http://p6.qhimg.com/t017313015b51e6034e.png


热点概要:获取本地Belkin WMo开关的root权限、安天独家深度曝光分析方程式组织多平台恶意代码武器、2016 Flare-On 挑战的writeup、blackhat 欧洲2016的PPT

国内热词:

网信办发布直播服务监管规定

土耳其命令ISP屏蔽VPN和Tor

Chrome用户访问的网页HTTPS超过一半

Mozilla和Google移除销售用户浏览历史的 WOT扩展

Let’s Encrypt 推动HTTPS的普及

中国成功发射了长征五号火箭

资讯类:

美国政府黑客准回击俄罗斯,试图扰乱选举

http://www.nbcnews.com/news/us-news/u-s-hackers-ready-hit-back-if-russia-disrupts-election-n677936

仅仅4美金,口袋大小,开源的Linux计算机

http://www.zdnet.com/article/move-over-raspberry-pi-here-is-a-4-coin-sized-open-source-linux-computer/

技术类:

对RedSnarf渗透工具的介绍

https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2016/november/introducing-redsnarf-and-the-importance-of-being-careful/

Backslash Powered Scanning: Hunting Unknown Vulnerability Classes

http://blog.portswigger.net/2016/11/backslash-powered-scanning-hunting.html

获取本地Belkin WMo开关的root权限

https://www.invincealabs.com/blog/2016/11/wemo-hardware-bypass/

使用神经网络生产人类可读的密码

http://fsecurify.com/using-neural-networks-to-generate-human-readable-passwords/

揭露EGO市场:由Linux / Moose僵尸网络执行的网络犯罪

https://gosecure.net/2016/11/02/exposing-the-ego-market-the-cybercrime-performed-by-the-linux-moose-botnet/

blackhat 欧洲2016的PPT

https://www.blackhat.com/eu-16/briefings.html

安天独家深度曝光分析方程式组织多平台恶意代码武器

http://mp.weixin.qq.com/s?__biz=MjM5MTA3Nzk4MQ==&mid=2650170101&idx=1&sn=714546c757db8291d52b6a4332c364a4&chksm=beb9c1c789ce48d1d6a96ed51b2506feab47c344b50461e7a4f72b19d89879dc113669d47a33&scene=0#wechat_redirect

简单的反向meterpeter https配置

http://securityblog.gr/3813/simple-reverse-meterpreter-https-communication/

现代Linux服务的隔离

https://defenceforstartups.com/posts/modern-linux-service-isolation.html

一个ida pro插件用于反向工程windows驱动

https://labs.mwrinfosecurity.com/tools/win-driver-tool/

H.264视频压缩如何工作的

https://sidbala.com/h-264-is-magic/

2016 Flare-On 挑战的writeup

https://www.fireeye.com/blog/threat-research/2016/11/2016_flare-on_challe.html

从PHP语法糖剖析Zend VM引擎

http://www.yinqisen.cn/blog-723.html

文章原文链接:https://www.anquanke.com/post/id/84854