
-
[ Linux ] Tracking Protection In Wi-Fi Networks Coming Soon To Linux : https://blogs.gnome.org/lkundrak/2016/01/18/networkmanger-and-tracking-protection-in-wi-fi-networks/
"Wi-Fi 网络的跟踪保护功能很快将会出现在 Linux 系统: https://t.co/W1gW8mrCSY"
-
[ Linux ] Linux Kernel Return Oriented Programming (Part 1) : https://cyseclabs.com/page?n=17012016
"Linux 内核 ROP Part 1,这篇 Blog 介绍如何构造 Linux 内核 ROP 链实现提权: https://t.co/koqAVD3UeG"
-
[ Malware ] Cracking Ransomware : http://blog.cylance.com/cracking-ransomware
"破解一款名为 'Anti-Child Porn Spam Protection' 的勒索软件,来自 Cylance Blog: https://t.co/MpxiquAXgw"
-
[ Malware ] Linux.Ekoms.1 the Linux trojan that takes screenshots http://securityaffairs.co/wordpress/43763/cyber-crime/linux-ekoms-1-linux.html
"Dr. Web 发现了一个名叫 Linux.Ekoms.1 的 Linux 木马,该木马每 30 秒就截屏一次: https://t.co/t4Es4Oyto7 "
-
[ Network ] Cheating VoIP Security by Flooding the SIP http://goo.gl/N7scAq #Hacking #MobileSecurity #Vulnerabilities
"通过 Flood SIP(DDoS)威胁 VoIP 的安全性,来自 InfoSec Blog: https://t.co/T4GaeuMcMk "
-
[ NetworkDevice ] Cisco Guide to Harden Cisco IOS Devices : http://www.cisco.com/c/en/us/support/docs/ip/access-lists/13608-21.html
"Cisco IOS 设备安全加固文档: https://t.co/oFvC6QfUpg"
-
[ Operating System ] Writing a 16-bit dummy kernel in C/C++ - http://www.codeproject.com/Articles/737545/Writing-a-bit-dummy-kernel-in-C-Cplusplus
"用 C/C++ 写一个 16 位的傀儡内核: https://t.co/hK7Gw3Jzce"
-
[ Popular Software ] LiteSpeed Web Server - Security Advisory - HTTP Header Injection… http://goo.gl/fb/qzxyBk #FullDisclosure
"LiteSpeed Web 服务器 HTTP 头注入漏洞,来自 FullDisclosure 的公告: https://t.co/zNYQtN1qns "
-
[ Popular Software ] Warm up your fibres… “Oracle Critical Patch Update - January 2016” http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
"Oracle 本月的紧急补丁更新,本次修复包含各产品总计 248 个补丁: https://t.co/qngJGkCFR4"
-
[ Popular Software ] Node JS Remote Memory Disclosure https://cxsecurity.com/issue/WLB-2016010127
"Node.js 远程信息泄露漏洞: https://t.co/BvhjwBH1qx"
-
[ Programming ] Developing Secure Java Code – Best Practices for a Team http://goo.gl/GmnhB3 #SecureCodingforJava
"Java 安全编码最佳实践,来自 InfoSec 的 Paper: https://t.co/U33SMXtEra "
-
[ ReverseEngineering ] #CodeXplorer updated with pull request by @ noobdoesre https://github.com/REhints/HexRaysCodeXplorer/pull/20 Fixed type RE crash on v6.9 https://github.com/REhints/HexRaysCodeXplorer #REhints
"IDA 代码导航插件 CodeXplorer 更新修复了在 IDA v6.9 版本类型重建 Crash 的问题: https://t.co/4kttK5IGvF "
-
[ Sandbox ] An Adversarial View of SaaS Sandboxes : https://github.com/bsidesnyc/BSidesNYC2016/blob/master/Presentations/Jason%20Trost%20%26%20Aaron%20Shelmire%20-%20An%20Adversarial%20View%20of%20SaaS%20Sandboxes.pdf (Slides - 7.07 Mb)
"从攻击者的角度看 SaaS 沙箱,来自 BSIDES NYC 2016 会议: https://t.co/1wjEtqGWWi"
-
[ SecurityProduct ] Avast sandbox escape by @ taviso http://code.google.com/p/google-security-research/issues/detail?id=700#c3
"Avast 沙箱逃逸漏洞, Avast 实现的沙箱自己实现了一套消息过滤机制,这套机制存在和 MS13-005 一样的问题,没有正确处理广播消息的用户界面隔离问题,来自 Project Zero Issue 700,漏洞发现者为 Tavis: https://t.co/68AaNZ6dER "
-
[ Tools ] Scripting A Windows Key Logger : http://www.patch-tuesday.net/2016/01/scripting-windows-key-logger.html
"自己用 PowerShell 脚本写一个 Windows 键盘记录器: https://t.co/QSK5RLAeQg"
-
[ Tools ] Qiew - Hex/File format viewer. Designed to be useful for reverse engineering malware. Based on pefile, Capstone https://github.com/mtivadar/qiew
"Qiew - 为逆向工程师设计的文件查看器,支持二进制视图、16 进制视图、汇编视图,Qiew 基于 pefile 和 Capstone 引擎实现, Github Repo: https://t.co/g46nhq0IXf"
-
[ Tools ] Docker Containers for Malware Analysis : https://github.com/bsidesnyc/BSidesNYC2016/blob/master/Presentations/Lenny%20Zeltser%20-%20Docker%20Containers%20for%20Malware%20Analysis.pdf (Slides - 3.79 Mb) cc: @ lennyzeltser
"用于恶意软件分析的 Docker 容器,来自 Bsides NYC 2016 会议: https://t.co/aFrzQb3QD0 "
-
[ Tools ] A modification of @ breenmachine original Hot Potato Priv Esc Exploit Bypasses AppLocker via InstallUtil https://github.com/Cn33liz/SmashedPotato @ Cneelis
"Potato 工具的修改版,添加通过 InstallUtil 绕过 Applocker 的功能: https://t.co/BclQsPisHp @Cneelis"
-
[ Web Security ] OpenCart LFI mitigation bypass 0day http://www.openwall.com/lists/oss-security/2016/01/19/16
"开源电子商务系统 OpenCart(PHP)本地文件包含漏洞缓解绕过 0Day: https://t.co/ds3vEAJbfN"
-
[ Web Security ] GRR <= 3.0.0-RC1 (all versions) file upload filter bypass (authenficated) http://goo.gl/fb/a4iyTv #FullDisclosure
"开源的资源管理工具 GRR 文件上传过滤绕过漏洞,来自 FullDisclosure: https://t.co/1whIyF8WY8"