腾讯玄武实验室安全动态推送(Tencent Xuanwu Lab Security Daily News)

腾讯玄武实验室安全动态推送

Tencent Xuanwu Lab Security Daily News

2017/03/20

Binni Shah @binitamshah

[ APT ] FHAPPI Campaign - FreeHosting APT PowerSploit Poison Ivy : http://blog.0day.jp/p/english-report-of-fhappi-freehosting.html (Kudos to @ unixfreaxjp & MMD te… https://twitter.com/i/web/status/843413087457746945

"FHAPPI APT 攻击行动英文版报告︰ https://t.co/EmJHU6UtT7 "
Samuel Groß @5aelo

[ Browser ] More browser hacking: exploiting a cross-mmap overflow in #Firefox https://saelo.github.io/posts/firefox-script-loader-overflow.html

"深入分析 CVE-2016-9066: 在 Firefox 中利用跨 mmap 溢出： https://t.co/FP1yfpupoM "
Nicolas Krassas @Dinosn

[ Linux ] Linux Mono JIT 4.6.2 Compiler mismanagement multithread handling | Buffer Overflow https://cxsecurity.com/issue/WLB-2017030170

" Linux Mono JIT 4.6.2 编译器多线程处理不善导致缓冲区溢出漏洞： https://t.co/SOtpV77jb1"
SecuriTeam (SSD) @SecuriTeam_SSD

[ Popular Software ] SSD Advisory – @ Oracle Knowledge Management XXE Leading to a RCE For more details: https://blogs.securiteam.com/index.php/archives/3052 https://t.co/LRf1zAn9BO

"Oracle 知识库管理系统存在 XXE 漏洞可导致 RCE： https://blogs.securiteam.com/index.php/archives/3052"
x0rz @x0rz

[ Tools ] New #Mimikatz released (2.1.1 20170319) https://github.com/gentilkiwi/mimikatz/releases #pentesting #redteam #passwords https://t.co/dvHvkT2hy1

"Mimikatz 发布 2.1.1 版本： https://t.co/oiUqYJPTLw "
rmallof @rmallof

[ Tools ] Open source Windows kernel driver loader http://nzzl.us/PzbnAaI

"一个开源的 Windows 内核驱动加载器 driver-loader： https://t.co/lt1mU2IM93 Github： https://github.com/maldevel/driver-loader"
Jerry Gamblin @JGamblin

[ Tools ] A list of useful payloads and bypass for Web Application Security and Pentesting. https://github.com/swisskyrepo/PayloadsAllTheThings

" WEB 应用安全方向技术与 Payload 资源收集： https://t.co/clf6e8Y7kE"

Xuanwu Spider via Github

[ Android ] Android 三月份刚修复漏洞 CVE-2017-0478 的 POC： https://github.com/JiounDai/CVE-2017-0478
Xuanwu Spider via Seebug

[ Browser ] CVE-2017-0037 IE11&Edge Type Confusion 从 PoC 到半个 Exploit： http://paper.seebug.org/251/#0-tsina-1-66632-397232819ff9a47a7b7e80a40613cfe1
Xuanwu Spider via zdnet

[ Industry News ] 英国最大旅游度假协会网站被黑，4.3万人信息遭泄露： http://www.zdnet.com/article/abta-website-hacked-43000-people-affected-by-breach/
Xuanwu Spider via 看雪论坛

[ Linux ] SELinux 教程之 Permissive VS Enforcing： http://weibo.com/ttarticle/p/show?id=2309404086349329258046
Xuanwu Spider via Naituw 's weibo

[ Tools ] IPAPatch: 免越狱调试、修改第三方App： http://weibo.com/ttarticle/p/show?id=2309404086977153611942
Xuanwu Spider via brokenbrowser.com

[ Web Security ] SOP bypass/ UXSS on IE – More Adventures in a Domainless World - about:blank： https://www.brokenbrowser.com/uxss-ie-domainless-world/

2017/03/20