每日安全资讯-2020.9.27

声明:本文所有内容仅用于学习和研究目的,且不能违反《网络安全法》、《刑法》等相关要求,尤其禁止传播,或用于非善良目的。您查看本文,即视为遵守以上约定,否则责任自负。

今日导读:新型黑客组织“海毒蛇”深度追踪与分析、BLUEtooth(BLUR攻击)利用了交叉传输密钥验证的不足,从而使攻击者可以绕过Bluetooth Classic和Bluetooth Low Energy安全机制、滥用Zerologon的另一种方式、通过虚拟打印机攻击VMware Workstation、SMBGhost && SMBleed 漏洞深入研究、Linux内核AF_PACKET原生套接字漏洞(CVE-2020-14386)分析、Privileged Container Escapes等。

【病毒区】
1、German-made FinSpy spyware found in Egypt, and Mac and Linux versions revealed

2、墨子(Mozi)僵尸网络分析报告
https://www.anquanke.com/post/id/218613

3、新型黑客组织“海毒蛇”深度追踪与分析

【漏洞分析区】
4、BLURtooth (the BLUR attacks) exploits the lack of cross-transport key validation, allowing an attacker to bypass Bluetooth Classic and Bluetooth Low Energy security mechanisms.(CVE-2020-15802)
https://hexhive.epfl.ch/BLURtooth/

5、Kernel exploitation: weaponizing CVE-2020-17382 MSI Ambient Link driver

6、A different way of abusing Zerologon (CVE-2020-1472)

7、Instagram_RCE: Code Execution Vulnerability in Instagram App for Android and iOS

8、Universal XSS in Android WebView (CVE-2020-6506)

9、uTorrent CVE-2020-8437 Vulnerability And Exploit Overview

10、VMware Workstation: Attack surface through Virtual Printer (CVE-2020-3989, CVE-2020-3990)
https://blog.khonggianmang.vn/vmware-workstation-attack-surface-through-virtual-printer/

11、CodeMeter产品 CVE-2020-14517高危漏洞分析

12、CVE-2020-15148 Yii2反序列化RCE POP链分析
https://xz.aliyun.com/t/8307

13、SMBGhost && SMBleed 漏洞深入研究

14、通达OA11.7 后台sql注入到rce漏洞分析
https://www.anquanke.com/post/id/218407

15、Linux内核AF_PACKET原生套接字漏洞(CVE-2020-14386)分析

【技术分享区】
16、Privileged Container Escapes

17、Exploiting Tiny Tiny RSS

18、Hacking Punkbuster

19、MacOS Injection via Third Party Frameworks
https://blog.xpnsec.com/macos-injection-via-third-party-frameworks/

【工具区】
#工具#3snake - dump sshd and sudo credential related strings

#工具#Gitjacker downloads git repositories and extracts their contents from sites where the .git directory has been mistakenly uploaded.

#工具#Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and antivirus solutions.

#工具#MEDUZA - a more or less universal SSL unpinning tool for iOS

#工具#AoiAWD-赛棍福音!针对CTF AWD的原创轻量级防御系统!