每日安全动态推送(08-13)

admin 腾讯玄武实验室 2019-08-13


Tencent Security Xuanwu Lab Daily News


• 对某单位的 APT 攻击样本分析: 
https://paper.seebug.org/1011/

   ・ 知道创宇安全团队对 HW 行动中一起APT攻击事件的分析 – Jett


• EDR Is Coming; Hide Yo Sh!t: 
https://speakerdeck.com/tophertimzen/edr-is-coming-hide-yo-sh-t

   ・ 利用系统早期启动机制及 UEFI 固件实现对 EDR 的检测逃逸 – Jett


• [Android, Tools] maddiestone/ConPresentations: 
https://github.com/maddiestone/ConPresentations/blob/master/KasperskySAS2019.Chamois.pdf

   ・ Chamois - 2018 年 Android 平台影响最大的 Botnet 恶意软件 – Jett


• What is Paged Out!?: 
https://pagedout.institute/?page=issues.php

   ・ 一份新办的安全技术杂志,第一期的内容已经出来,文章篇幅大多不长,但很多介绍的小技巧非常有趣 – LW


• [Android] [PDF] https://i.blackhat.com/USA-19/Thursday/us-19-Stone-Securing-The-System-A-Deep-Dive-Into-Reversing-Android-Preinstalled-Apps.pdf: 
https://i.blackhat.com/USA-19/Thursday/us-19-Stone-Securing-The-System-A-Deep-Dive-Into-Reversing-Android-Preinstalled-Apps.pdf

   ・ Android 系统预装 App 的逆向深度分析,来自 Google Project Zero 研究员在 BlackHat USA 2019 会议的演讲 – Jett


• [iOS, Hardware] Apple's iPhone FaceID Hacked In Less Than 120 Seconds: 
https://www.forbes.com/sites/daveywinder/2019/08/10/apples-iphone-faceid-hacked-in-less-than-120-seconds/

   ・ 玄武实验室研究员在 BlackHat USA 2019 会议上演示了利用眼镜和胶带绕过 iPhone FaceID 的面部识别 – Jett


• [Wireless] [PDF] https://i.blackhat.com/USA-19/Wednesday/us-19-Shaik-New-Vulnerabilities-In-5G-Networks-wp.pdf: 
https://i.blackhat.com/USA-19/Wednesday/us-19-Shaik-New-Vulnerabilities-In-5G-Networks-wp.pdf

   ・ 5G 通信网络的新漏洞,来自 BlackHat USA 2019 – Jett


• [Windows, Bug Bounty] [PDF] https://aka.ms/windowsbugbar: 
https://aka.ms/windowsbugbar

   ・ 微软关于 Windows 漏洞严重性分级的参考文档 – Jett


• [Vulnerability] Pwnie Awards: 
http://pwnies.com/2019/08/10/2019-winners-up.html

   ・ 2019 PWNIES AWARDS 奖的结果公布了 – Jett


• [Windows] Windows Code Injection: Bypassing CIG Through KnownDlls: 
https://tyranidslair.blogspot.com/2019/08/windows-code-injection-bypassing-cig.html

   ・ 使用DuplicateHandle和KnownDlls实现Windows DLL注入,该方法可以绕过CIG防护 – R3dF09


* 查看或搜索历史推送内容请访问: 
https://sec.today

* 新浪微博账号: 腾讯玄武实验室 
https://weibo.com/xuanwulab

    已同步到看一看

    发送中

    本站仅按申请收录文章,版权归原作者所有
    如若侵权,请联系本站删除
    觉得不错,分享给更多人看到
    腾讯玄武实验室 热门文章:

    BadTunnel:跨网段劫持广播协议    阅读/点赞 : 3386/54

    安全动态推送春节合辑(上)    阅读/点赞 : 449/5

    每日安全动态推送(02-21)    阅读/点赞 : 392/4

    每日安全动态推送(03-13)    阅读/点赞 : 390/6

    每日安全动态推送(09-19)    阅读/点赞 : 380/4

    每日安全动态推送(10-11)    阅读/点赞 : 378/4

    每日安全动态推送(06-20)    阅读/点赞 : 368/6

    每日安全动态推送(10-19)    阅读/点赞 : 344/4

    每日安全动态推送(11-25)    阅读/点赞 : 331/4

    每日安全动态推送(07-18)    阅读/点赞 : 320/4

    腾讯玄武实验室 微信二维码

    腾讯玄武实验室 微信二维码