首页 >> 网络安全 >>网络周态 >> 每日安全动态推送(11-26)
详细内容

每日安全动态推送(11-26)

时间:2020-11-26     作者:腾讯玄武实验室   阅读

Tencent Security Xuanwu Lab Daily News


• DNSMon: 用DNS数据进行威胁发现:
https://blog.netlab.360.com/use-dns-data-produce-threat-intelligence/

   ・ DNSMon: 用 DNS 数据发现 skidmap 的未知后门 – Jett


• An Investigative Analysis of the Silent Librarian IoCs:
http://www.circleid.com/posts/20201112-an-investigative-analysis-of-the-silent-librarian-iocs/

   ・ 针对沉默的图书馆APT小组IoC的调查分析溯源。 – lanying37


• Languages:
https://github.com/vxunderground/MalwareSourceCode

   ・ vxunderground 按照不同语言收集的恶意软件源码 – Jett


• GitHub - airbus-seclab/diffware: An extensively configurable tool providing a summary of the changes between two files or directories, ignoring all the fluff you don't care about.:
https://github.com/airbus-seclab/diffware

   ・ Diffware - 文件、目录 Diff 工具,支持多种配置参数 – Jett


• High-fidelity build instrumentation with blight:
https://blog.trailofbits.com/2020/11/25/high-fidelity-build-instrumentation-with-blight/

   ・ Trail of Bits 开源了一个插桩框架 blight – Jett


• [Browser] 10 Google Chrome DevTools Features/Tricks BugBounty Hunters Must Know and Use - BigBountyTube:
https://youtube.com/watch?v=3XhQ7IMxW3o

   ・ 10个Google Chrome开发工具功能与技巧视频分享。 – lanying37


• System Explorer:
https://github.com/zodiacon/SystemExplorer

   ・ zodiacon 开源的一个类似 Process Explorer 的工具 – Jett


• Revisiting Binary Code Similarity Analysis using Interpretable Feature Engineering and Lessons Learned:
https://arxiv.org/abs/2011.10749

   ・ Revisiting Binary Code Similarity Analysis using Interpretable Feature Engineering and Lessons Learned  – Jett


• Finding DOMXSS with DevTools | Untrusted Types - YouTube:
https://www.youtube.com/watch?v=CNNCCgDkt5k

   ・ 利用 Chrome 浏览器开发者工具挖掘 DOM XSS 漏洞 – Jett


• Tracking Windows Updates with Git and CI:
https://blog.tofile.dev/2020/11/19/actions.html

   ・ Tracking Windows Updates with Git and CI – Jett


• [Tools] HEVD Driver Exploitation - Part 1: Setting Up the Environment:
https://jb05s.github.io/HEVD-Driver-Exploitation-Part-1/

   ・ HEVD驱动程序开发系列-第1部分:搭建环境准备工作。 – lanying37

ots网络logo

OTS网络安全门户主要提供网络信息安全教程、文章、工具,让更多的小伙伴加入我们的社区一起学习。

技术支持: 建站ABC | 管理登录