http://p6.qhimg.com/t017313015b51e6034e.png


热点概要:可以通过SOAP协议对DSL路由器7547端口利用的RCE漏洞、我如何绕过apple激活锁的、所有你的Paypal OAuth Tokens属于我

国内热词:


微软雇佣四名量子计算领域的知名学者

黑客出租包含40万设备的Mirai僵尸网络

央行的数字货币将是实名和可追踪

旧金山公交系统遭勒索软件攻击后允许乘客免费乘车

錘子科技向openbsd基金會捐款28萬加元

资讯类:


黑客售卖 xHamster 色情网站的账号

http://motherboard.vice.com/read/hackers-are-trading-hundreds-of-thousands-of-xhamster-porn-account-details

漏洞DSL路由器RCE漏洞发起DDOS攻击导致90万德国路由器掉线

http://www.bleepingcomputer.com/news/security/900-000-routers-knocked-offline-in-germany-amid-rumors-of-cyber-attack/

技术类:


所有你的Paypal OAuth Tokens属于我 

http://blog.intothesymmetry.com/2016/11/all-your-paypal-tokens-belong-to-me.html

An update on MD5 poisoning

https://blog.silentsignal.eu/2016/11/28/an-update-on-md5-poisoning/

可以通过SOAP协议对DSL路由器7547端口利用的RCE漏洞

https://isc.sans.edu/diary/Port+7547+SOAP+Remote+Code+Execution+Attack+Against+DSL+Modems/21759

我如何绕过apple激活锁的

http://www.hemanthjoseph.com/2016/11/how-i-bypassed-apples-most-secure-find.html?

CVE-2016-6754(BadKernel) 的利用代码和SyScan360会议演讲的PPT

https://github.com/secmob/BadKernel

快速比较Nessus和OpenVAS知识库

http://avleonov.com/2016/11/27/fast-comparison-of-nessus-and-openvas-knowledge-bases/

[Web安全]【独家】php一句话后门过狗姿势万千之后门构造与隐藏【一】

https://xianzhi.aliyun.com/forum/read/441.html

[Web安全]【独家】php一句话后门过狗姿势万千之传输层加工【二】

https://xianzhi.aliyun.com/forum/read/442.html

Getting Root Access to Web Servers

https://www.gracefulsecurity.com/hacking-web-applications/

Nano服务器的代码集成:Tips/Gotchas

http://www.exploit-monday.com/2016/11/Nano-Server-Code-Integrity.html

Token Capture via an Llvm-based Analysis Pass

http://doar-e.github.io/blog/2016/11/27/clang-and-passes/

使用KDGB配合VMware调试

https://groups.google.com/forum/#!msg/vmkernelnewbies/pIB8UNPJqMU/zZKLjXFqhNEJ

Hack the Seattle VM (CTF Challenge)

http://www.hackingarticles.in/hack-seattle-vm-ctf-challenge/

在你的手机黑客系统Nethunter 上建立VPN和反向VPN的脚本

https://github.com/binkybear/rock3tman

文章原文链接:https://www.anquanke.com/post/id/85005