证券简称:w88手机登录下载   证券代码:002212
安全通告
首页 > 技术支持 > 安全通告

每日攻防资讯简报[Oct.19th]

发布时间:2021-10-19查看次数:185
分享到
0x00漏洞

1.流行的 WordPress 插件 WP Fastest Cache 中的多个漏洞

https://blog.malwarebytes.com/malwarebytes-news/2021/10/multiple-vulnerabilities-in-popular-wordpress-plugin-wp-fastest-cache/

0x01工具

1.l0phtcrack: 密码审计和恢复工具 L0phtCrack 7.2.0 版开源

https://gitlab.com/l0phtcrack/l0phtcrack

 

2.fapro: 跨平台、单文件部署的网络协议服务端模拟器

https://github.com/fofapro/fapro

 

3.inceptor: 模板驱动的免杀框架

https://github.com/klezVirus/inceptor

0x02恶意代码

1.BlackByte 勒索软件深入分析

https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/blackbyte-ransomware-pt-1-in-depth-analysis/

https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/blackbyte-ransomware-pt-2-code-obfuscation-analysis/

 

2.Harvester: 国家背景的黑客组织使用新的工具集对南亚的攻击

https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/harvester-new-apt-attacks-asia

 

3.SolarWinds 黑客为了避免被发现而使用的策略和技术

https://www.youtube.com/watch?v=b02751dp9uc

 

4.逆向恶意软件 Zloader

https://aaqeel01.wordpress.com/2021/10/18/zloader-reversing/

 

5.相对较新的勒索软件 Karma

https://www.sentinelone.com/labs/karma-ransomware-an-emerging-threat-with-a-hint-of-nemty-pedigree/

 

6.Lyceum group reborn

https://securelist.com/lyceum-group-reborn/104586/

0x03技术

1.Windows版三维弹球游戏的反编译, 并移植到其他平台

https://github.com/k4zmu2a/SpaceCadetPinball

 

2.使用机器学习破解随机数生成器, Part2: Mersenne Twister

https://research.nccgroup.com/2021/10/18/cracking-random-number-generators-using-machine-learning-part-2-mersenne-twister/

 

3.Finding gadgets like it's 2015: part 1

https://www.synacktiv.com/publications/finding-gadgets-like-its-2015-part-1.html

 

4.如何解锁 Windows 11 的上帝模式以访问高级设置

https://www.bleepingcomputer.com/news/microsoft/how-to-unlock-windows-11s-god-mode-to-access-advanced-settings/

 

5.攻击性 WMI, Part 5: Active Directory 枚举

https://0xinfection.github.io/posts/wmi-ad-enum/

 

6.Windows 11 Defender 绕过

https://twitter.com/an0n_r0/status/1449901768947683328