SecWiki周刊(第111期)
2016/04/11-2016/04/17
安全资讯
[移动安全]  你知道会越狱的盘古,可你知道创建犇众的韩争光吗
http://weibo.com/ttarticle/p/show?id=2309403963137786261011
[会议]  未来安全—探索盛会
http://mp.weixin.qq.com/s?__biz=MzIwMTQ2NzY4NA==&mid=404117954&idx=1&sn=c310b7fe81ea73a1f5abd36fcc779641&scene=23&srcid=04129dbPOPWZViYU6prusg8T#rd
安全技术
[恶意分析]  黑暗幽灵(DCM)木马详细分析
http://www.freebuf.com/articles/system/101447.html
[运维安全]  开源堡垒机telnet/ssh命令识别、RDP窗口名称和文字识别技术
http://blog.sina.com.cn/s/blog_ea6e8a120102y6kq.html
[数据挖掘]  bannedwords-违禁词,敏感词库
https://git.oschina.net/code_com/badwords
[Web安全]  Im-Not-a-Human-Breaking-the-Google-reCAPTCHA
http://www.blackhat.com/docs/asia-16/materials/asia-16-Sivakorn-Im-Not-a-Human-Breaking-the-Google-reCAPTCHA-wp.pdf
[Web安全]  网络资产信息扫描工具
https://github.com/ywolf/F-NAScan
[会议]  4月9日FreeTalk·北京站全程揭秘
http://www.freebuf.com/fevents/101317.html
[文档]  2016 CanSecWest’s Presentations on SlideShare
http://www.slideshare.net/CanSecWest/presentations
[数据挖掘]  异常行为分析模型设计
http://blog.nsfocus.net/abnormal-behavior-analysis-model-design/
[文档]   2015白细胞安全沙龙广州场PPT#密码: a9ec
http://pan.baidu.com/share/link?shareid=3474193912&uk=2792555612
[漏洞分析]   Analysis of CVE-2016-2414 - Out-of-Bound Write Denial of Service Vulnerability
http://blog.fortinet.com/post/analysis-of-cve-2016-2414-out-of-bound-write-denial-of-service-vulnerability-in-android-minikin-library-1
[杂志]  书安-第七期
http://down.jdsec.com/secbook-7/%E4%B9%A6%E5%AE%89-%E7%AC%AC%E4%B8%83%E6%9C%9F.pdf
[恶意分析]  A Fun Saturday Analysis: Comment Spam Attack!
http://www.cyintanalysis.com/a-fun-saturday-analysis-comment-spam-attack/
[Web安全]  List_of_file_signatures
https://en.wikipedia.org/wiki/List_of_file_signatures
[文档]  2015信息安全漏洞态势报告
http://www.cnnvd.org.cn/news/jklbz/id/CNNVD%20Situation%20Report
[文档]  2015云盾态势感知报告
http://hang-oss.oss-cn-hangzhou.aliyuncs.com/%E4%BA%91%E7%9B%BE%E6%8A%A5%E5%91%8A/2015%E4%BA%91%E7%9B%BE%E6%80%81%E5%8A%BF%E6%84%9F%E7%9F%A5%E6%8A%A5%E5%91%8A.pdf
[移动安全]  CopperheadOS- A hardened open-source operating system based on Android
https://copperhead.co/android/
[Web安全]  sqliscan: A sqli scanner
https://github.com/OneSourceCat/sqliscan
[恶意分析]  “幽灵电子书”病毒详细分析
http://it.rising.com.cn/dongtai/18192.html
[设备安全]  Practical Reverse Engineering Part 1 - Hunting for Debug Ports
http://jcjc-dev.com/2016/04/08/reversing-huawei-router-1-find-uart/
[Web安全]  Nmap备忘单:从探索到漏洞利用(Part 4)
http://www.freebuf.com/sectool/101335.html
[移动安全]  Android勒索软件研究报告
http://drops.wooyun.org/tips/14782
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第111期)