25
9月

Tittle: 2017.9.26

0 作者:admin

CVE-2017-11281: Adobe Flash Out-of-bounds write in MP4 Edge Processing

Analyzing the Various Layers of AgentTesla’s Packing

Bankbot trojan returns to Google Play with new tricks

Additional information regarding the recent CCleaner APT security incident

深入分析CCleaner后门代码 - 编译环境污染类的供应链攻击案例

Abuse Cache of WinNTFileSystem : Yet Another Bypass of Tomcat CVE-2017-12615

Armory vulnerablity, read if you're using Shamir Secret Sharing implementation

Reversing DirtyC0W

Unix Privilege Escalation - SUID Executables

Building the DeathStar: getting DA with a push of a button

Breaking security controls using domain hijacking

Biting the Apple that feeds you-macOS Kernel Fuzzing

BLE Application Hacking

CLKScrew attack uses energy management faulting attack to break trust zone on android phones

Sysmon v6.10 VS WMI Persistence

Finding Bugs in Cryptographic Hash Function Implementations

Modeling and Detecting False Data Injection Attacks against Railway Traction Power Systems

Meet Gatebot - a bot that allows us to sleep(Cloudflare DDOS Mitigations)

Slitheen: Perfectly Imitated Decoy Routing through Traffic Replacement

SecWiki周刊(2017/09/18-2017/09/24)

tools Edge/IE display driver crash with WebGL.(IE/Win10/ATI)

tools Google Chrome WebAssembly Information Disclosure Vulnerability(CVE-2017-5088) PoC

tools Mobile-deep-learning(MDL):百度研发的移动端深度学习框架,致力于让卷积神经网络极度简单的部署在手机端。目前正在手机百度内运行。支持iOS gpu计算。体积小,速度快。

tools IDA Python Embedded Toolkit -- IDAPython scripts for automating analysis of firmware of embedded devices

tools Cherow is a very fast, standard-compliant ECMAScript parser written in ECMAScript.

tools geoip-attack-map:Cyber security geoip attack map that follows syslog and parses IPs/port numbers to visualize attackers in real time.


评论


当前没有评论,快来评论吧!





来说点什么吧