漏洞 Vulnerability 【补丁绕过】CVE-2020-5902: F5 BIG-IP 远程代码执行漏洞通告更新 https://cert.360.cn/warning/detail?id=a9bd3b42b2a9cfe1eef921d5bdfb0243 【更新】CVE-2020-1457/1425: Microsoft Windows 编解码器库远程执行代码漏洞通告 https://cert.360.cn/warning/detail?id=d2043fdd82838df9917318db3a6e9bdb MikroTik RouterOS 的四个漏洞 https://seclists.org/fulldisclosure/2020/Jul/6 CVE-2020-5902：F5 BIG-IP 远程代码执行漏洞在野利用分析 https://research.nccgroup.com/2020/07/05/rift-f5-networks-k52145254-tmui-rce-vulnerability-cve-2020-5902-intelligence/ Chrome WebSocket 网络服务中一个UAF漏洞 https://bugs.chromium.org/p/chromium/issues/detail?id=1065704 安全研究 Security Research 分析DLL搜索顺序劫持的原理 https://www.contextis.com/en/blog/dll-search-order-hijacking Windows 进程注入: EM_GETHANDLE, WM_PASTE 和 EM_SETWORDBREAKPROC https://modexp.wordpress.com/2020/07/07/wpi-wm-paste/ Ghidra 使用教程，图文并茂 https://byte.how/posts/what-are-you-telling-me-ghidra/ CVE-2018-16621：利用Java beans进行RCE https://securitylab.github.com/research/bean-validation-RCE 深入分析三星TrustZone（Part 3） https://blog.quarkslab.com/a-deep-dive-into-samsungs-trustzone-part-3.html 2020 Android安全会议上的议题：《 Memory Tagging for the Kernel: Tag-Based KASAN》 https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit 恶意软件 Malware 分析 VBA 恶意样本中滥用 EnhMetaFileBits 和 AddPicture https://medium.com/@laughing_mantis/malicious-shapes-in-office-part-2-910375cd05f3 配置Windows域来动态分析混淆的横向移动恶意工具 https://www.fireeye.com/blog/threat-research/2020/07/configuring-windows-domain-dynamically-analyze-obfuscated-lateral-movement-tool.html 勒索软件WastedLocker在2020年的活动分析 https://blog.talosintelligence.com/2020/07/wastedlocker-emerges.html