腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Android 2017 年 10 月补丁公告: https://source.android.com/security/bulletin/2017-10-01
-
[ Linux ] 利用电压错误注入(Voltage Fault Injection)攻击实现 Linux 操作系统的提权: https://www.riscure.com/publication/escalating-privileges-linux-using-fault-injection/
-
[ MalwareAnalysis ] 对窃取网页表单信息的恶意软件的详细分析: https://thisissecurity.stormshield.com/2017/09/28/analyzing-form-grabber-malware-targeting-browsers/
-
[ MalwareAnalysis ] 逆向分析恶意软件 - TrickBot part 1: https://qmemcpy.github.io/post/reverse-engineering-malware-trickbot-part-1-packer
-
[ Others ] 发射器中的幽灵:分析多种信号以检测物理层中的隐蔽通道: https://www.researchgate.net/publication/319955407_A_Ghost_in_your_Transmitter_analyzing_polyglot_signals_for_physical_layer_covert_channels_detection
-
[ Others ] 区块链(Block Chains)相关的资料收集: https://github.com/openblockchains/awesome-blockchains
-
[ Protocol ] 打破邮件 DKIM 认证的详细方法: http://noxxi.de/research/breaking-dkim-on-purpose-and-by-chance.html
-
[ SecurityReport ] 安全补丁的大规模研究(Paper): http://www.icir.org/vern/papers/patch-study.ccs17.pdf
-
[ Tools ] Nzyme - 采集 802.11 管理数据帧,实现基于日志的 WiFi IDS: https://github.com/lennartkoopmann/nzyme
-
[ Windows ] 滥用 GDI 实现 RING0 层内核漏洞利用攻击,来自 BlueFrostSecurity: https://labs.bluefrostsecurity.de/files/Abusing_GDI_for_ring0_exploit_primitives_Evolution_Slides.pdf