腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] 国内自有内核手机浏览器安全情况分析 - http://appscan.360.cn/blog/?p=76
"国内自有内核手机浏览器安全情况分析: https://t.co/3cuahWHDp8"
-
[ Attack ] Hacker shows us how to unlock a laptop using an NSA hacking tool. https://motherboard.vice.com/read/hacker-unlock-a-laptop-nsa-tool-slotscreamer
" 黑客向大家展示如何用 NSA 的工具解锁笔记本: https://t.co/6Pzg0Gt7ev"
-
[ Browser ] Browser-based fingerprinting: implications and mitigations https://blog.malwarebytes.com/cybercrime/exploits/2016/08/browser-based-fingerprinting-implications-and-mitigations/
"基于浏览器的指纹,所涉及的问题及缓解方法: https://t.co/8FqmG9kPsv"
-
[ Detect ] Posted the first version of Conveigh, a #PowerShell LLMNR/NBNS spoofer detection tool. https://github.com/Kevin-Robertson/Conveigh
" Conveigh - PowerShell 写的一个 LLMNR/NBNS 欺骗检测工具: https://t.co/l4Zs6zfrB8"
-
[ iOS ] Apple Patents Collecting Biometric Information Based on Unauthorized Device Use https://www.schneier.com/blog/archives/2016/08/apple_patents_c.html
"苹果收到了一份专利,关于在未授权设备上采集用户生物特征信息: https://t.co/Zkz3Xgor2e"
-
[ macOS ] ZDI-16-494: Apple OS X IOHIDFamily Heap Buffer Overflow Privilege Escalation Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-16-494/
"ZDI-16-494︰ Apple OS X IOHIDFamily 堆缓冲区溢出提权漏洞,来自 ZDI 的公告: https://t.co/EVFlHuOHGO"
-
[ Malware ] Petya Ransomware Analysis Part II http://resources.infosecinstitute.com/petya-ransomware-analysis-part-ii/
" InfoSec Blog 对 Petya 勒索软件的分析: https://t.co/TgS3JlMoYw"
-
[ Malware ] Wonder what a SWF delivered by an EK looks like? https://github.com/nccgroup/Cyber-Defence/blob/master/Technical%20Notes/Neutrino-EK/Flash%20Exploit%20Kit%20technical%20note.pdf tools: https://github.com/nccgroup/Cyber-Defence/tree/master/Technical%20Notes/Neutrino-EK/Scripts exploits: https://github.com/nccgroup/Cyber-Defence/tree/master/Technical%20Notes/Neutrino-EK/Output
" Neutrino-EK 的 Flash 样本长什么样: https://t.co/5vjkhy1Tbn 相关的脚本︰ https://t.co/ritWp4oAjW Exploits︰ https://t.co/JEJeObPPbr"
-
[ Malware ] Locky Ransomware Now Downloaded as Encrypted DLLs http://blog.trendmicro.com/trendlabs-security-intelligence/locky-ransomware-now-downloaded-encrypted-dlls/
" Locky 勒索软件现在开始以加密 DLL 文件的形式传播,来自 TrendMicro Blog: https://t.co/A6mRWIAkhp"
-
[ Others ] You might be concerned when: A Chinese Certificate Authority 'mistakenly' gives out SSL Certs for GitHub Domains http://bit.ly/2bx8RrP
" 国内证书颁发机构 WoSign 错误的向一个 GitHub 用户域名颁发了 SSL 证书: https://t.co/YdEGI1insZ"
-
[ Others ] Finding and Analyzing Compiler Warning Defects https://www.semanticscholar.org/paper/Finding-and-analyzing-compiler-warning-defects-Sun-Le/5ab504fcfa37093e43eeaf8c3df1c9a59e0e72d4/pdf
" 编译器警告相关的缺陷分析,Paper: https://t.co/3ySw8kJ1BH"
-
[ Tools ] CaptainHook is a new x86/x64 hooking engine, which uses Capstone disassembler inside! https://github.com/shmuelyr/CaptainHook
"CaptainHook - 一款全新的 x86/x64 Hook 引擎: https://t.co/rTiYmKtnck"
-
[ Tools ] Ablation - Augmenting Static Analysis Using Pintool. Output is IDAPython script. https://github.com/paulmehta/Ablation
" Ablation - 基于 Pintool,增强静态分析,输出的结果是 IDAPython 脚本: https://t.co/vinHX3kncC"