-
-
[分享]国外最新安全推文整理(第3期)
-
发表于: 2016-11-27 09:50
-
WarBerryPi - Tactical Exploitation
https://github.com/secgroundzero/warberry
Framework for Rogue Wi-Fi Access Point Attack
https://github.com/P0cL4bs/WiFi-Pumpkin
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities
https://github.com/rapid7/metasploitable3
Automated All-in-One OS command injection and exploitation tool
https://github.com/commixproject/commix
PoisonTap - siphons cookies, exposes internal router & installs web backdoor on locked computers
https://github.com/samyk/poisontap
Ida Pro plugin assists in creation classes/structures and detection virtual tables
https://github.com/igogo-x86/HexRaysPyTools
Flexible Register/Instruction Extender aNd Documentation
https://github.com/alexhude/FRIEND
AFL/QEMU fuzzing with full-system emulation
https://github.com/nccgroup/TriforceAFL
Modern fuzzing of C/C++ Projects
https://github.com/Dor1s/libfuzzer-workshop
A curated list of awesome malware analysis tools and resources
https://github.com/rshipp/awesome-malware-analysis
List of Computer Science courses with video lectures
https://github.com/Developer-Y/cs-video-courses
UEFI firmware image viewer and editor
https://github.com/LongSoft/UEFITool
Miscellaneous proof of concept exploit code written at Xiphos Research for testing purposes
https://github.com/XiphosResearch/exploits
Shellcode Compiler
https://github.com/NytroRST/ShellcodeCompiler
Python scripts to remove, change, and crack Office 97-2003 Macro Passwords
https://github.com/waleedassar/VBAMacroPWD
A complete daily plan for studying to become a machine learning engineer
https://github.com/ZuzooVn/machine-learning-for-software-engineers
A cheatsheet of modern C++ language and library features
https://github.com/AnthonyCalandra/modern-cpp-features
Unlinker is a tool that can rip functions out of Visual C++ compiled binaries and produce Visual C++ COFF object files
https://github.com/jonwil/unlinker
fcd is a LLVM-based native program optimizing decompiler
https://github.com/zneak/fcd
Cosa Nostra, a FOSS graph based malware clusterization toolkit
https://github.com/joxeankoret/cosa-nostra
find where in memory the Windows 10 kernel and its drivers are loaded
https://github.com/ufrisk/kaslrfinder
I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
https://github.com/IOActive/I-know-where-your-page-lives
Windows 2000 source code
https://mega.co.nz/#!1E0GGbwD!cHEismWbLsDAWf3V0ZNcmcv7sb9l2P6gncjYDTZyTmo (passwd: bytecode.club)
NT_4.0_SourceCode
https://github.com/gasgas4/NT_4.0_SourceCode
Windows Research Kernel
https://github.com/lmr3796/WRK-1.2
Towards practical information flow control and audit
https://www.cl.cam.ac.uk/techreports/UCAM-CL-TR-893.pdf
Improving Digital Side Channel Protection with Static Analysis Techniques
http://apps.cs.utexas.edu/tech_reports/reports/tr/TR-2228.pdf
ArduWorm: A Functional Malware Targeting Arduino Devices
http://www.seg.inf.uc3m.es/papers/2016JNIC.pdf
Toward Understanding Compiler Bugs in GCC and LLVM
http://vuminhle.com/pdf/issta16.pdf
Fitbit tracker firmware retrieval and Analysis :
https://www.cs.ru.nl/bachelorscripties/2016/Maarten_Schellevis___4142616___Getting_access_to_your_own_Fitbit_data.pdf
x86-64 Assembly Language Programming with Ubuntu
http://www.egr.unlv.edu/~ed/assembly64.pdf
Slides about Windows Metafile research (Ruxcon, PacSec) and fuzzing (Black Hat EU) now public
http://j00ru.vexillium.org/?p=2975
Floki Bot and the stealthy dropper
https://blog.malwarebytes.com/threat-analysis/2016/11/floki-bot-and-the-stealthy-dropper/
Leaking EPROCESS address of the specific SYSTEM processes
http://blog.rewolf.pl/blog/?p=1683
New Keylogging Method: Event Tracing for Windows (ETW):
https://www.cyberpointllc.com/srt/posts/srt-logging-keystrokes-with-event-tracing-for-windows-etw.html
UEFI boot: how does that actually work, then?
https://www.happyassassin.net/2014/01/25/uefi-boot-how-does-that-actually-work-then/
Windows 10 Cannot Protect Insecure Applications Like EMET Can
https://insights.sei.cmu.edu/cert/2016/11/windows-10-cannot-protect-insecure-applications-like-emet-can.html
How to write a CrackMe for a CTF competition
https://www.pelock.com/articles/how-to-write-a-crackme-for-a-ctf-competition
Tutorial - Write a System Call
https://brennan.io/2016/11/14/kernel-dev-ep3/
Slides of POC2016
http://powerofcommunity.net/2016.htm
AtomBombing: A Code Injection that Bypasses Current Security Solutions
http://blog.ensilo.com/atombombing-a-code-injection-that-bypasses-current-security-solutions
AtomBombing CFG Protected Processes (PoC Video Inside)
https://breakingmalware.com/injection-techniques/atombombing-cfg-protected-processes/
Crashing Stacks Without Squishing Bugs: Advanced Vulnerability Analysis
http://blog.talosintel.com/2016/11/crashing-stacks-without-squishing-bugs.html
The updated list of vulnerable drones & attack tools
https://medium.com/@swalters/how-can-drones-be-hacked-the-updated-list-of-vulnerable-drones-attack-tools-dd2e006d6809
A Story About TP-link Device Debug Protocol (TDDP) Research
https://www.coresecurity.com/blog/story-about-tp-link-device-debug-protocol-tddp-research
[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入!
|
|
|---|---|
|
|
|
|
|
|
|
|
|
