腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Conference ] BlackHat USA 2017 - on SHA1 collision https://www.blackhat.com/us-17/briefings.html#how-we-created-the-first-sha-1-collision-and-what-it-means-for-hash-security https://t.co/iMHjjmK14l
" 在今年 7 月份的 BlackHat USA 会议上,Google 的研究员将要谈他们是怎么发现第一个 SHA1 碰撞的,以及这对 Hash 安全性的影响: https://t.co/6Mqp6hqTGh "
-
[ Firmware ] Researchers find 10 vulnerabilities in 20+ Linksys Smart Wi-Fi routers : http://blog.ioactive.com/2017/04/linksys-smart-wi-fi-vulnerabilities.html
"Linksys Smart Wi-Fi 路由器( EA3500 系列)中发现存在 10 个漏洞︰ https://t.co/aOFIVoD01L"
-
[ Network ] Top countries hijacking the Google DNS resolver (8.8.8.8): choose your proxy wisely ;-) https://recdnsfp.github.io/… https://t.co/cHZYURfALy
"通过为 DNS 解析服务器建立指纹库的方式检测 DNS 劫持攻击,基于机器学习识别出正常 DNS 服务器与恶意 DNS 服务器: https://t.co/3QayCzleyl"
-
[ Others ] Using SCOM to Capture Suspicious Process Creation Events - https://blogs.technet.microsoft.com/nathangau/2017/04/20/using-scom-to-capture-suspicious-process-creation-events/
" 使用 SCOM 捕获创建可疑进程的事件: https://t.co/MWk711CUUN"
-
[ Others ] DoublePulsar Initial SMB Backdoor Ring 0 Shellcode Analysis http://nzzl.us/gqELFfn
"NSA FuzzBunch SMB 利用代码中的 Ring0 Shellcode Payload(DoublePulsar)分析: https://t.co/Hf87KZzii3"
-
[ Windows ] https://twitter.com/subtee/status/855862615020421120 AMSI bypass and VBScript Parameter injection inside ;-)
"Windows 考古学与 COM 技术,来自 BSides Nashville 2017 会议: https://t.co/1RlMq1rhOo Github: https://github.com/subTee/windows-operating-system-archaeology"