360-CERT每日安全简报
Daily Security Briefing
2020-11-03 星期二
漏洞 Vulnerability
分析Apache Tomcat WebSocket 漏洞 (CVE-2020-13935)
https://blog.redteam-pentesting.de/2020/websocket-vulnerability-tomcat/
安全报告 Security Report
美人鱼(Infy)APT组织的归来——使用最新的Foudre后门进行攻击活动的分析
https://mp.weixin.qq.com/s/SY1oZO9I0VBn1BXEQolWEw
安全事件 Security Incident
CVE-2020-17087: Microsoft cng.sys权限提升漏洞通告
https://www.anquanke.com/post/id/221350
甲骨文发布紧急补丁修复WebLogic Server严重漏洞(CVE-2020-14750)
https://www.freebuf.com/news/253849.html
恶意软件 Malware
腾讯主机安全(云镜)捕获Kaiji DDoS木马通过SSH爆破入侵
https://mp.weixin.qq.com/s/hacyPAA82rgEBivwOYhuEg
安全研究 Security Research
TinkPHP5.0.X RCE-PHP7 新利用方式挖掘
https://mp.weixin.qq.com/s/u_zhosHaBq2gXZsZZxfPjA
PEzor 一款开源的可绕过杀软检测的 PE 文件加壳工具
https://securityonline.info/pezor-powerful-tool-for-bypassing-av-solutions/
Chrome 恶意拓展 User-Agent Switcher 分析笔记
https://blog.berd.moe/archives/chrome-spyware-extension-user-agent-switcher/
Chrome 恶意拓展 ModHeader 分析笔记
https://blog.berd.moe/archives/chrome-malware-extension-modheader/
配置AD蜜罐账户
https://www.hub.trimarcsecurity.com/post/the-art-of-the-honeypot-account-making-the-unusual-look-normal
D盾dll劫持利用
https://xz.aliyun.com/t/8419
深信服vpnweb登录逆向学习
https://www.cnblogs.com/potatsoSec/p/12326356.html
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn