SecWiki周刊(第131期)
2016/08/29-2016/09/04
安全资讯
入侵 Kernel.org 的黑客被捕
http://www.solidot.org/story?sid=49557
http://www.solidot.org/story?sid=49557
远程控制木马“复仇Revenge v 0.2”可供免费下载
http://www.easyaq.org/info/infoLink/638353972.shtml
http://www.easyaq.org/info/infoLink/638353972.shtml
DARPA微系统技术办公室的三大关注点
http://mp.weixin.qq.com/s?__biz=MzA5NjI5OTMxMg==&mid=2650786951&idx=1&sn=a409923af62fc050d9910c224715a362&scene=1&srcid=0903uR2S1RFwbr452ixu1XeH#rd
http://mp.weixin.qq.com/s?__biz=MzA5NjI5OTMxMg==&mid=2650786951&idx=1&sn=a409923af62fc050d9910c224715a362&scene=1&srcid=0903uR2S1RFwbr452ixu1XeH#rd
《G20国家互联网发展研究报告<总报告>》八大看点
http://mp.weixin.qq.com/s?__biz=MzA3NjE0MjczMg==&mid=2654053801&idx=2&sn=7b3bd2ba1fe8bc76a433040d4ba5d1e7&scene=1&srcid=09010h7FCNNNiLXlznYzmh5V#rd
http://mp.weixin.qq.com/s?__biz=MzA3NjE0MjczMg==&mid=2654053801&idx=2&sn=7b3bd2ba1fe8bc76a433040d4ba5d1e7&scene=1&srcid=09010h7FCNNNiLXlznYzmh5V#rd
知远防务快讯2016.08.19[第335期]
http://www.knowfar.org.cn/enews/2016-08-19.htm
http://www.knowfar.org.cn/enews/2016-08-19.htm
监控设备供货商Cobham产品目录被泄
http://mp.weixin.qq.com/s?__biz=MzI4MjA1MzkyNA==&mid=2655294295&idx=1&sn=bd862a98a6c088d7f6e832fb6924f919&scene=1
http://mp.weixin.qq.com/s?__biz=MzI4MjA1MzkyNA==&mid=2655294295&idx=1&sn=bd862a98a6c088d7f6e832fb6924f919&scene=1
目标黑客“集市”:今年的KCon都有哪些亮点和干货?
http://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651068475&idx=1&sn=9d97b8345ce47e8b6e5d60da87c6a91e&scene=1
http://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651068475&idx=1&sn=9d97b8345ce47e8b6e5d60da87c6a91e&scene=1
如何看待安全圈的一些媒体文——安全不是要贩卖恐惧
http://blog.sina.com.cn/s/blog_72628e9f0102xkhz.html
http://blog.sina.com.cn/s/blog_72628e9f0102xkhz.html
Fireeye首次发布亚太地区M-Trends报告 再次抹黑中国
https://www2.fireeye.com/rs/848-DID-242/images/Mtrends2016.pdf
https://www2.fireeye.com/rs/848-DID-242/images/Mtrends2016.pdf
43 million passwords hacked in Last.fm breach
https://techcrunch.com/2016/09/01/43-million-passwords-hacked-in-last-fm-breach/
https://techcrunch.com/2016/09/01/43-million-passwords-hacked-in-last-fm-breach/
Taiwan's "Cyber Army" Plan
http://blog.project2049.net/2016/07/taiwans-cyber-army-plan.html
http://blog.project2049.net/2016/07/taiwans-cyber-army-plan.html
美国云存储服务Dropbox发生数据泄露事故 影响近6900万帐号
http://www.mottoin.com/88736.html
http://www.mottoin.com/88736.html
U.S. military computer attacked
http://www.nbcnews.com/id/3078482/ns/technology_and_science-tech_and_gadgets/t/us-military-computer-attacked/#.V8kqdfkmhyC
http://www.nbcnews.com/id/3078482/ns/technology_and_science-tech_and_gadgets/t/us-military-computer-attacked/#.V8kqdfkmhyC
Hackers Stole Account Details for Over 60 Million Dropbox Users
http://motherboard.vice.com/read/hackers-stole-over-60-million-dropbox-accounts
http://motherboard.vice.com/read/hackers-stole-over-60-million-dropbox-accounts
Transmission官方客户端被替换成恶意版本
http://www.solidot.org/story?sid=49537
http://www.solidot.org/story?sid=49537
安全技术
Z3约束求解器入门指南
http://rise4fun.com/z3/tutorial/guide
http://rise4fun.com/z3/tutorial/guide
PyQemu基于动态二进制插桩的加密监测框架
https://github.com/pleed/pyqemu
https://github.com/pleed/pyqemu
Web安全测试中常见逻辑漏洞解析(实战篇)
http://www.freebuf.com/vuls/112339.html
http://www.freebuf.com/vuls/112339.html
DN42 - 一个大型的 VPN 网络
https://imlonghao.com/45.html
https://imlonghao.com/45.html
web中各种命令注入的检测和利用一
http://blog.csdn.net/qq_29277155/article/details/52421578
http://blog.csdn.net/qq_29277155/article/details/52421578
Osx Apache Code To Reveal CVE-2013-0966 漏洞分析
http://www.thinkings.org/2016/06/01/osx-code-receal-cve-2013-0966.html
http://www.thinkings.org/2016/06/01/osx-code-receal-cve-2013-0966.html
DIY天线自动追踪系统OpenATS
http://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651061796&idx=3&sn=5acaafbffbcf540ea84752d06535a0ab&scene=0#rd
http://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651061796&idx=3&sn=5acaafbffbcf540ea84752d06535a0ab&scene=0#rd
iOS 10 - Kernel Heap Revisited
https://papers.put.as/papers/ios/2016/D2-StefanEsser-iOS10KernelHeapRevisited.pdf
https://papers.put.as/papers/ios/2016/D2-StefanEsser-iOS10KernelHeapRevisited.pdf
开源BTS产品中存在多处漏洞,攻击者或可劫持手机通讯基站
http://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651061808&idx=1&sn=b32dbe04a35984f0e66131d0d6df6a6d&scene=0#rd
http://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651061808&idx=1&sn=b32dbe04a35984f0e66131d0d6df6a6d&scene=0#rd
隐写技巧——PNG文件中的LSB隐写
http://www.mottoin.com/88380.html
http://www.mottoin.com/88380.html
我的Kaggle初体验 -- Grupo Bimbo Inventory Demand
https://zhuanlan.zhihu.com/p/22266330
https://zhuanlan.zhihu.com/p/22266330
看警方如何社工暗网恋童网站逮捕虐童狂魔
http://www.freebuf.com/news/113231.html
http://www.freebuf.com/news/113231.html
zabbixPwn: Zabbix Jsrpc.php Injection Exploit
https://github.com/re4lity/zabbixPwn
https://github.com/re4lity/zabbixPwn
跨虚拟机的 Row Hammer 攻击以及虚拟机逃逸
https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_xiao.pdf
https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_xiao.pdf
国内自有内核手机浏览器安全情况分析
http://appscan.360.cn/blog/?p=76
http://appscan.360.cn/blog/?p=76
Moeditor — Your all-purpose markdown editor
https://moeditor.github.io/
https://moeditor.github.io/
FreeTalk深圳站活动部分PPT#密码: 17sm
https://pan.baidu.com/share/init?shareid=3878110204&uk=2653424809
https://pan.baidu.com/share/init?shareid=3878110204&uk=2653424809
VulApps: 快速搭建各种漏洞环境(Various vulnerability environment)
https://github.com/Medicean/VulApps
https://github.com/Medicean/VulApps
Arduino IoT 设备的安全性分析和漏洞利用
http://www.seg.inf.uc3m.es/~guillermo-suarez-tangil/papers/2016mal-iot.pdf
http://www.seg.inf.uc3m.es/~guillermo-suarez-tangil/papers/2016mal-iot.pdf
《猎捕Lurk犯罪组织》来自卡巴斯基的报告
https://securelist.com/analysis/publications/75944/the-hunt-for-lurk/
https://securelist.com/analysis/publications/75944/the-hunt-for-lurk/
感染百万物联网设备的BASHLITE家族恶意代码简要分析
http://mp.weixin.qq.com/s?__biz=MzI4ODA4MTcxMA==&mid=2649549772&idx=1&sn=6ef949ed1c893a7d08b4ea5f5ceea2e4&scene=1
http://mp.weixin.qq.com/s?__biz=MzI4ODA4MTcxMA==&mid=2649549772&idx=1&sn=6ef949ed1c893a7d08b4ea5f5ceea2e4&scene=1
利用SameSiet特性阻断跨站时序攻击
https://www.igvita.com/2016/08/26/stop-cross-site-timing-attacks-with-samesite-cookies/
https://www.igvita.com/2016/08/26/stop-cross-site-timing-attacks-with-samesite-cookies/
安全奥斯卡(Pwnie Awards 2016)获奖名单
http://www.freebuf.com/news/113309.html
http://www.freebuf.com/news/113309.html
CylancePROTECT® vs. FSociety Ransomware
https://blog.cylance.com/cylanceprotect-vs-fsociety-ransomware
https://blog.cylance.com/cylanceprotect-vs-fsociety-ransomware
PHP7反序列化漏洞的利用
http://blog.checkpoint.com/wp-content/uploads/2016/08/Exploiting-PHP-7-unserialize-Report-160829.pdf
http://blog.checkpoint.com/wp-content/uploads/2016/08/Exploiting-PHP-7-unserialize-Report-160829.pdf
基于 Unicorn 引擎,调用恶意软件自身的解密代码
http://researchcenter.paloaltonetworks.com/2016/08/unit42-pythons-and-unicorns-and-hancitoroh-my-decoding-binaries-through-emulation/
http://researchcenter.paloaltonetworks.com/2016/08/unit42-pythons-and-unicorns-and-hancitoroh-my-decoding-binaries-through-emulation/
ICS/SGADA学习资料库
http://www.robertmlee.org/a-collection-of-resources-for-getting-started-in-icsscada-cybersecurity/
http://www.robertmlee.org/a-collection-of-resources-for-getting-started-in-icsscada-cybersecurity/
CentOS下tomcat安全配置
http://mp.weixin.qq.com/s?__biz=MzI3NzMzNzE5Ng==&mid=2247483853&idx=1&sn=6b9a41c30f70335a87aba04fc476356a&scene=1&srcid=0903KLbWJiAjpJSwzggQuh94#rd
http://mp.weixin.qq.com/s?__biz=MzI3NzMzNzE5Ng==&mid=2247483853&idx=1&sn=6b9a41c30f70335a87aba04fc476356a&scene=1&srcid=0903KLbWJiAjpJSwzggQuh94#rd
Python中编码二三事
http://das.scusec.org/2016/09/02/python-chardet/
http://das.scusec.org/2016/09/02/python-chardet/
IOS设备APT攻击Pegasus详细技术报告
https://info.lookout.com/rs/051-ESQ-475/images/lookout-pegasus-technical-analysis.pdf
https://info.lookout.com/rs/051-ESQ-475/images/lookout-pegasus-technical-analysis.pdf
PHP-vulnerability-audit-cheatsheet
https://github.com/dustyfresh/PHP-vulnerability-audit-cheatsheet
https://github.com/dustyfresh/PHP-vulnerability-audit-cheatsheet
Binary's blog: Neutrino Exploit Kit
http://binaryhax0r.blogspot.com/2016/08/neutrino-exploit-kit-swf-analysis.html
http://binaryhax0r.blogspot.com/2016/08/neutrino-exploit-kit-swf-analysis.html
Windows调试符号下载,包括Windows 10符号
https://developer.microsoft.com/en-us/windows/hardware/download-symbols
https://developer.microsoft.com/en-us/windows/hardware/download-symbols
百度开源深度学习平台PaddlePaddle
https://github.com/baidu/paddle
https://github.com/baidu/paddle
IoT Home Router Botnet Leveraged in Large DDoS Attack
https://blog.sucuri.net/2016/09/iot-home-router-botnet-leveraged-in-large-ddos-attack.html
https://blog.sucuri.net/2016/09/iot-home-router-botnet-leveraged-in-large-ddos-attack.html
独立挖了hackerone 50W美金的安全研究人员的总结
https://www.bugbountyhq.com/front/latestnews/dWRWR0thQ2ZWOFN5cTE1cXQrSFZmUT09/
https://www.bugbountyhq.com/front/latestnews/dWRWR0thQ2ZWOFN5cTE1cXQrSFZmUT09/
Pegasus间谍套件内部原理及流程剖析
http://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458279399&idx=1&sn=bb43a07a941d2e59c2cccd981a092bd6&scene=0#rd
http://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458279399&idx=1&sn=bb43a07a941d2e59c2cccd981a092bd6&scene=0#rd
Powershell禁用绕过白名单防护
http://www.mottoin.com/88841.html
http://www.mottoin.com/88841.html
泰GSB银行ATM劫案样本分析报告
http://blog.nsfocus.net/gsb-bank-atm-robberies-sample-analysis-report/
http://blog.nsfocus.net/gsb-bank-atm-robberies-sample-analysis-report/
NSO使用的iOS/macOS xnu kernel UAF漏洞分析
http://sektioneins.de/en/blog/16-09-02-pegasus-ios-kernel-vulnerability-explained.html
http://sektioneins.de/en/blog/16-09-02-pegasus-ios-kernel-vulnerability-explained.html
Using Chrome’s web-custom-data UTI to inject a stored XSS in Slack
https://labs.detectify.com/2016/09/01/using-chromes-web-custom-data-uti-to-inject-a-stored-xss-in-slack/
https://labs.detectify.com/2016/09/01/using-chromes-web-custom-data-uti-to-inject-a-stored-xss-in-slack/
D-Link路由器固件后门,导致内网域名劫持
http://www.freebuf.com/articles/terminal/113487.html
http://www.freebuf.com/articles/terminal/113487.html
编号SL-14RB:浅谈卫星安全の第三弹
http://mp.weixin.qq.com/s?__biz=MzIzMzE2OTQyNA==&mid=2648946254&idx=1&sn=40eb37ab418913548ea6c4a9f1d10a9d&scene=1
http://mp.weixin.qq.com/s?__biz=MzIzMzE2OTQyNA==&mid=2648946254&idx=1&sn=40eb37ab418913548ea6c4a9f1d10a9d&scene=1
Breaking XSS WAF Evasion CheatSheet
http://www.rafayhackingarticles.net/2016/09/breaking-great-wall-of-web-xss-waf.html#
http://www.rafayhackingarticles.net/2016/09/breaking-great-wall-of-web-xss-waf.html#
github-dorks: Collection of github dorks and helper tool
https://github.com/techgaun/github-dorks
https://github.com/techgaun/github-dorks
Needle:iOS的安全性测试框架
http://www.mottoin.com/88741.html
http://www.mottoin.com/88741.html
一个矩形pwn掉整个内核系列之一 – zone的舞蹈
https://blog.flanker017.me/blitzard-1/
https://blog.flanker017.me/blitzard-1/
老旧版本libupnp库安全风险分析
http://appscan.360.cn/blog/?p=114
http://appscan.360.cn/blog/?p=114
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第131期)
