360-CERT每日安全简报
Daily Security Briefing
2020-11-04 星期三
安全报告 Security Report
利用 IDA Pro 调试 XNU 内核的官方教程
https://www.hex-rays.com/wp-content/static/tutorials/xnu_debugger_primer/xnu_debugger_primer.pdf
FireEye 对 UNC1945 组织攻击活动的分析
https://www.fireeye.com/blog/threat-research/2020/11/live-off-the-land-an-overview-of-unc1945.html
安全研究 Security Research
Windows 内核 cng.sys 驱动 IOCTLs 处理过程溢出漏洞分析
https://bugs.chromium.org/p/project-zero/issues/detail?id=2104
Linux内核攻击面之eBPF模块
https://www.anquanke.com/post/id/220047
Google Chromium CVE-2019-5826 UAF分析
https://mp.weixin.qq.com/s/RxIOdpRuXvHGDw2UukYGlw
Nette框架远程代码执行(CVE-2020-15227)
https://mp.weixin.qq.com/s/jR8L1ZcVL8GIFoNDaEPMHw
Java安全之CC4链
https://mp.weixin.qq.com/s/pWjK-nndbIAoDByb908iQg
CVE-2020-27194:Linux Kernel eBPF模块提权漏洞的分析与利用
https://cert.360.cn/report/detail?id=534ffa63f950368b6741a1781173b242
安全资讯 Security Information
用于威胁情报分析的虚拟机
https://mp.weixin.qq.com/s/WmvV2Q_ToMZLtZNKz4Y0Sw
行业动态 |《个人信息保护法(草案)》发布:主动应变,积极合规
https://mp.weixin.qq.com/s/-GKrqW3mMy5zg97P9uWKSw
首提跨模态代码匹配算法,腾讯安全科恩实验室论文入选国际AI顶会NeurIPS-2020
https://mp.weixin.qq.com/s/uSmz6vQFwEU7Z3z9KplelA
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn