腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Samsung Android Security Update - February 2016 http://security.samsungmobile.com/smrupdate.html
"三星发布 2 月份的 Android 安全漏洞公告: https://t.co/Cm6MO7DjDe"
-
[ Android ] Our Mobile Threat Report details the latest threats facing your device, like #Stagefright. http://intel.ly/1WH2WwW https://t.co/LeCo2TxvAG
"来自 McAfee 的 2016 移动安全威胁报告: https://t.co/sHEHk1irEj https://t.co/LeCo2TxvAG"
-
[ Conference ] This year at #RSAC we'll have seven great breakout sessions. Here’s the list: http://symc.ly/1XQ82rO https://t.co/GgHFTlmB8O
"Symantec 在今年 RSA 会议的演讲名单 : https://t.co/6nDDnUdh75 今年 RSA 会议的 PPT 和视频资料: http://www.rsaconference.com/events/us16/downloads-and-media "
-
[ Detect ] Use your infrastructure as a sensor. How to use Windows Event Forwarding to help with intrusion detection: https://technet.microsoft.com/en-us/library/mt684618(v=vs.85).aspx
"如何用 Windows 事件转发来帮助进行入侵检测, 来自 TechNet Blog: https://t.co/oV7BwJqRFx"
-
[ MalwareAnalysis ] Blackout - Memory Analysis of BlackEnergy Big dropper http://malware-unplugged.blogspot.com.tr/2016/02/blackout-memory-analysis-of-blackenergy.html #DFIR #malware
"BlackEnergy Big Dropper 分析: https://t.co/EQrxZzl4r1 据报道, Black Energy 曾经造成乌克兰部分地区断电数小时 "
-
[ MalwareAnalysis ] Locky's New DGA - Seeding the New Domains [RUSSIA UPDATE: 26/FEB/16]: As of February 24, 2016, the Locky malware… http://j.mp/1n1WowH
" 勒索软件 Locky 的新版 DGA(域名生成算法)分析, 来自 ForcePoint Blog: https://t.co/4eRKwADAk4"
-
[ Others ] Automatic Generation of Data-Oriented Exploits https://0b4af6cdc2f0c5998459-c0245c5c937c5dedcca3f1764ecc9b2f.ssl.cf2.rackcdn.com/20971-sec15-paper-hu.pdf
"数据导向的(Data-Oriented) Exploit 自动生成技术: https://t.co/lpmU38RijH 随着系统中防御机制的加强,直接控制控制流变得越来越困难,于是攻击者开始尝试数据导向的 Exploit"
-
[ SecurityProduct ] #DLLPlanting in Comodo AV Geekbuddy Allows Local Users to Elevate to SYSTEM #LPE #infosec #Exploits #146DaysLater https://github.com/CyberPoint/advisories/blob/master/SRT-VR-02OCT2015.txt
"Comodo AV Geekbuddy DLL 劫持漏洞, CyberPoint 的漏洞公告: https://t.co/CpWSLBED8a "
-
[ Tools ] Security Use Cases with Splunk http://goo.gl/WbAZJ4 #IncidentResponse
"Splunk 日志处理引擎在安全方面的应用, 来自 InfoSec Blog: https://t.co/o5jLOHb6I5 "
-
[ Tools ] Relyze 1.5 is now available! Static library analysis, performance improvements and more: http://blog.relyze.com/2016/02/relyze-15-with-static-library-analysis.html https://t.co/r9x9W911Q1
"Windows x86/x64 交互式分析工具 Relyze 1.5 版本更新,开始支持对静态链接库代码的分析。 详细的更新日志: https://t.co/UsqbloyeFF https://t.co/r9x9W911Q1"
-
[ Windows ] 7 Quick-and-Dirty steps to converting DbgPrints to use WPP Tracing in the latest the OSR Deveveloper's blog post: http://bit.ly/1TDEEo6
"将 DbgPrints 快速转换成 WPP Tracing 的 7 个步骤, 来自 OSR Blog: https://t.co/aSwTRhq6Zd"
