SecWiki周刊(第172期)
2017/06/12-2017/06/18
安全资讯
比特币最强矿机就长这样:8张GTX 1060
http://hack-0.lofter.com/post/1e5974f4_1028484e#
http://hack-0.lofter.com/post/1e5974f4_1028484e#
维基解密曝光CIA新路由器网络攻击方式
http://www.cnbeta.com/articles/soft/623085.htm
http://www.cnbeta.com/articles/soft/623085.htm
mega.nz private code leak
http://159.203.100.26/mega.tar.bz2
http://159.203.100.26/mega.tar.bz2
美国陆军野战条令FM3-12号 网络空间与电子战行动
http://www.knowfar.org.cn/report/201705/03/1775.htm
http://www.knowfar.org.cn/report/201705/03/1775.htm
2017年Top25网络安全产品集锦
http://www.freebuf.com/column/137055.html
http://www.freebuf.com/column/137055.html
工信部印发《工业控制系统信息安全事件应急管理工作指南》
http://www.miit.gov.cn/n1146285/n1146352/n3054355/n3057656/n3057660/c5690264/content.html?from=groupmessage&isappinstalled=0
http://www.miit.gov.cn/n1146285/n1146352/n3054355/n3057656/n3057660/c5690264/content.html?from=groupmessage&isappinstalled=0
2017年度 CCF-启明星辰“鸿雁”科研资助计划项目列表
http://www.ccf.org.cn/c/2017-05-15/595245.shtml
http://www.ccf.org.cn/c/2017-05-15/595245.shtml
武汉警方破获一起特大网络诈骗案 抓获涉案人员808名
http://www.chinanews.com/sh/2017/06-12/8248832.shtml
http://www.chinanews.com/sh/2017/06-12/8248832.shtml
江苏打黑客揪内鬼:699名侵犯公民个人信息犯罪嫌疑人落网
http://t.yzinter.com/index.php?m=News&a=listcontent&classid=122&id=431948&from=timeline&isappinstalled=0
http://t.yzinter.com/index.php?m=News&a=listcontent&classid=122&id=431948&from=timeline&isappinstalled=0
安全技术
使用HTTP头去绕过WAF
http://www.sohu.com/a/110066439_468673
http://www.sohu.com/a/110066439_468673
还有人记得这本经典书籍?精通脚本黑客|技术讨论
https://xianzhi.aliyun.com/forum/read/1710.html
https://xianzhi.aliyun.com/forum/read/1710.html
猥琐思路复现Spring WebFlow远程代码执行
http://www.4hou.com/technology/5449.html
http://www.4hou.com/technology/5449.html
Web日志安全分析浅谈|技术讨论
https://xianzhi.aliyun.com/forum/read/1723.html
https://xianzhi.aliyun.com/forum/read/1723.html
企业安全建设之路:端口扫描(下)
http://www.freebuf.com/articles/system/137016.html
http://www.freebuf.com/articles/system/137016.html
【YISRC】技术分享——HTTPS通信知多少?
https://mp.weixin.qq.com/s/Ie1Oq0zRD6vM_70wpawpzg
https://mp.weixin.qq.com/s/Ie1Oq0zRD6vM_70wpawpzg
阿里云免费HTTPS证书部署笔记
http://www.evilclay.com/2017/06/12/%E9%83%A8%E7%BD%B2%E9%98%BF%E9%87%8C%E4%BA%91%E5%85%8D%E8%B4%B9HTTPS%E8%AF%81%E4%B9%A6%E7%AC%94%E8%AE%B0/
http://www.evilclay.com/2017/06/12/%E9%83%A8%E7%BD%B2%E9%98%BF%E9%87%8C%E4%BA%91%E5%85%8D%E8%B4%B9HTTPS%E8%AF%81%E4%B9%A6%E7%AC%94%E8%AE%B0/
攻击场景还原:本地ROOT Moto G4 & G5设备(附利用代码)
http://www.4hou.com/reverse/5432.html
http://www.4hou.com/reverse/5432.html
EasyML: 中科院计算所开源的交互式图形化机器学习平台
https://github.com/ICT-BDA/EasyML
https://github.com/ICT-BDA/EasyML
Md5扩展攻击的原理和应用
http://www.freebuf.com/articles/database/137129.html
http://www.freebuf.com/articles/database/137129.html
针对Linux内核中double fetch漏洞的研究
https://www.inforsec.org/wp/?p=2049
https://www.inforsec.org/wp/?p=2049
跨站攻击防御--- 使用同站点cookie阻止跨站攻击
http://www.junantech.com/detailinfo.php?type=1&id=wevfjkzh3py8pbcekvn2alh4wh3vl5s1
http://www.junantech.com/detailinfo.php?type=1&id=wevfjkzh3py8pbcekvn2alh4wh3vl5s1
安全技能树简版 V1 正式版
https://zhuanlan.zhihu.com/p/27362112
https://zhuanlan.zhihu.com/p/27362112
SHARPENING YOUR WEAPONS THROUGH BIG DATA
https://l.avala.mp/?p=161
https://l.avala.mp/?p=161
Samba远程代码执行漏洞(CVE-2017-7494)分析|漏洞研究
https://xianzhi.aliyun.com/forum/read/1728.html
https://xianzhi.aliyun.com/forum/read/1728.html
鉴黄-深度学习Caffe模型之open_nsfw
http://www.jianshu.com/p/e746454958a3
http://www.jianshu.com/p/e746454958a3
RED_HAWK:信息收集工具
http://mp.weixin.qq.com/s/xgJ6lq99pnL8mF39oo9duA
http://mp.weixin.qq.com/s/xgJ6lq99pnL8mF39oo9duA
Sanic <=0.5.0 static file任意文件读取|漏洞研究
https://xianzhi.aliyun.com/forum/read/1712.html
https://xianzhi.aliyun.com/forum/read/1712.html
Spring Web Flow 远程代码执行漏洞分析(CVE-2017-4971)
http://paper.seebug.org/322/#0-tsina-1-60416-397232819ff9a47a7b7e80a40613cfe1
http://paper.seebug.org/322/#0-tsina-1-60416-397232819ff9a47a7b7e80a40613cfe1
Subscribers remote geolocation and tracking using 4G VoLTE enabled Android phone
https://www.sstic.org/media/SSTIC2017/SSTIC-actes/remote_geolocation_and_tracing_of_subscribers_usin/SSTIC2017-Article-remote_geolocation_and_tracing_of_subscribers_using_4g_volte_android_phone-le-moal_ventuzelo_coudray.pdf
https://www.sstic.org/media/SSTIC2017/SSTIC-actes/remote_geolocation_and_tracing_of_subscribers_usin/SSTIC2017-Article-remote_geolocation_and_tracing_of_subscribers_using_4g_volte_android_phone-le-moal_ventuzelo_coudray.pdf
蝴蝶效应与程序错误---一个渣洞的利用
http://weibo.com/ttarticle/p/show?id=2309404118504042313519
http://weibo.com/ttarticle/p/show?id=2309404118504042313519
Automatically Discovering Windows Kernel Information Leak Vulnerabilities
http://www.iceswordlab.com/2017/06/14/Automatically-Discovering-Windows-Kernel-Information-Leak-Vulnerabilities_en/
http://www.iceswordlab.com/2017/06/14/Automatically-Discovering-Windows-Kernel-Information-Leak-Vulnerabilities_en/
Windows 10下MS16-098 RGNOBJ整数溢出漏洞分析及利用
https://security.tencent.com/index.php/blog/msg/117
https://security.tencent.com/index.php/blog/msg/117
自动化挖掘 windows 内核信息泄漏漏洞
http://www.iceswordlab.com/2017/06/14/Automatically-Discovering-Windows-Kernel-Information-Leak-Vulnerabilities_zh/
http://www.iceswordlab.com/2017/06/14/Automatically-Discovering-Windows-Kernel-Information-Leak-Vulnerabilities_zh/
Metasploit实验:制作免杀payload+对任意“外网”主机的远控
http://www.freebuf.com/sectool/136736.html
http://www.freebuf.com/sectool/136736.html
被忽视的攻击面:Python package 钓鱼
http://paper.seebug.org/326/
http://paper.seebug.org/326/
我国网络信息安全产业概览
https://mp.weixin.qq.com/s?__biz=MzAxOTI5OTUwMw==&mid=2650744489&idx=1&sn=4b27b845c1d5ea4c005e41272ebc19c7
https://mp.weixin.qq.com/s?__biz=MzAxOTI5OTUwMw==&mid=2650744489&idx=1&sn=4b27b845c1d5ea4c005e41272ebc19c7
22款受欢迎的计算机取证工具
http://www.freebuf.com/sectool/136921.html
http://www.freebuf.com/sectool/136921.html
2017 第三届PHP全球开发者大会PPT/Keynote(php安全开发)
https://github.com/devlinkcn/ppts_for_php2017
https://github.com/devlinkcn/ppts_for_php2017
YISRC报道—青藤云第三届安全建设沙龙回顾
https://mp.weixin.qq.com/s?__biz=MzIyNjQzMjcyNw==&mid=2247484676&idx=1&sn=ec9bb9be4dacfbc1276109039d673146&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzIyNjQzMjcyNw==&mid=2247484676&idx=1&sn=ec9bb9be4dacfbc1276109039d673146&scene=0#wechat_redirect
初识 Fuzzing 工具 WinAFL
http://paper.seebug.org/323/
http://paper.seebug.org/323/
CTF加密与解密
http://thief.one/2017/06/13/1/
http://thief.one/2017/06/13/1/
morphHTA - Morphing Cobalt Strike's evil.HTA
https://github.com/vysec/morphHTA
https://github.com/vysec/morphHTA
看雪CTF2017第六题 Ericky-apk writeup
http://anhkgg.github.io/kxctf2017-writeup6/
http://anhkgg.github.io/kxctf2017-writeup6/
Blackhat 2017 安全工具集
http://sec-redclub.com/index.php/archives/541/
http://sec-redclub.com/index.php/archives/541/
B站的运维成长之路(监控篇)
http://www.sohu.com/a/148105540_262549
http://www.sohu.com/a/148105540_262549
XSS-Radar: XSS漏洞挖掘工具
https://github.com/bugbountyforum/XSS-Radar
https://github.com/bugbountyforum/XSS-Radar
Industroyer全球威胁报告(IEC 60870-5-104篇)
https://mp.weixin.qq.com/s?__biz=MzIxMjI5MzQ3OA==&mid=2247483723&idx=1&sn=2ca8d5359adde75994f52a0475fbe5a1&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzIxMjI5MzQ3OA==&mid=2247483723&idx=1&sn=2ca8d5359adde75994f52a0475fbe5a1&scene=0#wechat_redirect
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
https://github.com/D35m0nd142/LFISuite
https://github.com/D35m0nd142/LFISuite
Advanced Incident Detection and Threat Hunting using Sysmon (and Splunk)
http://security-research.dyndns.org/pub/slides/FIRST2017/FIRST-2017_Tom-Ueltschi_Sysmon_FINAL.pdf
http://security-research.dyndns.org/pub/slides/FIRST2017/FIRST-2017_Tom-Ueltschi_Sysmon_FINAL.pdf
从三角函数到离散傅里叶变换到语音识别再到图像频域鲁棒性水印
https://bbs.ichunqiu.com/thread-23801-1-1.html?from=51
https://bbs.ichunqiu.com/thread-23801-1-1.html?from=51
Wordlists sorted by probability originally created for password generation and t
https://github.com/berzerk0/Probable-Wordlists
https://github.com/berzerk0/Probable-Wordlists
2017 APWG Symposium on Electronic Crime Research (eCrime) 论文列表
http://ieeexplore.ieee.org/search/searchresult.jsp?newsearch=true&queryText=2017%20APWG%20Symposium%20on%20Electronic%20Crime%20Re
http://ieeexplore.ieee.org/search/searchresult.jsp?newsearch=true&queryText=2017%20APWG%20Symposium%20on%20Electronic%20Crime%20Re
CIA Vault7最新泄露文档:樱花盛开
http://www.freebuf.com/news/137498.html
http://www.freebuf.com/news/137498.html
现代无线鼠标及键盘的安全性分析报告
http://bobao.360.cn/learning/detail/3986.html
http://bobao.360.cn/learning/detail/3986.html
PLATINUM continues to evolve, find ways to maintain invisibility
https://blogs.technet.microsoft.com/mmpc/2017/06/07/platinum-continues-to-evolve-find-ways-to-maintain-invisibility/
https://blogs.technet.microsoft.com/mmpc/2017/06/07/platinum-continues-to-evolve-find-ways-to-maintain-invisibility/
云基础架构之固件安全合规
https://hardenedlinux.github.io/system-security/2017/06/15/firmware_compliance.html?from=timeline
https://hardenedlinux.github.io/system-security/2017/06/15/firmware_compliance.html?from=timeline
独家逆向报告:APT28缘何使sai门铁克躺枪
https://mp.weixin.qq.com/s?__biz=MzI4ODA4MTcxMA==&mid=2649550629&idx=1&sn=38adafad60a1e157d018f806a5664f92&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzI4ODA4MTcxMA==&mid=2649550629&idx=1&sn=38adafad60a1e157d018f806a5664f92&scene=0#wechat_redirect
SambaCry 野外利用分析
http://blogs.360.cn/blog/sambacry-%e9%87%8e%e5%a4%96%e5%88%a9%e7%94%a8%e5%88%86%e6%9e%90/
http://blogs.360.cn/blog/sambacry-%e9%87%8e%e5%a4%96%e5%88%a9%e7%94%a8%e5%88%86%e6%9e%90/
Belati: The Traditional Swiss Army Knife for OSINT
https://github.com/aancw/Belati
https://github.com/aancw/Belati
Cross site scripting payload for fuzzing|技术讨论
https://xianzhi.aliyun.com/forum/read/1704.html
https://xianzhi.aliyun.com/forum/read/1704.html
Shellter + Metasploit + NetRipper: Bypass Antivirus and Sniff HTTPS password
https://securityonline.info/shellter-metasploit-netripper-bypass-antivirus-sniff-https-password/
https://securityonline.info/shellter-metasploit-netripper-bypass-antivirus-sniff-https-password/
利用Waitfor.exe实现一种后门机制
https://3gstudent.github.io/3gstudent.github.io/Use-Waitfor.exe-to-maintain-persistence/
https://3gstudent.github.io/3gstudent.github.io/Use-Waitfor.exe-to-maintain-persistence/
MySQL如何利用ibd文件恢复数据
http://mp.weixin.qq.com/s/Iad4qT_vG9B3vBhvQ2p_2g
http://mp.weixin.qq.com/s/Iad4qT_vG9B3vBhvQ2p_2g
FlaskJinja2 开发中遇到的的服务端注入问题研究 II
http://www.freebuf.com/articles/web/136180.html
http://www.freebuf.com/articles/web/136180.html
NetUse命令在渗透测试中的连接条件测试
http://www.freebuf.com/sectool/136655.html
http://www.freebuf.com/sectool/136655.html
乌克兰电网事件和美国大选恶意软件同源性分析
https://mp.weixin.qq.com/s?__biz=MzI4ODA4MTcxMA==&mid=2649550639&idx=1&sn=4ab262f55134a32dfa0789b24210d251&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzI4ODA4MTcxMA==&mid=2649550639&idx=1&sn=4ab262f55134a32dfa0789b24210d251&scene=0#wechat_redirect
安全 AI 的智能对抗系统之架构实现篇
https://www.qcloud.com/community/article/317490
https://www.qcloud.com/community/article/317490
SecWiki周刊(第171期)
https://www.sec-wiki.com/weekly/171
https://www.sec-wiki.com/weekly/171
20岁央企总监的自述及总结,送给各位毕业生
http://www.cnblogs.com/im404/p/aboutme.html?from=timeline
http://www.cnblogs.com/im404/p/aboutme.html?from=timeline
ctf.tf: A database of collected CTFs and their solutions.
https://github.com/Eun/ctf.tf
https://github.com/Eun/ctf.tf
PwdManage密码管理工具
http://thief.one/2017/04/24/1
http://thief.one/2017/04/24/1
【独家】蓝牙App漏洞系列分析之二CVE-2017-0639|漏洞研究
https://xianzhi.aliyun.com/forum/read/1713.html
https://xianzhi.aliyun.com/forum/read/1713.html
OSX/MacRansom:analyzing the latest ransomware to target macs
https://objective-see.com/blog/blog_0x1E.html
https://objective-see.com/blog/blog_0x1E.html
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第172期)
