热点概要:AdultFriendFinder4亿账户数据泄露、滥用PHP 7的OPcache派生SHELL、Jenkins CLI远程RCE漏洞公告、通过图像载入的时间差绕过同源策略,判断你是否登录某站
国内热词:
中国正在强行推广实名制,而整个实名制的核心是手机号码
资讯类:
AdultFriendFinder网络被黑,4亿账户数据泄露
http://www.zdnet.com/article/adultfriendfinder-network-hack-exposes-secrets-of-412-million-users/
技术类:
ElasticZombie僵尸网络,利用Elasticsearch漏洞
通过图像载入的时间差绕过同源策略,判断你是否登录某站,判断多个社交网络的在线测试页在https://robinlinus.github.io/socialmedia-leak/
http://bitdweller.com/demos/web/bypass_sop_with_timing.html
对Dolphin(Wii游戏模拟器)的利用,第一部分
https://dougallj.wordpress.com/2016/11/13/exploiting-dolphin-part-1/
CODE BLUE JP 2016 会议PPT:DeathNote of Microsoft Windows Kernel
http://www.slideshare.net/PeterHlavaty/deathnote-of-microsoft-windows-kernel
Locky勒索软件伪装自己成帐户暂停和可疑行为
熟练使用pdb,调试python程序
https://medium.com/instamojo-matters/become-a-pdb-power-user-e3fc4e2774b2#.8s5098tfb
可以解码gzip,deflate,base64编码的powershell脚本的python程序
https://gist.github.com/anonymous/f0b9a85e25ea097f810b4d79e9e005a5
blockbuster行动揭露了攻击SONY的背后
Jenkins CLI远程RCE漏洞公告,可以通过https://github.com/jenkinsci-cert/SECURITY-218/blob/master/cli-shutdown.groovy脚本禁止Jenkins CLI,缓解风险
https://jenkins.io/blog/2016/11/12/addressing-remote-vulnerabilities-in-cli/
滥用PHP 7的OPcache,派生SHELL
https://github.com/Corb3nik/Talk-HackFest-OPcacheAbuse
一个借助美国选举来欺诈传播的远控木马分析
https://labsblog.f-secure.com/2016/11/10/a-rat-for-the-us-presidential-elections/
检测和评估IPv4 和 IPv6 NAT
http://www.iepg.org/2016-11-13-ietf97/carlos.pdf
RtlDecompresBuffer 漏洞分析
http://jolmos.blogspot.com/2016/11/rtldecompresbuffer-vulnerability.html
文章原文链接:https://www.anquanke.com/post/id/84901
