1月15日安全热点 - Powershell6日志分析/Mirai Okiri出现

 

资讯类

Mirai Okiri——首个以ARC为目标的恶意软件

http://securityaffairs.co/wordpress/67742/malware/mirai-okiru-botnet.html

 

BlackWallet的DNS服务器被黑，超过400000美元被窃取

https://www.bleepingcomputer.com/news/security/hackers-hijack-dns-server-of-blackwallet-to-steal-400-000/

 

当年好莱坞裸照门事件的第四名嫌疑黑客被FBI抓获

https://www.bleepingcomputer.com/news/security/fourth-fappening-hacker-caught-by-the-fbi/

 

Blackhat亚洲区日程公布，开源智能成为主题

https://www.blackhat.com/asia-18/training/schedule/index.html#offensive-open-source-intelligence-9165

 

技术类

PowerShell 6的日志记录分析

http://www.labofapenetrationtester.com/2018/01/powershell6.html

 

浏览器？新一代僵尸网络？浏览器的未来战争

https://medium.com/@brannondorsey/browser-as-botnet-or-the-coming-war-on-your-web-browser-be920c4f718

 

Wii U解剖与分析

http://hexkyz.blogspot.com/2018/01/anatomy-of-wii-u-end.html

 

n3ph4ck Writeup

https://medium.com/@m4f1a/ctf-challenge-n3ph4ck-writeup-b355f512977b

 

Oneplus结账出现漏洞？讨论支付中的风险

https://www.fidusinfosec.com/oneplus-checkout-hacked-the-dangers-of-on-site-processing/

 

DVAR——路由漏洞靶场

http://blog.exploitlab.net/2018/01/dvar-damn-vulnerable-arm-router.html?

 

备用数据流与执行的讨论分析

https://oddvar.moe/2018/01/14/putting-data-in-alternate-data-streams-and-how-to-execute-it/

 

RDP劫持——RDS劫持与RemoteApp会话

https://medium.com/@networksecurity/rdp-hijacking-how-to-hijack-rds-and-remoteapp-sessions-transparently-to-move-through-an-da2a1e73a5f6

 

BetterCap NG版推出，目前仍在测试改进

https://github.com/evilsocket/bettercap-ng

 

懒人福音——渗透测试单行化

https://github.com/D4Vinci/One-Lin3r

 

绕过安卓SSL验证证书的四种方式

https://blog.netspi.com/four-ways-bypass-android-ssl-verification-certificate-pinning/

 

印度Aadhaar与黑客的真正联系？目前安全态势需要仔细评估

https://www.troyhunt.com/is-indias-aadhaar-system-really-hack-proof-assessing-a-publicly-observable-security-posture/

 

证书日志的可验证轻量级监控

https://arxiv.org/pdf/1711.03952.pdf