腾讯玄武实验室安全动态推送(Tencent Xuanwu Lab Security Daily News)

腾讯玄武实验室安全动态推送

Tencent Xuanwu Lab Security Daily News

2017/05/08

Binni Shah @binitamshah

[ Browser ] Detecting and defeating browser spoofing : https://browserprint.info/blog/defeatingSpoofing

" 检测与防御浏览器的指纹欺骗： https://browserprint.info/blog/defeatingSpoofing "
Nicolas Krassas @Dinosn

[ Linux ] Painless intro to the Linux userland heap and heap-fengshui https://sensepost.com/blog/2017/painless-intro-to-the-linux-userland-heap-and-heap-fengshui/

" Linux 用户态堆以及漏洞利用中的堆风水技术（ptmalloc2 ）： https://sensepost.com/blog/2017/painless-intro-to-the-linux-userland-heap-and-heap-fengshui/ "
Kenn White @kennwhite

[ Malware ] Popular Mac app Handbrake bundled malware in downloads last week, team rebuilding dev infrastructure. Check pkg sigs https://t.co/evdU9xbLS6

" 开源 Mac 应用 Handbrake 的下载服务器被攻击且安装文件被替换： https://forum.handbrake.fr/viewtopic.php?f=33&;t=36364 对 HandBrake 被攻击后替换的恶意安装文件的简单分析： https://objective-see.com/products.html "
Binni Shah @binitamshah

[ Network ] Handling bot attacks against a Tor hidden service : http://www.hackerfactor.com/blog/index.php?/archives/762-Attacked-Over-Tor.html

" 基于 TOR 网络的攻击行为分析： http://www.hackerfactor.com/blog/index.php?/archives/762-Attacked-Over-Tor.html "
Daniel Bilar @daniel_bilar

[ Tools ] Universal PatchGuard & Driver Sig Enforcement Disable 2.0 by @Fyyre [req: admin & for EFI boot SecureBoot disabled] https://t.co/8ObmGlWePv

" UPGDSED - 用于强制关闭 PatchGuard 与驱动签名验证的通用型工具： https://github.com/hfiref0x/UPGDSED "
Pavel Yosifovich @zodiacon

[ Tools ] GFlagsX now supports Mitigation Options https://github.com/zodiacon/GflagsX/releases/tag/0.2 https://t.co/E5jrlNVwfe

" GflagsX - 增强版的 Windows GFlags，除了对调试相关选项的控制，还支持对利用缓解特性的控制： https://github.com/zodiacon/GflagsX "
Binni Shah @binitamshah

[ Tools ] rancher OS : Tiny Linux distro that runs the entire OS as Docker containers : https://github.com/rancher/os

" RancherOS - 一个精简版的 Linux 发行版，系统是一个 Docker 运行环境的最小集，系统本身以外的应用和服务由 Docker 动态管理： https://github.com/rancher/os "

XuanwuSpider via Github

[ Android ] Ultimate Android Reference - Android 终极手册，GitHub 上的这个项目按照类别收集了 Android 开发常用的各种库、各种图书、文章、视频资源： https://github.com/aritraroy/UltimateAndroidReference
XuanwuSpider via seebug

[ Android ] TrustZone安全技术研究： http://paper.seebug.org/296/
XuanwuSpider via trendmicro.com

[ Industry News ] Trend Micro 称近期的法国大选期间，攻击 Macron(马克龙) 选举团队背后的组织是 Pawn Storm，Pawn Storm 被认为与俄罗斯有关： https://www.theguardian.com/world/2017/apr/25/hackers-have-targeted-election-campaign-of-macron-says-cyber-firm https://documents.trendmicro.com/assets/wp/wp-two-years-of-pawn-storm.pdf
XuanwuSpider via 001001.org

[ Linux ] LINUX内核开发与调试 -- KDB，来自张银奎老师： http://001001.org/gedu/12_LINUX_Raymond_KDB.pdf
XuanwuSpider via whereisk0shl.top

[ Operating System ] FreeBSD 10.2 X64的整数溢出漏洞分析： http://whereisk0shl.top/post/2017-05-06
XuanwuSpider via www.csyssec.org

[ Others ] Index of Computer System and Security，专注计算机系统与安全领域工业与学术界成果的一个网站： http://www.csyssec.org/

2017/05/08