热点概要:Winmail最新直达webshell 0day漏洞挖掘实录、CVE-2016-7434 ntpd 远程预认证拒绝服务漏洞、使用Radare分析Triada木马、我的WafBypass之道(SQL注入篇)
国内热词:
调查发现三款移动应用曝光了30亿电话号码
美国反对福建宏芯收购爱思强
中国以休耕治理重污染耕地
腾讯如何主导全球游戏市场
佛罗里达批准转基因蚊子实验,公众担心被转基因蚊子咬
资讯类:
通过蓝牙跟踪汽车
https://icyapril.com/privacy/2016/11/21/tracking-drivers-through-their-phones.html
技术类:
Winmail最新直达webshell 0day漏洞挖掘实录
http://www.91ri.org/16519.html
win10不能像EMET那样保护不安全的程序
CVE-2016-7434 ntpd 远程预认证拒绝服务漏洞
http://dumpco.re/cve-2016-7434/
Lost your “secure” HDD PIN? We can help!
https://syscall.eu/pdf/2016-Lenoir_Rigo-HDD_PIN.pdf
IoT安全:不知道的管理接口
WordPress (all versions): SPOF, RCE, and Negligence
http://www.openwall.com/lists/oss-security/2016/11/21/3
iocs资料汇总
https://github.com/sroberts/awesome-iocs
使用PowerForensics 进行勒索软件的应急响应
http://www.redblue.team/2016/11/ransomware-ir-with-powerforensics-and.html
使用Radare进行恶意软件分析,分析Triada木马
https://www.nowsecure.com/blog/2016/11/21/android-malware-analysis-radare-triada-trojan/
通过facebook扩散的Nemucod下载者
https://bartblaze.blogspot.com/2016/11/nemucod-downloader-spreading-via.html?spref=tw
逆向工程视觉小说101
https://hackernoon.com/reverse-engineering-visual-novels-101-d0bc3bf7ab8#.4344195v2
通过Crestron AM-100漏洞获取企业LAN的站稳脚跟
https://medium.com/@benichmt1/an-unwanted-wireless-guest-9433383b1673#.5o9ys3xum
tp-link tddp的多个漏洞
https://www.coresecurity.com/advisories/tp-link-tddp-multiple-vulnerabilities
使用一条内存写命令绕过Malwarebytes Anti-Exploit 1.08
监控 TOR 网络的'DNS'活动
http://blog.0x3a.com/post/153468210759/monitoring-dns-inside-the-tor-network
Palo Alto Networks PanOS: appweb3堆栈溢出漏洞
https://bugs.chromium.org/p/project-zero/issues/detail?id=908
伪装成银行APP的andorid恶意软件
https://blog.fortinet.com/2016/11/18/android-malware-masquerades-as-banking-app-part-ii
[CVE-2016-4673] Apple CoreGraphics macOS/iOS JPEG memory corruption
Unfolding obfuscated code with Reven (part 1, full write-up)
http://blog.tetrane.com/2016/11/reversing-f4b-challenge-part1.html
bin2json CTF 挑战的writeup
http://buffered.io/posts/bin2json-ctf-challenge/
我的WafBypass之道(SQL注入篇)