每日安全动态推送(12-21)

Tencent Security Xuanwu Lab Daily News

• README.rst:
https://github.com/terryyin/lizard

   ・ Lizard – 代码复杂度分析工具 – Jett

• 从蜜罐视角看Apache Log4j2漏洞攻击趋势:
https://mp.weixin.qq.com/s/Hy9VYJT8y1JJqHnxy5aVGA

   ・ 从蜜罐视角看 Apache Log4j2 漏洞攻击趋势 – Jett

• 解析CVE-2021-42287与CVE-2021-42278:
https://tttang.com/archive/1380/

   ・ 解析(CVE-2021-42287)与(CVE-2021-42278). – lanying37

• RCE in Visual Studio Code’s Remote WSL for Fun and Negative Profit:
https://parsiya.net/blog/2021-12-20-rce-in-visual-studio-codes-remote-wsl-for-fun-and-negative-profit/

   ・ Windows WSL 中运行的 Visual Studio Code server 被发现存在 RCE 漏洞 – Jett

• GitHub – FortyNorthSecurity/EyeWitness: EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.:
https://github.com/FortyNorthSecurity/EyeWitness

   ・ EyeWitness – 为网站创建快照的工具 – Jett

• [Firmware] Inside a PBX – Discovering a Firmware Backdoor:
https://blog.redteam-pentesting.de/2021/inside-a-pbx/

   ・ Auerswald PBX 电话交换机被发现固件级后门 – Jett

• Intruding 5G core networks from outside and inside | PentHertz Blog:
https://penthertz.com/blog/Intruding-5G-core-networks-from-outside-and_inside.html

   ・ 5G 网络的两种类型，以及经典漏洞在 5G 网络的攻击场景 – Jett

• [macOS] [PDF] https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Fan-The-Price-Of-Compatibility-Defeating-MacOS-Kernel-Using-Extended-File-Attributes.pdf:
https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Fan-The-Price-Of-Compatibility-Defeating-MacOS-Kernel-Using-Extended-File-Attributes.pdf

   ・ The Price of Compatibility: Defeating macOS Kernel Using Extended File Attributes – Jett

• exploits/CVE-2021-4061 at main · msrkp/exploits · GitHub:
https://github.com/msrkp/exploits/tree/main/CVE-2021-4061

   ・ V8 CVE-2021-4061 类型混淆漏洞的 PoC – Jett

• [Tools] Rogue Assembly Hunter:
https://github.com/bohops/RogueAssemblyHunter

   ・ 在进程中扫描 .NET CLR 模块的工具 – Jett

• ESFang – Exploring the macOS Endpoint Security Framework (ESF) for Threat Detection:
https://labs.f-secure.com/blog/esfang-exploring-the-macos-endpoint-security-framework-for-threat-detection/

   ・ ESFang – 基于 macOS Endpoint Security 框架的威胁检测方案 – Jett

* 查看或搜索历史推送内容请访问：
https://sec.today

* 新浪微博账号：腾讯玄武实验室
https://weibo.com/xuanwulab

原文始发于微信公众号（腾讯玄武实验室）：每日安全动态推送(12-21)