证券简称:w88手机登录下载   证券代码:002212
安全通告
首页 > 技术支持 > 安全通告

每日攻防资讯简报[Oct.15th]

发布时间:2021-10-15查看次数:351
分享到
0x00漏洞

1.为Apache HTTP服务器漏洞构建PoC(CVE-2021-40438)

https://firzen.de/building-a-poc-for-cve-2021-40438

0x01工具

1.SysmonForLinux: 针对Linux系统的Sysmon

https://github.com/Sysinternals/SysmonForLinux

https://github.com/Sysinternals/SysinternalsEBPF

 

2.mattermost-plugin-e2ee: MatterMost 端到端加密插件

https://github.com/quarkslab/mattermost-plugin-e2ee

https://blog.quarkslab.com/mattermost-end-to-end-encryption-plugin.html

 

3.Bypass Facebook SSL Pinning for iOS [2021]

https://github.com/phwd/fb-ios-pinning-2021/

 

4.snowcat: 收集并分析 Istio 集群的配置,并对其进行审计以发现是否违反了安全最佳实践

https://github.com/praetorian-inc/snowcat

0x02恶意代码


1.赛门铁克发现新的勒索软件Yanluowang(阎罗王)

https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/yanluowang-targeted-ransomware

 

2.VirusTotal发布全球环境下勒索软件生态报告(分析了8000万个勒索软件样本)

https://www.brighttalk.com/webcast/18282/509895

https://storage.googleapis.com/vtpublic/vt-ransomware-report-2021.pdf

https://www.blog.google/technology/safety-security/we-analyzed-80-million-ransomware-samples-heres-what-we-learned/

 

3.研究一种冒充 Microsoft 并试图窃取受害者信用卡详细信息的 vishing(语音网络钓鱼)攻击

https://www.armorblox.com/blog/blox-tales-microsoft-defender-vishing-anydesk/

0x03技术

1.展示如何使用 KF/x 来利用复杂的、现实生活中的目标,并强调快照模糊测试空间中的一些挑战

https://blog.silentsignal.eu/2021/10/14/fuzzy-snapshots-of-firefox-ipc/

 

2.如何使用 IDOR 重置任何用户的密码,并可以访问他的完整帐户

https://shivamrai24.medium.com/idor-account-takeover-leads-to-pii-leakage-fe075a8f602a

 

3.Fuzzing 入门

https://github.com/antonio-morales/Fuzzing101

 

4.Windows提权: 不带引号的(Unquoted)服务路径

https://www.hackingarticles.in/windows-privilege-escalation-unquoted-service-path/

 

5.Windows提权: 不安全的 GUI 引用程序

https://www.hackingarticles.in/windows-privilege-escalation-insecure-gui-application/