• Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup:
https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606
・ 介绍了作者参加m0leCon Finals 2023 CTF的经历,讨论了内核模块中的新漏洞以及用于利用该漏洞的技术。
– SecTodayBot
• Introducing Fuzzomatic: Using AI to Automatically Fuzz Rust Projects from Scratch:
https://research.kudelskisecurity.com/2023/12/07/introducing-fuzzomatic-using-ai-to-automatically-fuzz-rust-projects-from-scratch/
・ 介绍了一种名为Fuzzomatic的自动化模糊测试工具,用于在Rust项目中生成模糊目标并发现漏洞。该工具结合了AI和确定性技术,以实现其目标,并对Rust项目进行自动模糊测试。
– SecTodayBot
• Few words about Java code hygiene:
https://pvs-studio.com/en/blog/posts/java/1086/?utm_source=firefly&utm_medium=twitter
・ 介绍了使用静态分析工具PVS-Studio来识别与网络安全相关的代码问题。
– SecTodayBot
• ISPConfig 3.2.11 PHP Code Injection:
https://packetstormsecurity.com/files/176126
・ ISPConfig中存在的PHP代码注入漏洞,提供了详细的漏洞分析和利用漏洞所需的POC
– SecTodayBot
• Docker cgroups Container Escape:
https://packetstormsecurity.com/files/176099
・ Docker cgroups 容器逃逸
– SecTodayBot
• Story of the year: the impact of AI on cybersecurity:
https://securelist.com/story-of-the-year-2023-ai-impact-on-cybersecurity/111341/
・ 生成式人工智能对网络安全带来新的风险和漏洞
– SecTodayBot
• Analyzing AsyncRAT's Code Injection into aspnet_compiler.exe Across Multiple Incident Response Cases:
https://www.trendmicro.com/en_us/research/23/l/analyzing-asyncrat-code-injection-into-aspnetcompiler-exe.html
・ 讨论了跨多个事件响应案例的AsyncRAT感染链的分析,重点阐明了aspnet_compiler.exe的滥用,以及恶意植入AsyncRAT有效负载的相关细节。
– SecTodayBot
• Say hello to the next chapter of the Testing Handbook!:
https://blog.trailofbits.com/2023/12/11/say-hello-to-the-next-chapter-of-the-testing-handbook/
・ 提供了如何有效使用CodeQL的指导。介绍了CodeQL的设置、创建CodeQL数据库、编写和运行自定义查询、单元测试和调试以及将CodeQL集成到现有CI/CD流程中。
– SecTodayBot
• Safari, Hold Still for NaN Minutes! - Exodus Intelligence:
https://blog.exodusintel.com/2023/12/11/safari-hold-still-for-nan-minutes/
・ 发现影响Safari JavaScript引擎JavaScriptCore的一些漏洞,并深入分析了NaN bug。
– SecTodayBot
• LLVM CFI and Cross-Language LLVM CFI Support for Rust¶:
https://rcvalle.com/blog/2023/12/09/llvm-cfi-and-cross-language-llvm-cfi-support-for-rust/
・ Rust编译器实现了LLVM CFI和跨语言LLVM CFI,提供了第一个混合语言二进制文件的细粒度前向边缘控制流保护实现。文章重点讨论了Rust编译器中对前向边缘控制流保护的支持不足,以及如何解决混合语言二进制文件中的跨语言攻击问题。
– SecTodayBot
* 查看或搜索历史推送内容请访问:
https://sec.today
* 新浪微博账号:腾讯玄武实验室
https://weibo.com/xuanwulab