11月23日-每日安全知识热点

阅读量    34019 |

分享到: QQ空间 新浪微博 微信 QQ facebook twitter

http://p1.qhimg.com/t01ee0ded1a480b06ce.jpg

1、美国联合航空的一个严重漏洞

http://randywestergren.com/united-airlines-bug-bounty-an-experience-in-reporting-a-serious-vulnerability/

2、Windows Named Pipes: There and back again

https://labs.portcullis.co.uk/blog/windows-named-pipes-there-and-back-again/


3、vonteera恶意软件使用证书逃避anti-malware

https://blog.malwarebytes.org/security-threat/2015/11/vonteera-adware-uses-certificates-to-disable-anti-malware/

4、PowerForensics v1.0.1发行: 一个live硬盘取证平台,修复小bug,增强帮助文档

https://github.com/Invoke-IR/PowerForensics/releases/tag/v1.0.1


5、利用mana + bdfproxy实现恶意ap访问点的PE后门注入

http://decidedlygray.com/2015/11/19/evil-access-point-with-auto-backdooring-ftw/

6、通过OpenGL来hacking GCN

https://onedrive.live.com/view.aspx?resid=EBE7DEDA70D06DA0!107&app=PowerPoint&authkey=!AD-O3oq3Ung7pzk


7、mysql注入时,concat()函数替代

http://pastebin.com/Wy0fhegr

8、ida pro 快捷键

https://www.hex-rays.com/products/ida/support/freefiles/IDA_Pro_Shortcuts.pdf


9、敲诈勒索软件之王:分析CTB-LOCKER

https://samvartaka.github.io/malware/2015/11/20/ctb-locker/

10、利用马尔可夫链作为一个密钥模糊处理方法

https://bwall.github.io/markov-chains-keyed-obfuscation/


11、WMIOps工具介绍:一个powershell脚本,使用wmi访问网络。下载地址https://github.com/ChrisTruncer/WMIOps

https://www.christophertruncer.com/introducing-wmi-ops/

12、android 文件格式化fuzzing工具介绍

http://blog.c22.cc/2015/11/19/deepsec-2015-file-format-fuzzing-in-android-giving-a-stagefright-to-the-android-installer/


13、通过爬取alex top 1万得到的robots.txt目录字典

https://github.com/danielmiessler/RobotsDisallowed

14、Stream Detector:发现NTFS分区隐藏的ADS工具

http://www.novirusthanks.org/products/stream-detector/


15、Aircrack-ng 1.2发行:支持FREEBSD,更新OUI,修复多个BUG

http://aircrack-ng.blogspot.jp/2015/11/aircrack-ng-12-release-candidate-3.html

16、使用python审计企业密码

https://warroom.securestate.com/index.php/organizing-the-bad-news-auditing-passwords-with-python/


17、Phithon京东沙龙议题:被Git打破的企业安全大门.pdf

https://github.com/phith0n/Talks/blob/master/2015%20Nov%20Jingdong%20Salon/%E8%A2%ABGit%E6%89%93%E7%A0%B4%E7%9A%84%E4%BC%81%E4%B8%9A%E5%AE%89%E5%85%A8%E5%A4%A7%E9%97%A8.pdf

18、CrackMapExec发行:开始支持kerberos,powershell混淆

https://github.com/byt3bl33d3r/CrackMapExec


19、opendns如何预测攻击

http://blogs.cisco.com/security/how-opendns-predicts-attacks-when-hacker-infrastructure-is-cheap-and-plenty

20、WINDOWS OS 上的TOR取证ppt

https://digital-forensics.sans.org/summit-archives/dfirprague14/Tor_Forensics_On_Windows_OS_Mattia_Epifani.pdf


21、检测隐秘模式下的缓存攻击:Flush + Flush

http://dreamsofastone.blogspot.de/2015/11/detecting-stealth-mode-cache-attacks.html

分享到: QQ空间 新浪微博 微信 QQ facebook twitter
|推荐阅读
|发表评论
|评论列表
加载更多