https://andrewmohawk.com/2016/06/05/hackfu-2016-writeup/

HackFu 2016 Writeup

http://www.harmj0y.net/blog/powershell/upgrading-powerup-with-psreflect/

powerup的psreflect模块更新

https://github.com/IMcPwn/browser-backdoor

浏览器后门:跨平台的websocket远程访问工具

https://isc.sans.edu/forums/diary/Neutrino+EK+and+CryptXXX/21141

Neutrino EK 和 CryptXXX 恶意欺诈勒索软件

https://github.com/sogeti-esec-lab/ransomware-xtbl-decrypt-tool

Xtbl恶意软件解密工具

https://github.com/lcatro/vuln_javascript

模拟一个存在漏洞的JavaScript 运行环境,用来学习浏览器漏洞原理和练习如何编写Shellcode

https://github.com/Necrosys/zerowine-tryout

Zero Wine Tryouts: 一个开源的恶意软件分析工具

https://github.com/pldupont/SQLIDetectionDriver

基于JDBC 驱动的SQL注入检测工具

https://github.com/wtakuo/BOFDemo

IA-32架构的简单缓冲区溢出漏洞DEMO

https://github.com/bittorrent3389/demo-physmap-spraying

通过ret2dir绕过 smep & NX保护实现提权的DEMO

https://www.fireeye.com/blog/threat-research/2016/06/rotten_apples_apple.html

模仿iCloud,apple官方域名的钓鱼攻击

https://paraschetal.in/writing-your-own-shellcode/

写你自己的SHELLCODE

https://blog.zsec.uk/pwning-pornhub/

Pwning Pornhub

http://esec-lab.sogeti.com/posts/2016/06/07/the-story-of-yet-another-ransomfailware.html

尝试反向工程一个恶意欺诈勒索软件

http://www.securityfocus.com/archive/1/538617

Microsoft Education – 代码执行漏洞

http://j00ru.vexillium.org/?p=2245

(CVE-2014-2240, CVE-2014-9659) 在Adobe CFF 中的基于栈的缓冲区溢出漏洞细节

http://old.iseclab.org/people/andrew/download/oakland09.pdf

恶意软件模拟器自动反向工程

https://blogs.mcafee.com/mcafee-labs/threat-actors-employ-com-technology-shellcode-evade-detection/

使用COM技术逃避检测的SHELLCODE

https://www.helpnetsecurity.com/2016/06/07/fastpos-malware/

FastPOS恶意软件寻找数据后立即提取数据,报告地址在http://documents.trendmicro.com/assets/fastPOS-quick-and-easy-credit-card-theft.pdf

https://packetstormsecurity.com/files/137343/valvesteam-escalate.txt

Valve Steam 3.42.16.13本地提权漏洞

https://blog.didierstevens.com/2016/06/07/recovering-a-ransomed-pdf/

恢复一个被恶意软件加密的PDF文件