漏洞 Vulnerability Torrent 3GP Converter 1.51栈溢出 https://cxsecurity.com/issue/WLB-2020020003 安全工具 Security Tools GDA：安卓逆向工具 https://www.kitploit.com/2020/02/gda-android-reversing-tool-new.html KDU：内核程序工具 https://github.com/hfiref0x/KDU 安全事件 Security Incident 冒充Spamhaus的恶意软件钓鱼活动 https://www.bleepingcomputer.com/news/security/devious-spamhaus-phishing-scam-warns-youre-on-an-email-block-list/ 伊朗黑客利用恶意软件瞄准美国政府供应商 https://threatpost.com/iran-hackers-us-gov-malware/152452/ 微软警告TA505组织正在改变网络攻击活动中的策略 https://securityaffairs.co/wordpress/97150/breaking-news/ta505-changes-tactics.html 黑客使用新冠状病毒为诱饵话题传播Emotet恶意软件 https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/emotet-uses-coronavirus-scare-in-latest-campaign-targets-japan 恶意软件 Malware Crimson RAT恶意软件分析 https://medium.com/@dinu135dk/revive-of-crimson-rat-6b8838920c02 揭幕JsOutProx：一种新的恶意软件植入程序 https://blog.yoroi.company/research/unveiling-jsoutprox-a-new-enterprise-grade-implant/ 安全研究 Security Research Windows 10 UAC绕过 https://github.com/sailay1996/UAC_Bypass_In_The_Wild OpenSK：开源的安全密钥实现 https://security.googleblog.com/2020/01/say-hello-to-opensk-fully-open-source.html 工控安全（十）——移动通信基础 https://www.anquanke.com/post/id/197747 提取React Native程序中包含的JavaScript https://blog.assetnote.io/bug-bounty/2020/02/01/expanding-attack-surface-react-native/ qemu-pwn-cve-2015-5165信息泄露漏洞分析 https://www.anquanke.com/post/id/197637 Exploit Spring Boot Actuator之Spring Cloud Env学习笔记 https://www.freebuf.com/articles/web/223923.html 远程云端执行（RCE）：Azure云架构中的漏洞分析（Part 1） https://www.anquanke.com/post/id/197713