2月4日-每日安全知识热点

1、kitty:一个python写的fuzzing框架

https://github.com/cisco-sas/kitty

2、R7-2015-27 and R7-2015-24: Fisher-Price Smart Toy® & hereO GPS 平台漏洞 (已经修复)

https://community.rapid7.com/community/infosec/blog/2016/02/02/security-vulnerabilities-within-fisher-price-smart-toy-hereo-gps-platform

3、脑波技术:安全考虑?我不这么认为

http://blog.ioactive.com/2016/02/brain-waves-technologies-security-in.html

4、意图弃用和移除:不安全的TLS版本回退

https://groups.google.com/a/chromium.org/forum/#!topic/security-dev/yz1lU9YTeys

5、堆溢出技术学习

https://github.com/shellphish/how2heap

6、MMD-0051-2016 – 揭穿一个很小的ELF远程后门程序第二部分

http://blog.malwaremustdie.org/2016/02/mmd-0051-2016-debungking-tiny-elf.html

7、编码vs加密vs哈西vs混淆

https://danielmiessler.com/study/encoding_encryption_hashing/

8、TelcoSecDay 2016 安全会议第二天的议题总结

https://www.insinuator.net/2016/02/telcosecday-2016-second-round-of-talks/

9、DDOS攻击分析取证

https://www.netfort.com/blog/forensic-analysis-of-a-ddos-attack/#.VrKm9xCSzWY

10、2016年的即将召开的网络安全会议汇总

https://www.concise-courses.com/security/conferences-of-2016/

11、Emissary木马[在东南亚网络间谍活动的]演变记录

http://researchcenter.paloaltonetworks.com/2016/02/emissary-trojan-changelog-did-operation-lotus-blossom-cause-it-to-evolve/

12、Nuclear EK通过大量被渗透的wordpress博客来分发

https://blog.malwarebytes.org/exploits-2/2016/02/nuclear-ek-leveraged-in-large-wordpress-compromise-campaign/