每日安全动态推送(01-28)

admin 2021年1月28日12:41:01安全新闻评论44 views2285字阅读7分37秒阅读模式
Tencent Security Xuanwu Lab Daily News


• Writing a Hyper-V “Bridge” for Fuzzing — Part 1: WDF:
https://www.alex-ionescu.com/?p=377

   ・ 为Hyper-V“网桥”进行模糊测试-第1部分:Windows Driver Foundation(WDF)编写硬件驱动程序介绍。  – lanying37


• Application Guard for Office now generally available - Microsoft Tech Community:
https://techcommunity.microsoft.com/t5/microsoft-security-and/application-guard-for-office-now-generally-available/ba-p/2007539

   ・ Office 开始支持基于 Hyper-V 容器的 Application Guard 保护机制 – Jett


• ERNW Whitepaper 71 – Analysis of Anti-Virus Software Quarantine Files:
https://insinuator.net/2021/01/ernw-whitepaper-71-analysis-of-anti-virus-software-quarantine-files/

   ・ ERNW Whitepaper 71 - 多种反病毒软件隔离文件的文件格式的分析 – Jett


• Reverse Engineering iMessage to Help Improve Security | NowSecure:
https://www.nowsecure.com/blog/2021/01/27/reverse-engineering-imessage-leveraging-the-hardware-to-protect-the-software/

   ・ Reverse Engineering iMessage: Leveraging the Hardware to Protect the Software – Jett


• Analysis of THREATNEEDLE C&C Communication (feat. Google TAG Warning to Researchers) | by S2W LAB | S2W LAB BLOG | Jan, 2021 | Medium:
https://medium.com/s2wlab/analysis-of-threatneedle-c-c-communication-feat-google-tag-warning-to-researchers-782aa51cf74

   ・ 这两天黑客攻击安全研究员事件相关 C&C 通信机制的分析 – Jett


• 当黑客不讲武德 安全专家也容易被骗:
https://paper.seebug.org/1471/

   ・ 当黑客不讲武德之国内安全专家也容易被社工分析研究。 – lanying37


• Mitigating Abuse of Android Application Permissions and Special App Accesses | by Michael Peck | MITRE ATT&CK® | Jan, 2021 | Medium:
https://medium.com/mitre-attack/mobile-attack-mitigating-android-abuse-50516fb7de85

   ・ Mitigating Abuse of Android Application Permissions and Special App Accesses – Jett


• Using Cloudflare Workers as Redirectors - ajpc500:
https://ajpc500.github.io/c2/Using-CloudFlare-Workers-as-Redirectors/

   ・ Using Cloudflare Workers as Redirectors – Jett


• Introducing FComm - C2 Lateral Movement - Nettitude Labs:
https://labs.nettitude.com/blog/introducing-fcomm-c2-lateral-movement/

   ・ Introducing FComm – C2 Lateral Movement – Jett


• NAT Slipstreaming v2.0: New Attack Variant Can Expose All Internal Network Devices to The Internet | Armis:
https://www.armis.com/resources/iot-security-blog/nat-slipstreaming-v2-0-new-attack-variant-can-expose-all-internal-network-devices-to-the-internet/

   ・ NAT Slipstreaming v2.0 - NAT/防火墙内网隔离策略绕过的新变种 – Jett


* 查看或搜索历史推送内容请访问:
https://sec.today

* 新浪微博账号:腾讯玄武实验室
https://weibo.com/xuanwulab


本文始发于微信公众号(腾讯玄武实验室):每日安全动态推送(01-28)

特别标注: 本站(CN-SEC.COM)所有文章仅供技术研究,若将其信息做其他用途,由用户承担全部法律及连带责任,本站不承担任何法律及连带责任,请遵守中华人民共和国安全法.
  • 我的微信
  • 微信扫一扫
  • weinxin
  • 我的微信公众号
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2021年1月28日12:41:01
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                  每日安全动态推送(01-28) http://cn-sec.com/archives/256048.html

发表评论

匿名网友 填写信息

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: