Tencent Security Xuanwu Lab Daily News
• Exploiting a remote heap overflow with a custom TCP stack:
https://www.synacktiv.com/publications/exploiting-a-remote-heap-overflow-with-a-custom-tcp-stack.html
・ 通过修改TCP协议栈来帮助远程利用, 利用一个堆溢出漏洞在pwn2own中攻破Western Digital MyCloudHome NAS
– xmzyshypnc
• AI-powered Bing Chat spills its secrets via prompt injection attack:
https://arstechnica.com/information-technology/2023/02/ai-powered-bing-chat-spills-its-secrets-via-prompt-injection-attack/
・ 对Bing Chat进行提示词泄漏攻击
– keenan
• How I hacked into a Telecom Network — Part 1 (Getting the RCE):
https://link.medium.com/LDhm3bGroxb
・ 介绍渗透攻击电信网络的过程
– WireFish
• Learning Semgrep:
https://goingbeyondgrep.com/posts/learning-semgrep/
・ 学习 Semgrep教程
– lanying37
• [Tools] All about LeakSanitizer:
https://maskray.me/blog/2023-02-12-all-about-leak-sanitizer
・ 安全研究员 MaskRay(宋教授)对 LeakSanitizer 的原理介绍
– WireFish
• 有趣的Hack-A-Sat黑掉卫星挑战赛——被破坏的阿波罗计算机(解法一) – FreeBuf网络安全行业门户:
https://www.freebuf.com/articles/357367.html
・ Hack-A-Sat 比赛 writeup
– WireFish
* 查看或搜索历史推送内容请访问:
https://sec.today
* 新浪微博账号:腾讯玄武实验室
https://weibo.com/xuanwulab
原文始发于微信公众号(腾讯玄武实验室):每日安全动态推送(2-15)
