SecWiki周刊(第119期)
2016/06/06-2016/06/12
安全资讯
麒麟开源堡垒机1.31版本发布
http://www.oschina.net/news/74037/qilin-baoleiji-1-31
http://www.oschina.net/news/74037/qilin-baoleiji-1-31
近期互联网安全领域发生的那些大事
https://mp.weixin.qq.com/s?__biz=MzIwMTQ2NzY4NA==&mid=2652520487&idx=2&sn=1779841bc5d57bab3246f1404bf1d9dc
https://mp.weixin.qq.com/s?__biz=MzIwMTQ2NzY4NA==&mid=2652520487&idx=2&sn=1779841bc5d57bab3246f1404bf1d9dc
Tor核心团队开发者Jacob Appelbaum回应指控
http://www.solidot.org/story?sid=48497
http://www.solidot.org/story?sid=48497
CCID: 2015-2016年度中国信息安全产品市场研究年度报告
http://yepeng.blog.51cto.com/3101105/1786413
http://yepeng.blog.51cto.com/3101105/1786413
Acunetix's Website Defaced by Croatian Hackers
http://exploitgate.com/acunetix-website-got-hacked-croatian-hackers/
http://exploitgate.com/acunetix-website-got-hacked-croatian-hackers/
安全技术
Linux堆溢出漏洞利用之unlink
http://drops.wooyun.org/tips/16610
http://drops.wooyun.org/tips/16610
小文在0ops的堆培训资料
https://github.com/lovelydream/linux-heap-basics/blob/master/Linux%20Heap%20Internals.pdf
https://github.com/lovelydream/linux-heap-basics/blob/master/Linux%20Heap%20Internals.pdf
以管窥豹——DNS散列前缀攻击一日数据分析
http://blog.sina.com.cn/s/blog_644f95230102zgta.html
http://blog.sina.com.cn/s/blog_644f95230102zgta.html
WAFNinja: a tool which contains two functions to attack WAF
https://github.com/khalilbijjou/WAFNinja
https://github.com/khalilbijjou/WAFNinja
django视频教程
http://pan.baidu.com/s/1o7X4xQy
http://pan.baidu.com/s/1o7X4xQy
InfoCon Collection: Hacking Conference Audio and Video Archive
https://infocon.org/cons/
https://infocon.org/cons/
APT Groups and Operations
https://docs.google.com/spreadsheets/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/pubhtml
https://docs.google.com/spreadsheets/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/pubhtml
fuzzball: FuzzBALL: Vine-based Binary Symbolic Execution
https://github.com/bitblaze-fuzzball/fuzzball
https://github.com/bitblaze-fuzzball/fuzzball
ARTLAS: Apache Real Time Logs Analyzer System
https://github.com/mthbernardes/ARTLAS
https://github.com/mthbernardes/ARTLAS
cyberbot: A lightweight batch scanning framework based on gevent
https://github.com/RickGray/cyberbot
https://github.com/RickGray/cyberbot
用React-Native开发一款App
http://www.bibodeng.com/?post=187
http://www.bibodeng.com/?post=187
Free Digital Forensics Tools
https://wiremask.eu/articles/free-digital-forensics-tools/
https://wiremask.eu/articles/free-digital-forensics-tools/
awesome-nlp: A curated list of resources dedicated to NLP
https://github.com/keonkim/awesome-nlp
https://github.com/keonkim/awesome-nlp
基于网络流量的后门检测项目
https://github.com/lcatro/network_backdoor_scanner
https://github.com/lcatro/network_backdoor_scanner
WSSAT - Web Service Security Assessment Tool
https://github.com/YalcinYolalan/WSSAT
https://github.com/YalcinYolalan/WSSAT
SCADA StrangeLove Default/Hardcoded Passwords List
https://github.com/scadastrangelove/SCADAPASS
https://github.com/scadastrangelove/SCADAPASS
新浪微博MySQL管理规范小结
http://mp.weixin.qq.com/s?__biz=MzA4Nzg5Nzc5OA==&mid=206546429&idx=1&sn=339a80c889409b62a569611e40b66568&scene=21#wechat_redirect
http://mp.weixin.qq.com/s?__biz=MzA4Nzg5Nzc5OA==&mid=206546429&idx=1&sn=339a80c889409b62a569611e40b66568&scene=21#wechat_redirect
ShellCheck, a static analysis tool for shell scripts
https://github.com/koalaman/shellcheck
https://github.com/koalaman/shellcheck
Rotten Apples: Apple-like Malicious Phishing Domains
https://www.fireeye.com/blog/threat-research/2016/06/rotten_apples_apple.html
https://www.fireeye.com/blog/threat-research/2016/06/rotten_apples_apple.html
安全专题
国外数据泄露收集与查询平台
https://www.sec-wiki.com/topic/70
https://www.sec-wiki.com/topic/70
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第119期)
