Tencent Security Xuanwu Lab Daily News

• HTMLSmuggler: JS payload generator for IDS bypass and payload delivery via HTML smuggling:
https://securityonline.info/htmlsmuggler-js-payload-generator-for-ids-bypass-and-payload-delivery-via-html-smuggling/

   ・ 通过在 HTML 和 JavaScript 代码中伪装恶意负载来绕过网络安全控制的工具 – SecTodayBot

• Bypassing Windows Defender and PPL Protection with PPLBlade to dump LSASS without Detection | 2 September 2023:
https://tacticaladversary.io/adversary-tactics/bypass-defender-and-ppl-protection-to-dump-lsass/

   ・ 一种进程内存转储工具，用于绕过 PPL 并避免检测，支持内存转储的混淆，例如 LSASS 进程转储，并有助于将转储文件传输到远程计算机 – SecTodayBot

• Hackers Exploit Pre-Authentication RCE Vulnerabilities in Adobe ColdFusion:
https://cybersecuritynews.com/pre-authentication-rce-adobe-coldfusion/

   ・ Adobe ColdFusion 远程代码执行漏洞利用，尽管引入了修复程序来解决这些缺陷，但恶意软件变体仍被发现在野外被利用。 – SecTodayBot

• Minor firefox DoS - semi silently polluting ~/Downloads with files:
https://seclists.org/fulldisclosure/2023/Sep/2

   ・ Firefox DoS - 半静默污染下载文件夹 – SecTodayBot

• Top 10 Online Courses to Become a Smart Contract Auditor:
https://www.cyberscope.io/blog/top-10-online-courses-to-become-a-smart-contract-auditor

   ・ 成为智能合约审计员的十大在线课程 – SecTodayBot

• Hackers Exploit MinIO Storage System Vulnerabilities to Compromise Servers:
https://thehackernews.com/2023/09/hackers-exploit-minio-storage-system.html

   ・ MinIO高性能对象存储系统存在远程代码执行漏洞 – SecTodayBot

• Promptmap – Tool to Test Prompt Injection Attacks on ChatGPT Instances:
https://gbhackers.com/promptmap-chatgpt/

   ・ 允许用户测试 ChatGPT 实例上的提示注入攻击的工具。 – SecTodayBot

• Powershell and Obfuscation:
https://onlyf8.com//powershell-obfuscationEN

   ・ 如何使用 Powershell 命令和脚本来检测用户的攻击并避开安全产品 – SecTodayBot

• awesome-soc-analyst:
https://github.com/LetsDefend/awesome-soc-analyst

   ・ 用于分析SOC的工具集合 – SecTodayBot

* 查看或搜索历史推送内容请访问：
https://sec.today

* 新浪微博账号：腾讯玄武实验室
https://weibo.com/xuanwulab