From 6d6c5b3f94a2ea79734c794575f0460421cfbbf1 Mon Sep 17 00:00:00 2001 From: ubuntu-master <204118693@qq.com> Date: Wed, 27 Aug 2025 00:00:02 +0800 Subject: [PATCH] =?UTF-8?q?=E6=9B=B4=E6=96=B0?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- results/2025-08-26.md | 35 ++++++++++++++++++++++++++++++++++- 1 file changed, 34 insertions(+), 1 deletion(-) diff --git a/results/2025-08-26.md b/results/2025-08-26.md index 86537bc..c484269 100644 --- a/results/2025-08-26.md +++ b/results/2025-08-26.md @@ -3,7 +3,7 @@ > 本文由AI自动生成,基于对安全相关仓库、CVE和最新安全研究成果的自动化分析。 > -> 更新时间:2025-08-26 19:12:38 +> 更新时间:2025-08-26 21:48:22 @@ -21,6 +21,9 @@ * [SysAid On-Prem XML漏洞CVE-2025-2775](https://mp.weixin.qq.com/s?__biz=MzkzMTcwMTg1Mg==&mid=2247492556&idx=1&sn=1d2805c6aad6251fbb963494b052a452) * [同样是写POC,为什么别人比你快100倍?](https://mp.weixin.qq.com/s?__biz=Mzg5MDQyMzg3NQ==&mid=2247484947&idx=1&sn=0437ff1745a0ae6d99e7d378290dc5d0) * [幻影(Phantom)SRC漏洞挖掘辅助工具](https://mp.weixin.qq.com/s?__biz=MzkyMTQzNTM3Ng==&mid=2247484193&idx=1&sn=f77a4dbe73b069585e448ad4473e1d7a) +* [SRC实战CSRF漏洞](https://mp.weixin.qq.com/s?__biz=Mzg2ODYxMzY3OQ==&mid=2247519714&idx=1&sn=dfa23db3ac214f2d9435b3c48c24faf5) +* [AI译文 思科 IOS XE WLC 任意文件上传漏洞 CVE-2025-20188 分析](https://mp.weixin.qq.com/s?__biz=Mzg3MTY4NjUyOQ==&mid=2247485679&idx=1&sn=584c77e0621cf58fe5350370e8d01b65) +* [PipeMagic后门的演化:从 RansomExx 攻击事件到 CVE-2025-29824漏洞](https://mp.weixin.qq.com/s?__biz=MzAxNjg3MjczOA==&mid=2247486989&idx=1&sn=7f6371bfa680c9b6722211634dc7163b) ### 🔬 安全研究 @@ -39,6 +42,9 @@ * [新型单比特翻转攻击颠覆认知,可向任意AI精准植入后门](https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651326728&idx=1&sn=b15e7d0174387182b6b9ca81b53bb883) * [一种宣称“可闪电般窃取数据”的新型macOS窃密软件现身暗网;法国零售巨头欧尚再遭网络攻击;谷歌强制要求开发者实名制 | 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651138413&idx=2&sn=44db34cc39894f6ccea9a87e8664c283) * [40万份敏感文件被窃取,日产Creative Box遭 Qilin 勒索组织攻击震动汽车圈](https://mp.weixin.qq.com/s?__biz=MzkyOTQ0MjE1NQ==&mid=2247503078&idx=1&sn=feda80413e71fb8430140e283851e114) +* [多源威胁情报的聚合平台 - threat-intel-hub](https://mp.weixin.qq.com/s?__biz=MzIzNTE0Mzc0OA==&mid=2247486490&idx=1&sn=9192c095528862ce27eaf6534ab60b46) +* [63艘船舶遭网络攻击!通讯受损!](https://mp.weixin.qq.com/s?__biz=MzU2MTQwMzMxNA==&mid=2247542905&idx=1&sn=6605871a6929b9f0555a5ffbca47718e) +* [APT36黑客利用Linux.desktop文件在攻击中安装恶意软件](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247584366&idx=1&sn=36c7b84cd3835f39f6cd1c28308cc6f2) ### 🛠️ 安全工具 @@ -46,6 +52,7 @@ * [Java 代码审计(一)Java代码审计的基本概念](https://mp.weixin.qq.com/s?__biz=MzkwMjI2OTc3MQ==&mid=2247488481&idx=1&sn=c2cc445f76396ae810d96c232601ae89) * [SSH-Snake - 基于 SSH 的自动化网络遍历](https://mp.weixin.qq.com/s?__biz=Mzg2NTk4MTE1MQ==&mid=2247487798&idx=1&sn=f563421f13c9698bb06643d8fbdcd527) * [Windows渗透工具集合分享!渗透工具箱制作教程!](https://mp.weixin.qq.com/s?__biz=MzkwOTczNzIxNQ==&mid=2247486815&idx=1&sn=95ef67ad4fa3fa221fe0ffb74f410cd0) +* [不会写代码,却能拥有自己的渗透工具?490+人已经实现了](https://mp.weixin.qq.com/s?__biz=Mzk0OTY1NTI5Mw==&mid=2247494206&idx=1&sn=73c8b61cb96ab9c4e27fcee8266cbb70) ### 📚 最佳实践 @@ -60,6 +67,7 @@ * [10分钟掌握Claude Pro功能高阶实操指南!(附独家使用技巧)。](https://mp.weixin.qq.com/s?__biz=MzU4MzM4MzQ1MQ==&mid=2247510749&idx=6&sn=79950427b4fec2044bbf3ace4c91b60b) * [10分钟掌握Claude Pro功能完全指南!(高手都在用的7个隐藏技巧)。](https://mp.weixin.qq.com/s?__biz=MzU4MzM4MzQ1MQ==&mid=2247510749&idx=7&sn=a3574acb906d9cfeda80bf907c5c25b3) * [10分钟掌握Claude Sonnet诗歌创作高级指南!(附详细操作步骤)。](https://mp.weixin.qq.com/s?__biz=MzU4MzM4MzQ1MQ==&mid=2247510749&idx=8&sn=b6c35302c1facda77ce076817681b83d) +* [精品产品 | 捷普配置核查系统](https://mp.weixin.qq.com/s?__biz=MzI2MzU0NTk3OA==&mid=2247506886&idx=2&sn=3b1a57e9428075a2b72c3a61c4dd3331) ### 🍉 吃瓜新闻 @@ -69,6 +77,7 @@ * [腾讯新闻怎么了?好多 0,1 在哪???](https://mp.weixin.qq.com/s?__biz=MzkzNDIzNDUxOQ==&mid=2247502199&idx=1&sn=30ff21237a5aa126db8427291adf6805) * [整车渗透:从入侵朋友的车辆开始,解锁root权限](https://mp.weixin.qq.com/s?__biz=MzU2OTcwMjMwOQ==&mid=2247483713&idx=1&sn=07882530234b64a7d12474f21c79b857) * [专家解读 | 张格:《海南自由贸易港国际数据中心发展规定》解读](https://mp.weixin.qq.com/s?__biz=MzAwNTc0ODM3Nw==&mid=2247489898&idx=1&sn=885b1d35e1e9c1582388de18f2443273) +* [奇安信将亮相2025中国国际大数据产业博览会](https://mp.weixin.qq.com/s?__biz=MzU0NDk0NTAwMw==&mid=2247628743&idx=2&sn=f4e6bad0584218a95ea4f37bf8ba3cc9) ### 📌 其他 @@ -133,6 +142,30 @@ * [中国物联网安全行业概览](https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655290121&idx=5&sn=d45507c5d303075cedd546dfac8482a4) * [智慧校园物联网解决方案PPT](https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655290121&idx=7&sn=1f8419e405892ee4171511c9aaeb5d6c) * [中国智能物联网发展机遇与挑战PPT](https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655290121&idx=8&sn=73c18c13876bc8a4241fa0fba1696dd9) +* [Hvv网络安全实战化演练的历史](https://mp.weixin.qq.com/s?__biz=MzUzMDgwMjY1Mg==&mid=2247485820&idx=1&sn=e6cd3693d048e7feee193b68b620d7b0) +* [第二届“长城杯”信息安全铁人三项赛(作品赛)总决赛在赣州成功举办](https://mp.weixin.qq.com/s?__biz=MzI1NzQ0NTMxMQ==&mid=2247490733&idx=1&sn=c767468568897d0dbf45da3858093860) +* [src专项挖掘知识库](https://mp.weixin.qq.com/s?__biz=Mzg2ODYxMzY3OQ==&mid=2247519714&idx=2&sn=17c89c27a54b00b510737f7c2a0d9b9c) +* [绷不住,今天抢抢玄道的题材](https://mp.weixin.qq.com/s?__biz=Mzk0NDQwMDY1Nw==&mid=2247486132&idx=1&sn=ba2176a14b730a20f670194be7b7f46b) +* [半年度报告:中孚信息2025年半年度营收4.17亿,同比增加9.46%,亏损0.76亿,同比亏损收窄](https://mp.weixin.qq.com/s?__biz=MzUzNjkxODE5MA==&mid=2247493274&idx=1&sn=9529dee1d5ced333ecf8fabb6714b07c) +* [瓜分10万奖金池!赢取智能AI硬件开发大赛冠军!](https://mp.weixin.qq.com/s?__biz=MjM5OTA4MzA0MA==&mid=2454939780&idx=1&sn=fd7232c6e69723284168ac7c97fd1add) +* [云攻防之云原生云原生kubernetes安全问题](https://mp.weixin.qq.com/s?__biz=MzI0MzM3NTQ5MA==&mid=2247484710&idx=1&sn=177680239da8469ab4b0cdaa3900d22a) +* [这本神书累积销售超18w,第3版正式上市](https://mp.weixin.qq.com/s?__biz=MzUyMTE0MDQ0OA==&mid=2247494219&idx=1&sn=0aba4ac03511dc68ad904298ab8601a6) +* [涨知识政务智能问答的“安全考卷”,我们这样打分!](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649254052&idx=1&sn=3b42c5c065392033d7a5bfb1fb788115) +* [工信动态工业和信息化部:做好信息化和工业化深度融合这篇大文章](https://mp.weixin.qq.com/s?__biz=MjM5NzYwNDU0Mg==&mid=2649254052&idx=2&sn=b73d64a9699a7037c53aa54e77607057) +* [睡眠,就能改命](https://mp.weixin.qq.com/s?__biz=MzkwMzI1ODUwNA==&mid=2247488183&idx=1&sn=df68584d7c99c2b19bb60358ef08e12c) +* [xctf攻防世界 GFSJ0168 misc CTF can_has_stdioxa0writeup](https://mp.weixin.qq.com/s?__biz=MzU2NzIzNzU4Mg==&mid=2247491033&idx=1&sn=6949ded5e52237caf6042efd0d8eeccf) +* [2025半年报速览:数智创新 质效跃升](https://mp.weixin.qq.com/s?__biz=MzA3NDQ0MzkzMA==&mid=2651734148&idx=1&sn=37c6eceae792cc43cd62fcede9d86106) +* [国内外的网络安全对比](https://mp.weixin.qq.com/s?__biz=MzkzNTYwMTk4Mw==&mid=2247489694&idx=1&sn=94ae19b3020b4cf69908c1127904f1aa) +* [如果这个有人买的话!](https://mp.weixin.qq.com/s?__biz=MzU2NDY2OTU4Nw==&mid=2247523181&idx=1&sn=a7bff7b068650a4e03395b77ab02e048) +* [appsx|V1.2.0 重构指纹识别模块](https://mp.weixin.qq.com/s?__biz=Mzk3NTc2NDk2MQ==&mid=2247483905&idx=1&sn=dafb935dc4f4c6fc962b6a1f68970702) +* [《2025网络安全十大创新方向》发布,奇安信成为推荐领域最多厂商](https://mp.weixin.qq.com/s?__biz=MzU0NDk0NTAwMw==&mid=2247628743&idx=1&sn=72d546215d183088892d55606e287a92) +* [一图看懂|山石网科2025半年报](https://mp.weixin.qq.com/s?__biz=MzUzMDUxNTE1Mw==&mid=2247512676&idx=1&sn=15909547aec276b81366d2b99f0ba1c5) +* [山石网科中标|河南移动政企市场DICT业务合作伙伴招募项目](https://mp.weixin.qq.com/s?__biz=MzAxMDE4MTAzMQ==&mid=2661302421&idx=1&sn=825f2129ad21cb424cc749f0eece963c) +* [装机必备,好价来袭!Bartender5、CareUEyes、PopClip……热门软件6折起](https://mp.weixin.qq.com/s?__biz=MzI2MjcwMTgwOQ==&mid=2247492574&idx=1&sn=3f42c2b0eb3c54aabb5e649e25106592) +* [一期一会 | 捷普2025年三季度JCSA培训报名开始,戳我立即报名!](https://mp.weixin.qq.com/s?__biz=MzI2MzU0NTk3OA==&mid=2247506886&idx=1&sn=82ee6db4bbb12e356aaf65b7a9d81f4d) +* [精品产品 | 捷普存储介质信息消除系统](https://mp.weixin.qq.com/s?__biz=MzI2MzU0NTk3OA==&mid=2247506886&idx=3&sn=e804437694eee599ae77fae425e625a7) +* [挖洞一年的记录贴 也算是及格](https://mp.weixin.qq.com/s?__biz=Mzk0MjY4ODk3Mw==&mid=2247483961&idx=1&sn=f16940c7aff3959482d777091db129bf) +* [网安从业者必看!选择CISP认证的十大硬核理由!](https://mp.weixin.qq.com/s?__biz=Mzg4MTg0MjQ5OA==&mid=2247489020&idx=1&sn=3ba6b350c0e85d41ab4aea7fcf8f0d63) ## 安全分析 (2025-08-26)