资讯类
Adobe修补Flash,Dreamweaver中的关键漏洞
http://www.zdnet.com/article/adobe-patches-critical-vulnerabilities-in-flash-dreamweaver/
俄罗斯torrenting客户端后门导致400k恶意软件爆发
https://thehackernews.com/2018/03/windows-malware-hacking.html
CTS 实验室因太快泄露漏洞信息遭到严重抨击
http://www.zdnet.com/article/linus-torvalds-slams-cts-labs-over-amd-vulnerability-report/
PSA:谨防Windows PowerShell凭据请求提示
Let’s Encrypts使用ACMEv2提供免费的通配符SSL证书
http://www.zdnet.com/article/lets-encrypt-free-wildcard-certificates-now-live/
Microsoft删除Windows 10用户的防病毒注册表项检查
一些英特尔微代码补丁已经出现在微软更新目录中
技术类
Microsoft安全通报CVE-2018-0787:ASP.NET核心特权提升漏洞
https://github.com/aspnet/Home/issues/2954
Reverse Engineering APIs: Coffee Meets Bagel
https://medium.com/@_nikpatel/reverse-engineering-apis-coffee-meets-bagel-2eda71295613
关于ADOBE COLDFUSION的讨论
https://codewhitesec.blogspot.hk/2018/03/exploiting-adobe-coldfusion.html
医疗安全——A therapeutic postmortem of connected medicine
Time of death? A therapeutic postmortem of connected medicine
Hermes 勒索软件通过近日曝出的Flash 0day漏洞攻击韩国
Hermes ransomware distributed to South Koreans via recent Flash zero-day
Tropic Trooper的新策略
https://blog.trendmicro.com/trendlabs-security-intelligence/tropic-trooper-new-strategy/
如何制作密码破解程序
https://secapps.com/blog/2018/03/how-to-make-a-password-cracker
加密聊天:第一部分
https://0x00sec.org/t/encrypted-chat-part-i/5839
MikroTik RouterOS Chimay—Red堆栈冲突远程代码执行漏洞
https://cxsecurity.com/issue/WLB-2018030114
评论