今日导读:Tropic Trooper(也被称为KeyBoy)重点关注台湾,菲律宾和香港的政府,医疗保健,交通和高科技行业、Hermes勒索软件通过最近的Flash 0Day攻击韩国、DocuTrac Office Therapy Installer存在硬编码和加密问题、安装量50,000+ WordPress插件WOOF中存在任意短代码执行和本地文件包含漏洞、渗透技巧——获得Windows系统的远程桌面连接历史记录、CTF线下赛writeup&代码审计、GraphQL安全问题、SAP NetWeaver AS JAVA CRM远程命令执行poc等。

【病毒区】
1、Tropic Trooper (also known as KeyBoy) levels its campaigns against Taiwanese, Philippine, and Hong Kong targets, focusing on their government, healthcare, transportation, and high-tech industries.
https://blog.trendmicro.com/trendlabs-security-intelligence/tropic-trooper-new-strategy/

2、Hermes ransomware distributed to South Koreans via recent Flash zero-day
https://blog.malwarebytes.com/threat-analysis/2018/03/hermes-ransomware-distributed-to-south-koreans-via-recent-flash-zero-day/

【漏洞分析区】
3、(CVE-2018-5551, CVE-2018-5552): DocuTrac Office Therapy Installer Hard-Coded Credentials and Cryptographic Salt
https://blog.rapid7.com/2018/03/14/r7-2018-01-cve-2018-5551-cve-2018-5552-docutrac-office-therapy-installer-hard-coded-credentials-and-cryptographic-salt/

4、AppWeb Authentication Bypass (Digest, Basic and Forms)
https://blogs.securiteam.com/index.php/archives/3676

5、Arbitrary Shortcode Execution & Local File Inclusion in WOOF (50,000+WordPress plugins)
https://www.sec-consult.com/en/blog/advisories/arbitrary-shortcode-execution-local-file-inclusion-in-woof-pluginus-net/index.html

6、Information Leakage Through Child Tab - Mozilla
https://datarift.blogspot.hk/2018/03/Information-Leakage-Through-Child-Tab-Mozilla.html

【技术分享区】
7、渗透技巧——获得Windows系统的远程桌面连接历史记录
https://xianzhi.aliyun.com/forum/topic/2161

8、A Deep Dive into Database Attacks(Part III): Why Scarlett Johansson’s Picture Got My Postgre Database to Start Mining Monero
https://xianzhi.aliyun.com/forum/topic/2158

9、FineCMS的GetShell姿势
http://www.freebuf.com/column/165269.html

10、CTF线下赛writeup&tinyblog代码审计
https://www.anquanke.com/post/id/100991

11、KPTI补丁分析
https://mp.weixin.qq.com/s/kQaZnqjbdxz6HS8ljLp3zw?scene=25#wechat_redirect

【赏金漏洞区】
12、Reveal Facebook Employees' Identity Behind“Did You Know”Questions
https://jmw.fyi/post/reveal-fb-employee-behind-funfact

13、GraphQL Abuse
https://labs.detectify.com/2018/03/14/graphql-abuse/

【工具区】
工具#PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM
https://github.com/erpscanteam/CVE-2018-2380

工具#AndHook is a lightweight hook framework for android. It is primarily written in C++ and easy to use.
https://github.com/rrrfff/AndHook

工具#Uitkyk is a custom Android Frida libary which provides an API to analyze Android applications for malicious activity.
https://github.com/brompwnie/uitkyk

工具#SMBCrunch:3 tools that work together to simplify reconaissance of Windows File Shares
https://github.com/Raikia/SMBCrunch

工具#msf-autopwn:Autoexploitation of some of the most common vulnerabilities in wild
https://github.com/DanMcInerney/msf-autopwn

工具#TPM Genie is designed to aid in vulnerability research of Trusted Platform Modules.
https://github.com/nccgroup/TPMGenie

点击收藏 | 0 关注 | 1
  • 动动手指,沙发就是你的了!
登录 后跟帖