From c3ab50d1ac79619e5ec6445f1b0ebc275a85ff2c Mon Sep 17 00:00:00 2001 From: ubuntu-master <204118693@qq.com> Date: Sun, 14 Sep 2025 12:00:01 +0800 Subject: [PATCH] =?UTF-8?q?=E6=9B=B4=E6=96=B0?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- results/2025-09-14.md | 41 ++++++++++++++++++++++++++++++++++++++++- 1 file changed, 40 insertions(+), 1 deletion(-) diff --git a/results/2025-09-14.md b/results/2025-09-14.md index 8f8d30b..3860577 100644 --- a/results/2025-09-14.md +++ b/results/2025-09-14.md @@ -3,7 +3,7 @@ > 本文由AI自动生成,基于对安全相关仓库、CVE和最新安全研究成果的自动化分析。 > -> 更新时间:2025-09-14 07:39:40 +> 更新时间:2025-09-14 09:58:42 @@ -12,6 +12,9 @@ ### 🔍 漏洞分析 * [利用虚拟机绕过奇安信的网卡限制实现一个账号多人上网](https://mp.weixin.qq.com/s?__biz=MzU2MjU2MzI3MA==&mid=2247484901&idx=6&sn=802f15ccec4c45f54ca6ca76e4f46b43) +* [这50个业务逻辑漏洞,能掌握的覆盖90日常工作!](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612310&idx=3&sn=37afbc4ba45c1cac8c7068e16350e977) +* [你的U盘可能正在自动复制间谍软件!X-Force披露最新SnakeDiskUSB蠕虫](https://mp.weixin.qq.com/s?__biz=MzkyMjcxNzE2MQ==&mid=2247484626&idx=1&sn=0ae42a20d536f69b7bb5aacb6c6b3c89) +* [绕过libxxxxsec.so对Frida hook Java层的检测](https://mp.weixin.qq.com/s?__biz=MzkxNjMwNDUxNg==&mid=2247488780&idx=1&sn=2964607f0a8cf4086ce052257e49fa90) ### 🔬 安全研究 @@ -19,16 +22,29 @@ * [为什么说信息安全不是技术问题,而是管理问题?](https://mp.weixin.qq.com/s?__biz=Mzg4NDc0Njk1MQ==&mid=2247487562&idx=1&sn=b74c916982b9c3327f9fabdc54675d81) * [域名访问NAS,没有公网IP也行?Cloudflare域名代理+Tunnels技术](https://mp.weixin.qq.com/s?__biz=MzU2MjU2MzI3MA==&mid=2247484901&idx=4&sn=7a3372569f5e570a7d23b2fdaa935a7f) * [Neurocomputing 2025 | 深度学习与预训练技术在加密流量分类中的应用:一份全面的综述](https://mp.weixin.qq.com/s?__biz=MzkyNzQ1NzI4MA==&mid=2247485372&idx=1&sn=4ce7740ba72f79addb9d91aec2a0385d) +* [Python字节码反编译逆向分析高级篇](https://mp.weixin.qq.com/s?__biz=Mzg2NzUzNzk1Mw==&mid=2247498532&idx=1&sn=1120b97fcd9f69afff065d31956e6ab7) +* [对乌军在库尔斯克方向越境军事行动的混合战模式研究](https://mp.weixin.qq.com/s?__biz=MzkyMjY1MTg1MQ==&mid=2247496029&idx=1&sn=6714ea5ced72cda8988b5a3cb83c0992) +* [军公民营通信整合应用于城镇战之研究](https://mp.weixin.qq.com/s?__biz=MzkyMjY1MTg1MQ==&mid=2247496029&idx=4&sn=42104b68dec1220bf7865edae184a007) ### 🎯 威胁情报 * [技术内幕:深入剖析CHILLYHELL与ZynorRAT,我看到了黑客的“内卷”新高度…](https://mp.weixin.qq.com/s?__biz=Mzk1NzM4NzMyMw==&mid=2247485029&idx=1&sn=b0bd625863ea19475d7f9d62132f4226) * [服务器又被攻击了?这8个命令让你秒查Linux开放端口,防患未然!](https://mp.weixin.qq.com/s?__biz=MzU2MjU2MzI3MA==&mid=2247484901&idx=1&sn=d68a54de30e59a2de55c53a5631b43c7) * [国外:一周网络安全态势回顾之第116期,千起XSS攻击90万美元损失](https://mp.weixin.qq.com/s?__biz=Mzg2NjY2MTI3Mg==&mid=2247501621&idx=1&sn=d0a691e4739369b262cb7d850714f212) +* [朝鲜黑客组织扩充攻击武器库:新增Rustonotto后门及两大窃密程序](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612310&idx=1&sn=0bf5c50a44d192b074381f52f7d12997) +* [警告!这个挖矿木马正在全网扫描,你的Docker可能就是下一个“肉鸡”!](https://mp.weixin.qq.com/s?__biz=MzA4NTY4MjAyMQ==&mid=2447901344&idx=1&sn=82aa5f4784d64eeddd18df6bc67a9bbd) +* [100条黑客/网安人最常用的kali命令!](https://mp.weixin.qq.com/s?__biz=MzkzODU5MTkyNQ==&mid=2247486222&idx=1&sn=3c7604faeb8aac85fa198ba5426ecbab) +* [情报刻画:5步把碎片信息变战略“地图”](https://mp.weixin.qq.com/s?__biz=MzkxMDIwMTMxMw==&mid=2247494849&idx=1&sn=b3c1503b1383fe335ec7e085c6519187) +* [常见api攻击方法](https://mp.weixin.qq.com/s?__biz=MzA3NTc0MTA1Mg==&mid=2664712466&idx=1&sn=0ba5d9810be788922641d95dbab482e1) ### 🛠️ 安全工具 * [AI渗透测试工具\"Villager\"整合Kali Linux工具与DeepSeek AI实现自动化攻击](https://mp.weixin.qq.com/s?__biz=MzU2NDY2OTU4Nw==&mid=2247523709&idx=1&sn=f3f654be6f3da932ecc70f94754f23c5) +* [RiskBird企业信息模糊查询工具](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612310&idx=4&sn=80c36fa307ac234ca8028fc13e26cea2) + +### 📚 最佳实践 + +* [美国联邦航空管理局遭“基础设施破坏小队”入侵](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247513796&idx=3&sn=57ff8b6050c343a759a006bd5d1dd0db) ### 🍉 吃瓜新闻 @@ -39,6 +55,9 @@ * [转载经验分享2024数字中国创新大赛数字安全赛道数据安全产业人才积分争夺赛银奖获得者南方电网广西电网有限责任公司数智运营中心](https://mp.weixin.qq.com/s?__biz=Mzk0NTU0ODc0Nw==&mid=2247494073&idx=6&sn=0f759b3f26912fc89a3e7aa9f1286154) * [转载经验分享“2024数字中国创新大赛”数字安全赛道数据安全产业讲师选拔赛银奖获得者-马洁(中国电信股份有限公司广东分公司)](https://mp.weixin.qq.com/s?__biz=Mzk0NTU0ODc0Nw==&mid=2247494073&idx=7&sn=fe38c83c1fa5f3dd1a86167e6f56eb2d) * [转载优秀案例|2024数字中国创新大赛数据安全产业优秀案例评比赛金奖—基于“2+4”模式的数据安全人才培养体系](https://mp.weixin.qq.com/s?__biz=Mzk0NTU0ODc0Nw==&mid=2247494073&idx=8&sn=e10d99f62dbed0ad8f7dad196a97b40c) +* [中国人民财产保险股份有限公司诚招安全人才|总第62期](https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&mid=2247492215&idx=1&sn=42732e5a4e4e00fa3dd00503e53f1c15) +* [2026合作伙伴巡礼骁骐科技——守护数据价值与安全](https://mp.weixin.qq.com/s?__biz=MzAwMTMzMDUwNg==&mid=2650889784&idx=1&sn=b7dbc74326e1f646e454fd0626c57bf2) +* [实战干货:手把手教你搭建企业级Wi-Fi双机热备,网络永不中断!](https://mp.weixin.qq.com/s?__biz=MzI4NjAzMTk3MA==&mid=2458861514&idx=1&sn=60bd7fc51cf7a3777cad707f5305f295) ### 📌 其他 @@ -55,6 +74,26 @@ * [内网穿透|无需域名的十多款内网穿透方案选择](https://mp.weixin.qq.com/s?__biz=Mzg2NTk4MTE1MQ==&mid=2247487865&idx=1&sn=819064b194168314d0fa3b8b0e392ce6) * [HTB - SoulMate](https://mp.weixin.qq.com/s?__biz=Mzk1Nzk3MjA5Ng==&mid=2247486557&idx=1&sn=feaa4b78bfee40aaf2dbc025fa77d2ce) * [多媒体格式转换软件!File Converter!](https://mp.weixin.qq.com/s?__biz=Mzk0MzI2NzQ5MA==&mid=2247488435&idx=1&sn=00c899496425e957ed1199053ddbe633) +* [C&C++代码安全再升级用OLLVM给so加上字符串加密保护](https://mp.weixin.qq.com/s?__biz=Mzg2NzUzNzk1Mw==&mid=2247498532&idx=2&sn=15a874e4077146e580e5e454b9d2c207) +* [《网络安全开源图书三部曲》](https://mp.weixin.qq.com/s?__biz=MzU5NzQ3NzIwMA==&mid=2247487090&idx=1&sn=621f4097492a810b2be970343c60c732) +* [网络安全零基础学习方向及需要掌握的技能](https://mp.weixin.qq.com/s?__biz=MzU4OTg4Nzc4MQ==&mid=2247506599&idx=1&sn=88cf70d28a8f6ea298a21938236b9255) +* [.NET内网实战: 运行平台下 IIS 进程身份的安全剖析](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500582&idx=1&sn=57c972e53b30bd2fadedd9b198467f12) +* [.NET 安全攻防知识交流社区](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500582&idx=2&sn=81fc19e9b3a4a5fde49157da4461889f) +* [.NET 本地提权,通过系统进程令牌模拟实现权限提升](https://mp.weixin.qq.com/s?__biz=MzUyOTc3NTQ5MA==&mid=2247500582&idx=3&sn=ecc7e1335edaad28a4adcb7860f88998) +* [GitHub藏在明处的10大媒介:你忽视了吗?](https://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650612310&idx=2&sn=5e6f818dc834826bdc26f7115c068ad1) +* [每周网安态势概览20250914035期](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247513796&idx=1&sn=1f0ffa7c9cd25e274a3742fd87087b8f) +* [暗流](https://mp.weixin.qq.com/s?__biz=MzkyMjQ5ODk5OA==&mid=2247513796&idx=2&sn=5013835e88b27306c4643bc980c2d596) +* [关于PolarCTF网络安全2025秋季个人挑战赛赛前直播的通知](https://mp.weixin.qq.com/s?__biz=MzU5NzY2OTQ0Mg==&mid=2247484682&idx=1&sn=b4824d6a290a899af4167d8983e89faf) +* [AI模型如何获取主流大模型的系统提示词](https://mp.weixin.qq.com/s?__biz=Mzk0Mzc1MTI2Nw==&mid=2247496652&idx=1&sn=690182ebcdc7786f0d2a0b00e6344e2c) +* [撞大运之getshell](https://mp.weixin.qq.com/s?__biz=MzE5ODc3ODY1NA==&mid=2247483921&idx=1&sn=eafad9bcd94420697074b5f34611ac4d) +* [服务器为什么分32位和64位?这个“位”到底是啥意思?](https://mp.weixin.qq.com/s?__biz=MzUyNTExOTY1Nw==&mid=2247531735&idx=1&sn=02f727559456fd378ae812ee63cb8f4e) +* [国际军用通信装备演进探讨:以美军战术型作战人员信息网络为例](https://mp.weixin.qq.com/s?__biz=MzkyMjY1MTg1MQ==&mid=2247496029&idx=2&sn=c0cc59f631c363d1ca0dabe68a837753) +* [发展联合医疗人工智能能力](https://mp.weixin.qq.com/s?__biz=MzkyMjY1MTg1MQ==&mid=2247496029&idx=3&sn=9fcfcad1ac84a7e00828622cc89914d9) +* [市场上POE交换机的品牌繁多,如何正确识别一台POE交换机的好坏?](https://mp.weixin.qq.com/s?__biz=MzIyMzIwNzAxMQ==&mid=2649470679&idx=1&sn=998d027bfbd6e814a035e03e77e46e4a) +* [从“NAS Music”开始:打造我的专属音乐小窝](https://mp.weixin.qq.com/s?__biz=MzA4MjkzMTcxMg==&mid=2449047631&idx=1&sn=608ca6d52f1970a456ab4ab39e4f2505) +* [师傅们,这个接私活渠道,真能月入1W+!](https://mp.weixin.qq.com/s?__biz=MzAwMjA5OTY5Ng==&mid=2247527336&idx=1&sn=b2160be280966cd220d3b613e7771ad2) +* [网络侦查秘籍:全方位深度探秘](https://mp.weixin.qq.com/s?__biz=MzIxOTM2MDYwNg==&mid=2247518255&idx=1&sn=0faa82be6e63972e77d606769d08d39f) +* [网络安全知识:什么是桌面即服务 DaaS?](https://mp.weixin.qq.com/s?__biz=MzA5MzU5MzQzMA==&mid=2652118306&idx=1&sn=fa163e395911a2b7c7a7a6d95c115f16) ## 安全分析 (2025-09-14)