기술 문서 자료 (2021.01 - 4주)

[Exploitation]

⦿ A Look at iMessage in iOS 14 - Samuel Groß

https://googleprojectzero.blogspot.com/2021/01/a-look-at-imessage-in-ios-14.html

 

⦿ Effectively Fuzzing the IPC Layer in Firefo - Christoph Kerschbaumer and decoder

https://blog.mozilla.org/attack-and-defense/2021/01/27/effectively-fuzzing-the-ipc-layer-in-firefox/

 

⦿ Heap-based buffer overflow in Sudo (CVE-2021-3156) - Qualys Security Advisory

https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit

https://www.qualys.com/2021/01/26/cve-2021-3156/baron-samedit-heap-based-overflow-sudo.txt

 

⦿ Possible RCE through Windows Custom Protocol on Windows client

https://hackerone.com/reports/1001255

 

⦿ Pwn2Own: A Tale of a Bug Found and Lost Again - Hanno Heinrichs and Lukas Kupczyk

https://www.crowdstrike.com/blog/pwn2own-tale-of-a-bug-found-and-lost-again/

 

⦿ Windows Exploitation Tricks: Trapping Virtual Memory Access - James Forshaw

https://googleprojectzero.blogspot.com/2021/01/windows-exploitation-tricks-trapping.html

 

 

 

[Web]

⦿ The Secret Parameter, LFR, and Potential RCE in NodeJS Apps

https://blog.shoebpatel.com/2021/01/23/The-Secret-Parameter-LFR-and-Potential-RCE-in-NodeJS-Apps/

 

 

[Network]

⦿ VisualDoor: SonicWall SSL-VPN Exploit

https://darrenmartyn.ie/2021/01/24/visualdoor-sonicwall-ssl-vpn-exploit/

 

 

[Cyber Operation, Malware]

⦿ A Deep Dive Into Patchwork APT Group - cybleinc

https://cybleinc.com/2021/01/20/a-deep-dive-into-patchwork-apt-group/

 

⦿ Deep dive into the Solorigate second-stage activation: From SUNBURST to TEARDROP and Raindrop - Microsoft

https://www.microsoft.com/security/blog/2021/01/20/deep-dive-into-the-solorigate-second-stage-activation-from-sunburst-to-teardrop-and-raindrop/

 

⦿ Detecting zero days in software supply chain with static and dynamic analysis - Ajin Abraham

https://ajinabraham.com/blog/detecting-zero-days-in-software-supply-chain-with-static-and-dynamic-analysis

 

⦿ Malware development part 6 - Some advanced obfuscation techniques for C code - Patryk Czeczko

https://0xpat.github.io/Malware_development_part_6/

 

 

[보안연구원 타깃 공격 관련]

⦿ DPRK Malware Targeting Security Researchers

https://norfolkinfosec.com/dprk-malware-targeting-security-researchers/

 

⦿ New campaign targeting security researchers - Adam Weidemann

https://blog.google/threat-analysis-group/new-campaign-targeting-security-researchers/

 

⦿ 중국 Anheng 측 분석

https://mp.weixin.qq.com/s/UBD0hyXUooYuDrpsz8-MtQ

 

⦿ 중국 360 측 분석

https://mp.weixin.qq.com/s/W-C_tKVnXco8C3ctgAjoNQ

 

 

[기타]

⦿ Jailbreak Forum

https://jailbreak.fce365.info/

 

⦿ 버그바운티 팁

https://gowsundar.gitbook.io/book-of-bugbounty-tips/

 

⦿ 버그헌터 핸드북

https://gowthams.gitbook.io/bughunter-handbook/

 

 

[툴]

⦿ Hooking iOS Kernel Functions From Userspace

https://github.com/jsherman212/xnuspy

 

⦿ iOS virtualization tool for individual subscribers 

https://corellium.com/blog/ios-for-individuals