腾讯玄武实验室安全动态推送(Tencent Xuanwu Lab Security Daily News)

腾讯玄武实验室安全动态推送

Tencent Xuanwu Lab Security Daily News

2017/04/07

Nicolas Krassas @Dinosn

[ Android ] How to repair a DEX file, in which some key methods are erased with NOPs http://blog.fortinet.com/2017/04/05/how-to-repair-a-dex-file-in-which-some-key-methods-are-erased-with-nops

"如何修复关键函数被 NOP 抹掉的 DEX 文件： https://t.co/uF9HRrI74a"
Manuel Caballero @magicmac2000

[ Browser ] Microsoft Edge - Detecting Installed Extensions from JS A generic method that works without manifest cooperation. ?… https://twitter.com/i/web/status/850012348412833792

"有效检测 Microsoft Edge 浏览器已安装的应用： https://www.brokenbrowser.com/microsoft-edge-detecting-installed-extensions/"
Francisco Alonso @revskills

[ Browser ] WebKitGTK+ Security Advisory WSA-2017-0003 https://webkitgtk.org/security/WSA-2017-0003.html

"WebKit 的全功能移植版版本 - WebKitGTK+ 昨天发布安全漏洞公告，本次修复了 30 多个漏洞： https://t.co/MrGNCPhAtc"
flanker017 @flanker_hqd

[ iOS ] How receiving a malformed GIF emoji corrupts your beloved apps on macOS/iOS - writeup on CVE-2017-2416 released https://blog.flanker017.me/cve-2017-2416-gif-remote-exec/

" iOS ImageIO GIF 文件解析流程中的一个 RCE 漏洞（CVE-2017-2416）： https://t.co/e5DigY1ZUj"
Binni Shah @binitamshah

[ IoTDevice ] How I found a command injection vulnerability in my TV set while in bed (and how I exploited it using nc) : https://www.netsparker.com/blog/web-security/hacking-smart-tv-command-injection/

"通过命令注入漏洞 Hack 我家的智能电视︰ https://t.co/h5vctv7pIj"
hasherezade @hasherezade

[ MalwareAnalysis ] My new post for @ Malwarebytes : "#DiamondFox – part 2: let’s dive in the code": https://blog.malwarebytes.com/threat-analysis/2017/04/diamond-fox-p2/

"深入分析 Diamond Fox bot ： https://t.co/7szvG9Sr3l"
Claud Xiao @claud_xiao

[ MalwareAnalysis ] IoT/Linux botnet #Amnesia (a Tsunami variant) exploit DVR device vulnerability, evade and wipe Linux virtual machine:http://researchcenter.paloaltonetworks.com/2017/04/unit42-new-iotlinux-malware-targets-dvrs-forms-botnet/

"新型 IoT/Linux 恶意软件 Amnesia 开始以 DVR 设备为目标构建僵尸网络︰ https://t.co/Qg7mPW9ucs"
Binni Shah @binitamshah

[ Others ] bash-guide : A guide to learn bash : https://github.com/Idnan/bash-guide

"bash-guide - bash 指导手册: https://t.co/XeUrkrhPK2"
McAfee Labs @McAfee_Labs

[ SecurityReport ] Our new Threats Report shares research into the #Mirai bot, which has infected ~2.5 million #IoT devices:… https://twitter.com/i/web/status/849975888166780929

"来自 McAfee 的威胁报告，主要研究了 Mirai botnet ： https://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2017.pdf"
Relyze @relyze

[ Tools ] Relyze 2.4 is now available, with integrated assembler support! http://blog.relyze.com/2017/04/relyze-24-now-with-integrated-assembler.html https://t.co/jUyQtkVMqd

"Relyze v2.4 发布，此为一个交互式二进制分析工具，支持 x86, x64, ARM，支持 PE 和 ELF 格式，支持二进制 Diff： https://t.co/OHuxyth2ZH"
Alex Bazhaniuk @ABazhaniuk

[ Tools ] Slides from our "Exploring your system deeper" in @ CanSecWest : http://www.c7zero.info/stuff/csw2017_ExploringYourSystemDeeper_updated.pdf with finding FW/HW vulns, FW implants using @ CHIPSEC

"基于 CHIPSEC 评估框架，审计系统底层的安全性，包括固件和 Hypervisor： https://t.co/S8d5HqQw5t"
Binni Shah @binitamshah

[ Tools ] mhn : Multi-snort and honeypot sensor management (Modern Honey Network) : https://github.com/threatstream/mhn

"mhn - 整合了 Snort、Kippo,、Conpot 及 Dionaea 等多个系统的蜜罐网络︰ https://t.co/zKSIz0NKIL"
Binni Shah @binitamshah

[ Tools ] RequestBin — Collect, inspect and debug HTTP requests and webhooks : http://requestb.in/

"RequestBin — 一款在线的 HTTP 请求检测工具︰ https://t.co/EcBUM9PdHs"
Binni Shah @binitamshah

[ Tools ] Evilginx - Advanced Phishing with Two-factor Authentication Bypass : https://breakdev.org/evilginx-advanced-phishing-with-two-factor-authentication-bypass/ , Demo : https://www.youtube.com/watch?v=rPIURsHO5xU cc @ mrgretzky

"Evilginx - 可绕过双因素验证的高级钓鱼框架︰ https://t.co/LerWn66GHn demo︰ https://t.co/vuLvWJbHTV "
P-A Braeken @pabraeken

[ Windows ] My updated wp and PowerPoint for: Hack Microsoft Using Microsoft Signed Binaries https://www.blackhat.com/docs/asia-17/materials/asia-17-Braeken-Hack-Microsoft-Using-Microsoft-Signed-Binaries.pdf https://t.co/62r0t4iNnR #bhasia2017

"基于 PowerShell 的 PowerMemory 攻击框架，内嵌微软签名过的 powershell.exe 和 kd.exe，来自 BlackHat Asia 2017 ： https://t.co/kDsW4T4RFP "
Nicolas Krassas @Dinosn

[ Windows ] Microsoft Finally Reveals What Data Windows 10 Collects http://www.theverge.com/2017/4/5/15188636/microsoft-windows-10-data-collection-documents-privacy-concerns

"好奇 Windows 10 都收集了哪些你的个人信息？来看看 Microsoft 官方给的答案： https://blogs.windows.com/windowsexperience/2017/04/05/windows-10-privacy-journey-continues-more-transparency-and-controls-for-you/#hVqBdGuF8PzD3uwp.97"
CodeMachine Inc. @codemachineinc

[ Windows ] Windows 10 Interrupt Dispatching Internals http://codemachine.com/article_interruptdispatching.html. #wininternals #WindowsInternals #Windows10 #WindowsKernel

"解析 Windows 10 x64 系统的中断调度机制： https://t.co/maXUCZ1rEU"

Xuanwu Spider via Github

[ Browser ] qwertyoruiopz PS4 4.0x WebKit Exploit Writeup： https://github.com/Cryptogenic/Exploit-Writeups/blob/master/PS4/4.0x%20WebKit%20Exploit%20Writeup.md
Xuanwu Spider via hackerone.com

[ Industry News ] 微软推出 Project Sopris 计划，与 HackerOne 合作，选出 150 位报名的专家，测试低功耗互联设备的安全性： https://hackerone.com/project-sopris
Xuanwu Spider via seebug

[ MalwareAnalysis ] 一键无文件感染： http://paper.seebug.org/265/
Xuanwu Spider via freebuf

[ SecurityProduct ] 瑞星劫持浏览器主页分析： http://www.freebuf.com/articles/web/131156.html
Xuanwu Spider via n0where.net

[ Tools ] The Best Hacking Tools： https://n0where.net/best-hacking-tools/
Xuanwu Spider via cnbeta

[ Windows ] Windows 10 Creators 大版本更新的中文版 ISO 镜像可以下载了： http://m.cnbeta.com/view/600013.htm
Xuanwu Spider via redplait.blogspot.com

[ Windows ] 从 Windows 10 开始，ntdll 增加了一个称为 'ProtectedPolicies' 的安全特性： http://redplait.blogspot.com/2017/04/ntdll-protectedpolicies.html

2017/04/07