360-CERT每日安全简报
Daily Security Briefing
2020-01-21 星期二
漏洞 Vulnerability
CVE-2020-0674: Internet Explorer远程代码执行漏洞通告
https://cert.360.cn/warning/detail?id=0fa7b4c354870bea4e76904d1950b94b
从Hyper-V管理员到SYSTEM
https://decoder.cloud/2020/01/20/from-hyper-v-admin-to-system/
安全工具 Security Tools
用于分析 UEFI 的IDA插件
https://github.com/yeggor/UEFI_RETool/tree/master/ida_plugin
Dnsbeat:DNS Zones 中的异常数据检测工具
https://thiebaut.dev/articles/automated-anomaly-detection-in-dns-records/
exrop:rop链自动生成工具
https://github.com/d4em0n/exrop
安全报告 Security Report
2019 年威胁情报领域的 Top 20 议题
https://threatintel.eu/2020/01/09/top-20-cti-presos-for-2019/
安全资讯 Security Information
黑客泄露超过500,000台服务器,路由器和IoT设备的密码
https://www.zdnet.com/article/hacker-leaks-passwords-for-more-than-500000-servers-routers-and-iot-devices/
安全研究 Security Research
分析iOS屏幕缓冲区——一个内核逆向的实验
https://medium.com/@bellis1000/exploring-the-ios-screen-frame-buffer-a-kernel-reversing-experiment-6cbf9847365
逆向分析宝马汽车APP连接协议
https://hufman.github.io/stories/bmwconnectedapps
分析Linux内核中的控制流完整性(CFI)——Slides
https://outflux.net/slides/2020/lca/cfi.pdf
Firefox中JavaScript引擎(Spidermonkey)的oob漏洞利用分析
https://drive.google.com/file/d/14QaY8Eca5bhyA_cEiHuPLmVaH9tsnPY-/view
XNU/IOKit 信息泄露漏洞(1day),针对iOS 13.3.1 beta 2版本,附漏洞利用代码和分析
https://github.com/Siguza/cuck00?fbclid=IwAR29DYvGbM09D0udAslZDYJEej_tQu9G4W1dlHrTQt41KunQeqwH3u2EHfY
Fuzzing平台建设的研究与设计
https://security.tencent.com/index.php/blog/msg/143
使用Security Onion嗅探解密的TLS流量
https://www.netresec.com/index.ashx?page=Blog&month=2020-01&post=Sniffing-Decrypted-TLS-Traffic-with-Security-Onion
Hypervisor系列教程 Part7:使用EPT和页面级监视功能
https://rayanfam.com/topics/hypervisor-from-scratch-part-7/
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn