【知识】10月30日 - 每日安全知识热点

热点概要：ubuntu 18.04 LTS (Bionic Beaver) 已开放开发了、Matrix Ransomware通过恶意广告开始传播、checkpoint对IoT_Reaper僵尸网络的详细分析、Google Chrome GPU Memory Corruption Vulnerability (CVE-2017-5112)（细节以及POC）、Exitmap：Tor出口中继的快速模块化的scanner

资讯类：

ubuntu 18.04 LTS (Bionic Beaver) 已开放开发了

http://news.softpedia.com/news/ubuntu-18-04-lts-bionic-beaver-is-now-officially-open-for-development-518237.shtml 

Matrix Ransomware通过恶意广告开始传播

http://securityaffairs.co/wordpress/64920/malware/matrix-ransomware-malvertising.html 

回答关于南非大规模“Master Deeds”数据泄露的问题

https://www.troyhunt.com/questions-about-the-massive-south-african-master-deeds-data-breach-answered/ 

The CyberWire每日播客

https://www.thecyberwire.com/podcasts/cw-podcasts-daily-2017-10-27.html

技术类：

checkpoint对IoT_Reaper僵尸网络的详细分析

https://research.checkpoint.com/iotroop-botnet-full-investigation/ 

Google Chrome GPU Memory Corruption Vulnerability (CVE-2017-5112)（细节以及POC）

https://bugs.chromium.org/p/chromium/issues/detail?id=740603 

Blazy：一个现代的登录暴力破解器，也可测试CSRF，点击劫持，Cloudflare 以及WAF

https://github.com/UltimateHackers/Blazy/ 

Hacking with dex-oracle以对Android恶意软件进行反混淆

https://rednaga.io/2017/10/28/hacking-with-dex-oracle-for-android-malware-deobfuscation/ 

Exitmap：TOR出口中继的快速模块化的scanner

http://www.kitploit.com/2017/10/exitmap-fast-and-modular-scanner-for.html 

https://github.com/NullHypothesis/exitmap

A Client/Server Model for Masking C&C via Legitimate Behavior over HTTP

https://github.com/trustedsec/trevorc2/blob/master/README.md 

如何 使用Shadow Volume Copies恢复文件

https://www.bleepingcomputer.com/tutorials/how-to-recover-files-and-folders-using-shadow-volume-copies/ 

如何安全地将你的文件藏在图片中

http://hackingnewstutorials.com/how-to-safely-hide-your-files-and-folders-inside-images/