SecWiki周刊(第115期)
2016/05/09-2016/05/15
安全资讯
[其它]  访谈|匡恩网络总裁孙一桉
http://www.aqniu.com/news-views/15753.html
[会议]  GeekPwn澳门站回顾
http://www.freebuf.com/fevents/104106.html
[恶意分析]  重新审视美国爱因斯坦计划(2016)
https://mp.weixin.qq.com/s?__biz=MzI5MTA1Mzg1OA==&mid=2650501031&idx=1&sn=29c20d284a78b1162346a390e5625c4a
安全技术
[无线安全]  WiFi-Pumpkin: Framework for Rogue Wi-Fi Access Point Attack
https://github.com/P0cL4bs/WiFi-Pumpkin
[文档]  安全会议议题文档汇总
http://pan.baidu.com/s/1eSAtnsY#path=%252F
[取证分析]  Javascript实现敏感Web页面防泄密水印
http://erevus.me/index.php/archives/41.html
[恶意分析]  APT 洋葱狗行动(Operation OnionDog)分析报告
https://ti.360.com/upload/report/file/Operation_OnionDog.pdf
[编程技术]  demo.pyspider.org 部署经验
http://blog.binux.me/2016/05/deployment-of-demopyspiderorg/
[取证分析]  lastAudit: Local Area Security Audit Tool
https://github.com/lastaudit/lastAudit/
[恶意分析]  威胁情报价值和应用
http://sbilly.com/2016/05/09/the-value-and-application-of-threat-intelligence/
[无线安全]  温哥华天车 RFID 票务系统
http://drops.wooyun.org/tips/15622
[设备安全]  工业控制系统信息安全产品标准及测评方法
https://mp.weixin.qq.com/s?__biz=MjM5NzY2OTQ5NA==&mid=2677258544&idx=1&sn=cb5f07bb731635deddcc4d367151c462
[Web安全]  DMZ下使用web_delivery 介绍
http://evi1cg.me/archives/Use_Web_delivery_Under_DMZ.html
[工具]  fbctf: Platform to host Capture the Flag competitions
https://github.com/facebook/fbctf
[Web安全]  邪恶的CSRF
http://drops.wooyun.org/web/15556
[取证分析]  深入理解JPEG图像格式Jphide隐写
http://drops.wooyun.org/tips/15661
[其它]  漏洞披露,乌鸦还是知更鸟
https://mp.weixin.qq.com/s?__biz=MzIzMTAzNzUxMQ==&mid=2652873743&idx=1&sn=c8c73037b936fac892ee8b4da1ea2dd6
[比赛]  writeup_for_SCTF2016
http://bobao.360.cn/ctf/learning/162.html
[恶意分析]  Reverse.it:Free Automated Malware Analysis Service
https://www.reverse.it/
[恶意分析]  DarkHotel定向攻击样本分析
http://drops.wooyun.org/papers/15755
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第115期)