腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Conference ] All submitted presentation materials, slides, & whitepapers from #BHEU 2016 Briefings are now available online: http://ow.ly/fpTj305MFlW
"BlackHat EU 2016 已放出所有议题PPT ︰ https://www.blackhat.com/eu-16/briefings.html"
-
[ Linux ] Exploiting COF Vulnerabilities in the Linux kernel : https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf (Slides) #ruxcon cc @ vnik5287
"Exploiting COF Vulnerabilities in the Linux kernel,来自 RuxCon 大会上的议题(Slides)︰ https://t.co/V0sz7pwZ2k "
-
[ Malware ] New post: New Bizarro Sundown Exploit Kit Spreads Locky http://bit.ly/2eupLa1 @ TrendMicro
"Bizarro Sundown -- 一个新发现的 Exploit Kit: https://t.co/6YJAbDrBLB"
-
[ Obfuscation ] Code Deobfuscation : Intertwining Dynamic, Static and Symbolic Approaches : https://www.blackhat.com/docs/eu-16/materials/eu-16-David-Code-Deobfuscation-Intertwining-Dynamic-Static-And-Symbolic-Approaches.pdf (Slides)
"Code Deobfuscation : Intertwining Dynamic, Static and Symbolic Approaches︰ https://t.co/mRj957sh4r"
-
[ Others ] Breaking out of QEMU : https://ruxcon.org.au/assets/2016/slides/Breaking%20out%20of%20QEMU_v3.pdf (Slides) #ruxcon
"Breaking out of QEMU,来自 RuxCon 大会上 360 Gear Team 的议题(Sliders) : https://t.co/zilZlXj6eO "
-
[ Others ] STROLLING INTO RING-0 via i/o kit drivers : https://ruxcon.org.au/assets/2016/slides/RuxCon_Wardle.pdf (Slides) #ruxcon cc @ patrickwardle
"STROLLING INTO RING-0 via i/o kit drivers,来自 Ruxcon上的议题(Slides)︰ https://ruxcon.org.au/assets/2016/slides/RuxCon_Wardle.pdf "
-
[ Others ] Just released UNIX Nostalgia: Hunting for Zeroday Vulnerabilities on IBM AIX: https://rhinosecuritylabs.com/2016/11/03/unix-nostalgia-hunting-zeroday-vulnerabilities-ibm-aix/
"UNIX Nostalgia: Hunting for Zeroday Vulnerabilities on IBM AIX︰ https://t.co/4AaLK82xfr"
-
[ Sandbox ] Study shows fingerprinting malware sandboxes is pretty straightforward, enables potential sandbox evasion https://t.co/8E5Wuxihso
"SandPrint: Fingerprinting Malware Sandboxesto Provide Intelligence for Sandbox Evasion: https://t.co/8E5Wuxihso"
-
[ Tools ] Lynis : Security auditing tool for Linux, macOS, and UNIX-based systems : https://github.com/CISOfy/lynis
"Lynis -- 一个可以在 Linux、 macOS 和类 UNIX 系统上使用的安全审计工具︰ https://t.co/aIf6zbolms"
-
[ Tools ] Really cool stuff! #DRAMA Reverse-Engineering and Side-Channel Tools for x86-64 Intel CPUs https://github.com/IAIK/drama
"RAMA Reverse -- Engineering and Side-Channel Tools for x86-64 Intel CPUs: https://t.co/MU7rGdz0xD "
-
[ Vulnerability ] KL-001-2016-008 : Sophos Web Appliance Privilege Escalation https://goo.gl/fb/ZnJa2s #FullDisclosure
"安全公司 Sophos Web Appliance(v4.2.1.3)存在提权漏洞: https://t.co/ySJfuwHBNa "
-
[ Windows ] Leaking Windows Kernel Pointers : https://ruxcon.org.au/assets/2016/slides/RuxCon%20-%20Leaking%20Windows%20Kernel%20Pointers.pdf (Slides) #ruxcon
"Leaking Windows Kernel Pointers,来自 RuxCon 大会上的议题(Slides): https://t.co/qoux6xalM4 "
-
[ Windows ] Interesting deck showing various approaches to execute LPE on Windows. https://www.blackhat.com/docs/eu-16/materials/eu-16-Liang-Attacking-Windows-By-Windows.pdf
"Attacking Windows by Windows,来自 2016 BlackHat EU 上腾讯电脑管家的议题(Slides): https://t.co/68tv441RRS"
-
[ WirelessSecurity ] LTE Redirection : Forcing Targeted LTE Cellphone into Unsafe Network : https://ruxcon.org.au/assets/2016/slides/LTE_Redirection_Ruxcon.pdf (Slides) #ruxcon
"LTE Redirection : Forcing Targeted LTE Cellphone into Unsafe Network,来自 RuxCon 大会上 360 UnicornTeam 的议题(Slides)︰ https://t.co/JllbD7ddTC "