腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Trusted Execution Environments: Slides: http://asokan.org/asokan/Padova2014/tutorial-mobileplatsec.pdf Video Part 1: https://www.youtube.com/watch?v=PFjh-IeUJMI Video Part 2: https://t.co/lS29h8zxF5
"Trusted Execution Environments(Slides)︰ https://t.co/zsqrpIWxjQ Video 1: https://t.co/eEHpcP1N68 Video 2: https://t.co/lS29h8zxF5"
-
[ Linux ] I realized nobody knows how the Linux kernel init (initrd, initramfs, mounts, etc) works, so I rewrote it in bash: https://t.co/187drobILG
"实现 Linux 内核加载的 bash 脚本︰ https://t.co/187drobILG"
-
[ Malware ] Apparently there's Fancy Bear source code found during IR on github https://github.com/rickey-g/fancybear #APT28 #FancyBear #GrizzlySteppe
"Fancy Bear 源码 : https://t.co/BelckrucpM "
-
[ Tools ] Process hollowing countermeasure is complete. Using a WMI perm event subscription. https://gist.github.com/vector-sec/f0ba2c46882b24da23d9303ff6e37f09
"WMI 脚本,用于结束 Word/Excel 开辟的子进程: https://t.co/zZOPZkgxXZ"
-
[ Tools ] Chromebackdoor - Backdoor C&C for Populars Browsers http://www.kitploit.com/2017/01/chromebackdoor-backdoor-c-for-populars.html
"Chromebackdoor -- 基于各大浏览器的后门工具: https://t.co/NJePGZwQ74"
-
[ Tools ] shellcheck, a static analysis tool for shell scripts https://github.com/koalaman/shellcheck // \o/ https://t.co/6PSgbyScN8
"shellcheck -- shell 脚本静态分析工具: https://t.co/BYqgfZAAYt "
-
[ Windows ] “Reclaim Windows 10” Powershell Script (removes bloatware & telemetry from Windows 10) : https://gist.github.com/alirobe/7f3b34ad89a159e6daa1
"Windows 10 的优化与加固脚本︰ https://t.co/iBbelgawXX"
-
Xuanwu Spider via Pangu's blog[ iOS ] mach portal漏洞利用的一些细节 : http://blog.pangu.io/mach-portal-details/
-
Xuanwu Spider via GeekPwn's weibo
[ MachineLearning ] 机器学习对抗性攻击: http://geek.csdn.net/news/detail/132656 Video 1: https://v.qq.com/x/page/k0362x6r8f4.html Video 2: https://v.qq.com/x/page/j0362flvwh9.html