漏洞 Vulnerability CVE-2020-4362/CVE-2020-4276: WebSphere 权限提升漏洞通告 https://cert.360.cn/warning/detail?id=1619d7193cb254a6275e8216ced181b7 恶意软件 Malware 动态分析获取解密后的KPOT恶意软件 https://isc.sans.edu/diary/26010 安全事件 Security Incident 疑似CVE-2020-0796远程代码执行利用出现，将持续保持关注 https://twitter.com/RicercaSec/status/1249904222490918917 安全资讯 Security Information Gaming controllers制造商暴露了110万条客户记录 https://www.hackread.com/gaming-controllers-manufacturer-exposed-customer-records/ 在黑客论坛上出售了141万美国医生的个人数据 https://www.hackread.com/personal-data-us-doctors-sold-hacker-forum/ 国家安全部披露多起境外APT窃密案例 https://www.anquanke.com/post/id/203082 安全研究 Security Research 一次“SSRF–>RCE”的艰难利用 https://www.anquanke.com/post/id/202966 两种最新Bypass ETW的方法 https://www.anquanke.com/post/id/202797 《Windows Kernel Programming》用于练习的驱动程序 https://truneski.github.io/post/2020/04/03/book-review-windows-kernel-programming-and-creating-drivers-of-select-exercises/ 学习如何从NTDS.dit文件转储证书 https://www.hackingarticles.in/credential-dumping-ntds-dit/ QT中的QString和QList的内存布局 https://twitter.com/stu_gentry/status/1249751054989721605 TikTok漏洞使黑客能够向用户显示虚假视频 https://www.mysk.blog/2020/04/13/tiktok-vulnerability-enables-hackers-to-show-users-fake-videos/ 进程注入第2部分| QueueUserAPC（）（可绕过Sysmon） https://sevrosecurity.com/2020/04/13/process-injection-part-2-queueuserapc/