[分享]国外最新安全推文整理（第18期）-外文翻译-看雪-安全社区|安全招聘|kanxue.com

[分享]国外最新安全推文整理（第18期）

发表于: 2018-1-7 18:52 2897

[分享]国外最新安全推文整理（第18期）

BDomne

2018-1-7 18:52

2897

有些可能需要VPN访问，安全性方面自己多留意。

Kernel privilege escalation enumeration and exploitation framework

https://github.com/spencerdodd/kernelpop

Hypervisor-based debugger

https://github.com/honorarybot/PulseDbg

EDB is a cross platform x86/x86-64 debugger

https://github.com/eteran/edb-debugger

A retargetable machine-code decompiler based on LLVM

https://github.com/avast-tl/retdec

A Dynamic Binary Instrumentation framework based on LLVM

https://github.com/quarkslab/QBDI

Simple SMT solver

https://github.com/DennisYurichev/ToySMT

PoC for breaking hypervisor ASLR using branch target buffer collisions

https://github.com/felixwilhelm/mario_baslr

Monero (XMR) CPU miner

https://github.com/xmrig/xmrig

Some system tools (PeRebuilder, MemoryBootkit, AppContainers)

https://github.com/AaLl86/retroware

PacSec 2017 Slides

https://pacsec.jp/pastevents.html

BlueHat v17 Slides

https://www.slideshare.net/MSbluehat/presentations

ZeroNights 2017 Slides

https://2017.zeronights.org/materials/

34c3 Schedule

https://events.ccc.de/congress/2017/Fahrplan/events.html

BlackHoodie 17 Slides

https://www.blackhoodie.re/archive/

OffensiveCon 2018 Agenda

https://www.offensivecon.org/agenda

The Bad Neighbor, Out-of-Order Execution and Its Applications, Slides

https://www.sophia.re/ROOTS/index.html

The Battle For Protected Memory, Slides

https://sites.google.com/site/bingsunsec/the-battle-for-protected-memory

Hex-Rays Plugin Contest 2017 Result

https://hex-rays.com/contests/2017/index.shtml

A new unpatched Windows 7-10 kernel pool pointer leak

https://bugs.chromium.org/p/project-zero/issues/detail?id=1456

VMware's Launch escape SYSTEM

https://www.zerodayinitiative.com/blog/2017/12/21/vmwares-launch-escape-system

Making something out of Zeros: Alternative primitive for Windows Kernel Exploitation

https://www.coresecurity.com/blog/making-something-out-zeros-alternative-primitive-windows-kernel-exploitation

Exploiting Windows 10 in a Local Network with WPAD/PAC and JScript

https://googleprojectzero.blogspot.com/2017/12/apacolypse-now-exploiting-windows-10-in_18.html

Exploiting Word: CVE-2017-11826

https://www.tarlogic.com/en/blog/exploiting-word-cve-2017-11826/

Chakrazy - exploiting type confusion bug in ChakraCore engine

https://bruce30262.github.io/2017/12/26/Chakrazy-exploiting-type-confusion-bug-in-ChakraCore/

Escaping Docker container using waitid() - CVE-2017-5123

https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/

A Peculiar Case of Orcus RAT Targeting Bitcoin Investors

https://blog.fortinet.com/2017/12/07/a-peculiar-case-of-orcus-rat-targeting-bitcoin-investors

Thoughts about "Process Doppelganging" and proof-of-concepts

http://www.kernelmode.info/forum/viewtopic.php?f=15&t=4879

Dissecting LLVM Obfuscator Part 1

https://blog.rpis.ec/2017/12/dissection-llvm-obfuscator-p1.html

Weird machines, exploitability, and provable unexploitability

http://ieeexplore.ieee.org/ielx7/6245516/6558478/08226852.pdf

Network Cheat Sheets

http://packetlife.net/library/cheat-sheets/

Inside Intel Management Engine, Slides

https://github.com/ptresearch/IntelME-JTAG/blob/master/Inside_Intel_Management_Engine.pdf

Where there's a JTAG, there's a way: Obtaining full system access via USB

https://www.ptsecurity.com/upload/corporate/ww-en/analytics/Where-theres-a-JTAG-theres-a-way.pdf

[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入！

收藏・5

免费・0

支持