腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ MalwareAnalysis ] In-Depth Look at New Variant of MONSOON APT Backdoor, Part 1 http://blog.fortinet.com/2017/04/05/in-depth-look-at-new-variant-of-monsoon-apt-backdoor-part-1
"MONSOON APT Backdoor 变种深入分析,part 1: http://blog.fortinet.com/2017/04/05/in-depth-look-at-new-variant-of-monsoon-apt-backdoor-part-1 part 2: http://blog.fortinet.com/2017/04/05/in-depth-look-at-new-variant-of-monsoon-apt-backdoor-part-2"
-
[ Pentest ] Here's my slides to my "Pwning the Enterprise With PowerShell" talk from @ BsidesORL - https://www.slideshare.net/dafthack/pwning-the-enterprise-with-powershell #PowerShell #pentest
" Powershell 企业渗透测试工具指南: https://t.co/VCvz5GFJqf "
-
[ Tools ] As I couldn't let @ subTee have all the fun. Tool to load an arbitrary .NET v2 assembly from memory via JScript. https://github.com/tyranid/DotNetToJScript
"生成 JScript 的工具,该 JScript 用于从内存中加载 .NET v2 字节码: https://t.co/I3HV0pY5Bl"
-
[ Tools ] scallion : GPU-based Onion Hash generator : https://github.com/lachesis/scallion
"scallion - 基于 GPU 的 Onion Hash 生成器,使用 OpenCL 创建 GPG 密钥与 .onion 地址︰ https://t.co/gMSLh6Nlus"
-
[ Tools ] Fav part of Pornin's SSL talk: when he decided to write a stack-based Forth dialect to work around limitations of C https://t.co/k40VBS0HQh
"BearSSL - 一个新的SSL库,可抵御大部分SSL攻击: https://t.co/k40VBS0HQh"
-
[ Tools ] File Format Posters by @ corkami : https://github.com/corkami/pics/tree/master/binary https://t.co/6BTWtkgFvv
"以图片的形式形象地展示各文件格式的数据结构: https://t.co/JOmJVWbhfQ "
-
[ Tools ] IDA pro plugin to find crypto constants (and more) based on YARA https://github.com/polymorf/findcrypt-yara https://t.co/Ah7olcavus
"findcrypt-yara - 用于寻找加密常量的一个 IDA 脚本: https://t.co/Hlp449MevT "
-
[ Vulnerability ] .#Baseband vulnerability within (Huawei) HiSilicon Balong integrated 4G LTE modems. https://threatpost.com/baseband-zero-day-exposes-millions-of-mobile-phones-to-attack/124833/ via @ threatpost
"据 threatpost 报道,存在一个未公开的基带漏洞,华为智能手机等首当其冲: https://t.co/yCBNUKbIzI"