腾讯玄武实验室安全动态推送(Tencent Xuanwu Lab Security Daily News)

腾讯玄武实验室安全动态推送

Tencent Xuanwu Lab Security Daily News

2016/05/23

Nicolas Krassas @Dinosn

[ Backdoor ] bt2: leveraging Telegram as a command & control platform https://blog.blazeinfosec.com/bt2-leveraging-telegram-as-a-command-control-platform/

"bt2（Blaze Telegram Backdoor Tool）︰将 Telegram 作为一个 C&C（命令与控制）平台： https://t.co/LOmYNA5cDi"
volatility @volatility

[ Forensics ] The 4th annual @ volatility plugin contest: http://volatility-labs.blogspot.com/2016/04/the-2016-volatility-plugin-contest-is.html #DFIR #Malware

" 高级内存取证分析框架 Volatility 插件比赛的最终结果（2016）︰ https://t.co/MnGA1qwGEj "
sysmocom @sysmocom

[ Hardware ] sysmoUSIM-SJS1 SIM/USIM card now has a user manual: https://www.sysmocom.de/news/sysmocom-releases-sysmousim-sjs1-user-manual/index.html / PDF at https://sysmocom.de/downloads/sysmousim-manual.pdf

"sysmocom 公开了 sysmoUSIM 卡用户手册︰ https://t.co/h7hcOABb67 PDF 手册下载： https://t.co/Tvru2RJCqz "
Binni Shah @binitamshah

[ Linux ] TCPTuner: Congestion Control Your Way : http://arxiv.org/pdf/1605.01987v1.pdf (pdf)

"TCPTuner︰以自己的方式控制 TCP 拥塞，实时修改拥塞算法参数，作者将这个实现为 Linux 内核的一个模块， Paper ︰ https://t.co/eOUGML9NR8 "
Zuk @ihackbanme

[ Network ] Reverse Engineering A Mysterious UDP Stream in My Hotel http://wiki.gkbrk.com/Hotel_Music.html Laughed out loud :)

" 作者在住酒店时发现 2046 端口有大量的 UDP 数据包，作者开始分析这些数据包的内容： https://t.co/3MD1IWFEb9 "
Binni Shah @binitamshah

[ Others ] Eigenstate : Regex Debugging : https://eigenstate.org/notes/regex-debug

" 用于调试正则表达式的调试器︰ https://t.co/RK4FSobgxA"
The Wrath of me™ @hirojin

[ Others ] http://arxiv.org/abs/1605.02817 Unethical Research: How to Create a Malevolent Artificial Intelligence https://t.co/NVqpBiVzkP

" 不道德的研究 - 如何构建恶意的人工智能， Paper： https://t.co/72aNo2VeIV https://t.co/NVqpBiVzkP"
Nicolas Krassas @Dinosn

[ Pentest ] NOSQLMAP V0.5.1.1 – automated mongo database and nosql web application exploitation tool http://seclist.us/nosqlmap-v0-5-1-1-automated-mongo-database-and-nosql-web-application-exploitation-tool.html

"NOSQLMAP V0.5.1.1 — 自动化地 Mongo DB 和 Nosql Web 应用渗透工具： https://t.co/DtnM83IugL "
Frank Denis @jedisct1

[ Programming ] 10 awesome features of Python that you can't use because you refuse to upgrade to Python 3 https://asmeurer.github.io/python3-presentation/slides.html

" 有 10 个酷炫的 Python 特性你用不了，因为你没有升级为 Python 3： https://t.co/Tlcr0Hu2F3 "
packet storm @packet_storm

[ SecurityProduct ] VirIT Explorer Lite / Pro 8.1.68 Privilege Escalation https://packetstormsecurity.com/files/137136 #exploit

"杀毒软件 Vir.IT eXplorer Pro 8.1.68 提权漏洞： https://t.co/PfeXBf86e9 "
Binni Shah @binitamshah

[ Tools ] Interactive C++ interpreter : https://root.cern.ch/cling

"交互式 C++ 解释器，基于 LLVM 和 Clang︰ https://t.co/8ZXxeV7FSq"
Francisco Ribeiro @blackthorne

[ Windows ] Setting up Virtual Smart card logon using Virtual TPM for Windows 10 Hyper-V VM Guests https://blogs.technet.microsoft.com/askds/2016/05/11/setting-up-virtual-smart-card-logon-using-virtual-tpm-for-windows-10-hyper-v-vm-guests/

" 为 Windows 10 Hyper-V Guest 虚拟机设置虚拟智能卡登录，来自微软 Blog： https://t.co/CywVfacGUY"

2016/05/23