Tencent Security Xuanwu Lab Daily News
• [Windows] Windows Kernel Introspection (WKI):
https://amonsec.net/posts/2022/09/0000000d/
・ Windows Kernel Introspection (WKI)
– lanying37
• [Tools] Can OpenAI Codex and Other Large Language Models Help Us Fix Security Bugs?:
https://arxiv.org/abs/2112.02125
・ 基于 Large Language Models 实现的代码补全机制在自动化漏洞修复方向的研究
– Jett
• FUSE-T:
https://www.fuse-t.org/
・ FUSE-T – macOS 平台不依赖内核扩展实现的 FUSE 文件系统
– Jett
• Inside the Windows Cache Manager:
https://www.linkedin.com/pulse/inside-windows-cache-manager-artem-baranov
・ Windows Cache Manager 内存缓存机制研究
– Jett
• pfBlockerNG Unauth RCE Vulnerability:
https://www.ihteam.net/advisory/pfblockerng-unauth-rce-vulnerability/
・ pfsense 的 pfBlockerNG 插件被发现 unauth RCE 漏洞
– Jett
• Simple IBM i (AS/400) hacking – Silent Signal Techblog:
https://blog.silentsignal.eu/2022/09/05/simple-ibm-i-as-400-hacking/
・ Simple IBM i (AS/400) hacking
– Jett
• [macOS] www.mandiant.com:
https://www.mandiant.com/resources/blog/reviewing-macos-unified-logs
・ macOS 新版本日志系统 Unified Logs 的实现分析
– Jett
• How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin – a Red Teaming Tale:
https://www.shielder.com/blog/2022/09/how-to-decrypt-manage-engine-pmp-passwords-for-fun-and-domain-admin-a-red-teaming-tale/
・ 后渗透阶段解密 ManageEngine Password Manager Pro 保存的密码
– Jett
• google/safetext:
https://github.com/google/safetext
・ 替换 go 的 text/template 文本模板,防护注入漏洞
– Jett
• Mobile Pentesting 101 – Bypassing Biometric Authentication – Security Café:
https://securitycafe.ro/2022/09/05/mobile-pentesting-101-bypassing-biometric-authentication/
・ 手机平台的生物认证技术以及对应的 Bypass 研究
– Jett
* 查看或搜索历史推送内容请访问:
https://sec.today
* 新浪微博账号: 腾讯玄武实验室
https://weibo.com/xuanwulab
原文始发于微信公众号(腾讯玄武实验室):每日安全动态推送(09-06)
