360-CERT每日安全简报
Daily Security Briefing
2020-10-18 星期天
安全工具 Security Tools
Crowdsec - 一款开源的终端安全检测产品
https://github.com/crowdsecurity/crowdsec
SlabDbg - 用于辅助调试Linux内核 SLUB 内存管理的脚本
https://github.com/NeatMonster/slabdbg
MaMoCrypt勒索软件解密工具
https://labs.bitdefender.com/2020/10/mamocrypt-ransomware-decryption-tool/
安全报告 Security Report
SlothfulMedia恶意程序报告
https://us-cert.cisa.gov/ncas/analysis-reports/ar20-275a
安全研究 Security Research
从内而外破解HTTP CORS:理论到实践
https://medium.com/bugbountywriteup/hacking-http-cors-from-inside-out-512cb125c528
Windows Defender 应用控制的推荐阻断规则分析
https://bohops.com/2020/10/15/exploring-the-wdac-microsoft-recommended-block-rules-visualuiaverifynative/
V8 引擎空指针引用漏洞的新利用方法
https://blog.br0vvnn.io/pages/blogpost.aspx?id=1&ln=0
利用Linux内核中的栈漏洞泄露内核指针
https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf
QEMU KVM学习笔记
https://github.com/yifengyou/learn-kvm
安全事件 Security Incident
Barnes & Noble遭网络攻击:消费者邮箱、购买记录被盗
https://www.cnbeta.com/articles/tech/1040853.htm
波多黎各消防局的服务器遭到攻击
https://securityaffairs.co/wordpress/109551/hacking/puerto-rico-firefighting-department-attack.html
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn