腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ iOS ] Very cool preso from #HITB2017AMS - "Attack Surface Extended by URL Schemes": https://conference.hitb.org/hitbsecconf2017ams/materials/D2T2%20-%20Yu%20Hong%20-%20Attack%20Surface%20Extended%20by%20URL%20Schemes.pdf
"通过 URL Schemes 拓展的攻击面,来自 HITB 2017 AMS: https://t.co/L6vP8aDm7P"
-
[ Others ] Generic #malware #unpacking with @ radareorg and #r2pipe using #locky as an example http://blog.devit.co/unpacking-with-r2pipe/
"基于 r2pipe 的通用脱壳: https://t.co/F1JkZyeVqM"
-
[ Others ] #ShadowBrokers Table with all the exploits leaked based on public info to help understand the impact for current an… https://t.co/YqEDZ7O7jm
"一张图看清方程式泄露 Windows 攻击工具的影响的 Windows 版本情况: https://t.co/YqEDZ7O7jm "
-
[ Programming ] Python Anti-Patterns - The Little Book of Python Anti-Patterns and Worst Practice : https://docs.quantifiedcode.com/python-anti-patterns/latex/The-Little-Book-of-Python-Anti-Patterns-1.0.pdf (pdf)
"Python Anti-Patterns - Python 编码的反面案例︰ https://t.co/aejlaNiFyL "
-
[ Vulnerability ] The story of how I found & exploited XSS to execute SQL Queries and RCE on pgAdmin 4. https://blog.liftsecurity.io/2017/04/14/sql-and-more-via-xss-in-pgadmin4/ https://t.co/nKVvEJwQnn
"PostgreSQL 管理工具 pgAdmin 4 中 XSS 漏洞的发现和利用: https://t.co/MCcLNLdvSe https://t.co/nKVvEJwQnn"
-
Xuanwu Spider via ele7enxxh.com[ Android ] Details of Denial of Service Vulnerability in Andriod Libskia (CVE-2017-0548): http://ele7enxxh.com/Details-Of-Denial-Of-Service-Vulnerability-In-Libskia-CVE-2017-0548.html
-
Xuanwu Spider via leucosite.com
[ Browser ] input 标签 webkitdirectory 属性相关的跨浏览器本地文件泄露漏洞: http://leucosite.com/Chrome-Firefox-Edge-Local-File-Disclosure/
-
Xuanwu Spider via project-zero/issues/detail?id=965#c10
project zero
[ iOS ] ianbeer 分享的关于 mach_portal 漏洞利用的 Paper: https://bugs.chromium.org/p/project-zero/issues/detail?id=965#c10
-
Xuanwu Spider via 看雪学院
[ Network ] IIS 6.0 WebDAV CVE-2017-7269 样本调试笔记(一): https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458282525&idx=1&sn=fd6d49991327b740f498cc09aacbed38&chksm=b1815a9786f6d3811a269eb01b4f46f963963f64f0186970320f5fff9f32b8fef9ba3f1530d7&mpshare=1&scene=23&srcid=0414LRfIonKw2yG91gM1v5IN#rd
-
Xuanwu Spider via twitter
[ Others ] 前 KGB(克格勃)的成员是如何保护自己的指纹的,just for fun: https://twitter.com/englishrussia1/status/852167084817752064
-
Xuanwu Spider via 001001.org
[ Tools ] 张银奎老师总结的《双剑合璧——WinDBG与GDB之理一分殊》: http://001001.org/gedu/00_WARS_RAYMOND_OPEN.pdf
-
Xuanwu Spider via xfocus.net
[ Windows ] 方程式泄露的 SMB 0Day Exploits 威力巨大,修改 SMB 默认端口也许可以临时缓解一下,躲避批量扫描工具。来自 tombkeeper 2004 年的一篇 Paper《修改Windows SMB相关服务的默认端口》: http://www.xfocus.net/releases/200408/a723.html
-
Xuanwu Spider via freebuf
[ Windows ] Windows Server 2012 R2的提权过程解析: http://www.freebuf.com/articles/system/130352.html
-
Xuanwu Spider via inn0team wechat
[ Windows ] 《方程式 0day ETERNALBLUE 复现过程》: https://mp.weixin.qq.com/s?__biz=MzIyNTA1NzAxOA==&mid=502990295&idx=1&sn=181c1e9b01854b87d3d4752c593c4dd4&chksm=700a2442477dad54b542427edad3ec16df8cde9f470ee4e6f4597d4866d64b405801baf3d799&mpshare=1&scene=23&srcid=0415GxTpNYqgzPgtAveSn6s1#rd
-
Xuanwu Spider via freebuf
[ Windows ] 《ShadowBroker释放的NSA工具部分(windows)fb.py复现和中招检查方法》: http://www.freebuf.com/sectool/132076.html
-
Xuanwu Spider via freebuf
[ Windows ] 《ShadowBroker是这样放大招的:Windows零日利用工具更多数据呈现》: http://www.freebuf.com/articles/system/132028.html