每日攻防资讯简报[Mar.9th]

  • A+
所属分类:安全新闻

每日攻防资讯简报[Mar.9th]

0x00漏洞

1.BMC PATROL域用户提权漏洞

https://www.securifera.com/blog/2021/03/08/bmc-patrol-agent-domain-user-to-domain-admin-part-2/

 

2.Exchange Server CVE-2021-26855 ssrf 简单利用 golang 练习

https://github.com/GreyOrder/CVE-2021-26855

0x01工具


1.CpuidSpoofer:x64dbg插件,辅助修改CPUID指令的行为

https://github.com/jonatan1024/CpuidSpoofer

 

2.search-that-hash:首先检查各个网站查找要破解的hash,找不到则自动传递给HashCat

https://github.com/HashPals/search-that-hash

 

3.HelloSmm:使用自定义SMM模块构建BIOS

https://github.com/tandasat/HelloSmm

0x02恶意代码


1.Bazar加载器,投递Anchor恶意软件

https://thedfirreport.com/2021/03/08/bazar-drops-the-anchor/

 

2.伊朗背景的攻击者针对中东和周边地区的学术界、政府机构和旅游实体的攻击

https://www.trendmicro.com/en_us/research/21/c/earth-vetala---muddywater-continues-to-target-organizations-in-t.html

0x03技术


1.通过重新编译Flutter Engine逆向Flutter应用

https://tinyhack.com/2021/03/07/reversing-a-flutter-app-by-recompiling-flutter-engine/

 

2.如何搜索由短域名服务公开的URL

https://grayhatwarfare.medium.com/how-to-search-urls-exposed-by-shortener-services-f68e199cd560

 

3.Lord of the Ring(s):对CPU片上环形互连的侧通道攻击

https://github.com/FPSG-UIUC/lotr

 

4.如何通过响应操作绕过著名的区域性电子纸Web应用程序的订阅计划

https://infosecwriteups.com/how-i-was-able-to-bypass-the-subscription-plan-of-a-famous-regional-e-paper-web-application-by-b14bb5d82c5f

 

5.Prime + Probe 1,JavaScript 0:克服基于浏览器的侧通道防御

https://orenlab.sise.bgu.ac.il/p/PP0?k

 

6.Academy HackTheBox Walkthrough

https://www.hackingarticles.in/academy-hackthebox-walkthrough/

 

7.McAfee ATR:以图标的方式思考网络攻击行动

https://www.mcafee.com/blogs/other-blogs/mcafee-labs/mcafee-atr-thinks-in-graphs

 

8.[HTB] Passage

https://infosecwriteups.com/htb-passage-36b0cf14f64b

 

9.Google Update Service being a scum

https://halove23.blogspot.com/2021/03/google-update-service-being-scum.html

https://github.com/klinix5/GoogleUpdateSvcLPE

天融信阿尔法实验室成立于2011年,一直以来,阿尔法实验室秉承“攻防一体”的理念,汇聚众多专业技术研究人员,从事攻防技术研究,在安全领域前瞻性技术研究方向上不断前行。作为天融信的安全产品和服务支撑团队,阿尔法实验室精湛的专业技术水平、丰富的排异经验,为天融信产品的研发和升级、承担国家重大安全项目和客户服务提供强有力的技术支撑。




每日攻防资讯简报[Mar.9th]

每日攻防资讯简报[Mar.9th]

天融信

阿尔法实验室

长按二维码关注我们



本文始发于微信公众号(天融信阿尔法实验室):每日攻防资讯简报[Mar.9th]

发表评论

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: