热点概要:Mantistek键盘暗藏键击记录器、暗匿两年,Sowbug间谍组织浮出水面、Minix与Intel ME不为人知的安全事、虚拟内存中的戏法、啖以甘户而阴陷之——蜜罐账户应用、TCP/IP序列号分析后记、谷歌修复了安卓的KRACK漏洞。
资讯类:
Mantistek键盘暗藏键击记录器
https://thehackernews.com/2017/11/mantistek-keyboard-keylogger.html
暗匿两年,Sowbug间谍组织浮出水面
https://thehackernews.com/2017/11/sowbug-hacking-group.html
思科修复了IOE XE系统的DoS漏洞
http://securityaffairs.co/wordpress/65243/security/cisco-ioe-xe-flaw.html
Twitter的bug被人利用发出三万字推特
http://securityaffairs.co/wordpress/65262/social-networks/twitter-bug.html
Volexity宣称APT32实力可与俄罗斯Turla对抗
http://securityaffairs.co/wordpress/65271/apt/apt32-cyber-espionage-2017.html
谷歌修复了安卓的KRACK漏洞
https://www.bleepingcomputer.com/news/security/google-patches-krack-wpa2-vulnerability-in-android/
技术类:
Lightbulb框架指南
https://census-labs.com/news/2017/11/03/an-introduction-to-the-lightbulb-framework/
Minix与Intel ME不为人知的安全事
https://fossbytes.com/minix-worlds-most-popular-os-threat/
CVE-2017-5123利用浅谈
https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/
虚拟内存中的戏法
http://ourmachinery.com/post/virtual-memory-tricks/
教你钓取钓鱼人
https://blog.0day.rocks/catching-phishing-using-certstream-97177f0d499a
钓鱼网站抓取工具
https://github.com/x0rz/phishing_catcher
啖以甘户而阴陷之——蜜罐账户应用
https://jordanpotti.com/2017/11/06/honey-accounts/
DDE再现:APT28以此发动攻击
密码破解辅助Mentalist,最难防的是人心
https://github.com/sc0tfree/mentalist
TCP/IP序列号分析后记
http://lcamtuf.coredump.cx/newtcp/
Empire配置与测试
https://bneg.io/2017/11/06/automated-empire-infrastructure/
二进制中的函数检测
https://binary.ninja/2017/11/06/architecture-agnostic-function-detection-in-binaries.html
CVE-2017-14849浅析
https://security.tencent.com/index.php/blog/msg/121
pfSense代码执行漏洞利用