腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] My new blog "Deep Analysis of CVE-2016-3820 - Remote Code Execution Vulnerability in Android Mediaserver" https://blog.fortinet.com/2016/08/17/deep-analysis-of-cve-2016-3820-remote-code-execution-vulnerability-in-android-mediaserver
" Android Mediaserver CVE-2016-3820 远程代码执行漏洞深度分析,来自 Fortinet Blog: https://t.co/fxZTLQSOTR"
-
[ Malware ] “百合一”盗号木马分析报告 - http://blogs.360.cn/360safe/2016/08/17/hundred2one/
" '百合一' 盗号木马分析报告,来自 360 安全播报: https://t.co/ki8xdfvK9Y"
-
[ Obfuscation ] A nice work on malware deobfuscation, in which Capstone disassembler + Z3 are used to remove opaque predicates: http://zubcic.re/blog/experimenting-with-z3-proving-opaque-predicates
" 用 Z3 工具实现对 Opaque predicates 混淆代码的检查,如果证明某个条件跳转指令可以忽略,那就可以提高代码分析的效率︰ https://t.co/RlTVGVy13x"
-
[ OpenSourceProject ] FFMpeg 3.1.2 发布 修复来自360GearTeam的一个高危漏洞 - http://bobao.360.cn/news/detail/3465.html
" FFMpeg 3.1.2 发布 修复来自 360GearTeam 的一个高危漏洞: https://t.co/KdG9CrfRVv"
-
[ Others ] #CHES2016 Antikernel slides: https://github.com/azonenberg/antikernel/raw/master/doc/publications/ches2016/ches2016-antikernel-2.pptx. CHES paper: http://eprint.iacr.org/2016/550. Full thesis: https://github.com/azonenberg/antikernel/raw/master/doc/publications/thesis/thesis.pdf
"Antikernel: A Decentralized Secure Hardware-Software Operating System Architecture,来自 IOActive 研究员的演讲 PPT︰ https://t.co/fqRBqkEcj2 Paper︰ https://t.co/tJf4VzWD8r 论文︰ https://t.co/88jh8AOcX0"
-
[ Others ] wrote a post for @ radareorg blog: Emulating a simple bootloader http://radare.today/posts/emulating-simple-bootloader/
" 模拟一个简单的 Bootloader: https://t.co/Z50jQp43Cd"
-
[ Windows ] PowerOPS – PowerShell Runspace Portable Post Exploitation Tool http://www.darknet.org.uk/2016/08/powerops-powershell-runspace-portable-post-exploitation-tool/
"PowerOPS — 运行 PowerShell 脚本但又不依赖 powershell.exe 的工具: https://t.co/PrXRbOH38W"