SecWiki周刊(第179期)
2017/07/31-2017/08/06
安全资讯
宝马,福特等多款品牌车辆TCUs存漏洞,可导致远程执行任意代码
http://www.4hou.com/info/news/6965.html
http://www.4hou.com/info/news/6965.html
安识科技殷晓明:道阻且长,欣然前往
https://mp.weixin.qq.com/s?__biz=MzIzMTAzNzUxMQ==&mid=2652881112&idx=1&sn=aaef80f416a2b9d773e92cda3f314544&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzIzMTAzNzUxMQ==&mid=2652881112&idx=1&sn=aaef80f416a2b9d773e92cda3f314544&scene=0#wechat_redirect
丝绸之路3.1“被黑”,老板宣称破产
http://www.4hou.com/info/news/6982.html
http://www.4hou.com/info/news/6982.html
HBO电视网被黑:《权力游戏 7》视频泄露
http://www.4hou.com/info/6926.html
http://www.4hou.com/info/6926.html
WikiLeaks 公开 Macron 竞选团队的电子邮件
http://www.solidot.org/story?sid=53297
http://www.solidot.org/story?sid=53297
NSA Collects MS Windows Error Information
https://www.schneier.com/blog/archives/2017/08/nsa_collects_ms.html
https://www.schneier.com/blog/archives/2017/08/nsa_collects_ms.html
安全技术
社工盒子 最全面的社会工程学工具
https://bbs.ichunqiu.com/thread-25409-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25409-1-1.html?from=sec
复现Struts2-048高危漏洞
http://www.toutiao.com/i6447260880299098638/
http://www.toutiao.com/i6447260880299098638/
ISF(Industrial Exploitation Framework) 基于Python的工控漏洞利用框架
https://github.com/dark-lbp/isf
https://github.com/dark-lbp/isf
安全顶会之CCS 2017 录用论文列表
https://acmccs.github.io/papers/
https://acmccs.github.io/papers/
DotNetNuke任意代码执行漏洞(CVE–2017–9822)分析预警
https://cert.360.cn/warning/detail?id=e689288863456481733e01b093c986b6
https://cert.360.cn/warning/detail?id=e689288863456481733e01b093c986b6
YaraGuardian: Django web interface for managing Yara rules
https://github.com/PUNCH-Cyber/YaraGuardian
https://github.com/PUNCH-Cyber/YaraGuardian
暗网收集公开情报资源(上):利用OnionScan搭建属于自己的暗网搜索引擎
http://bobao.360.cn/learning/detail/2952.html
http://bobao.360.cn/learning/detail/2952.html
渗透测试中的certutil
https://3gstudent.github.io/3gstudent.github.io/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E4%B8%AD%E7%9A%84certutil.exe/
https://3gstudent.github.io/3gstudent.github.io/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E4%B8%AD%E7%9A%84certutil.exe/
us-17-Yuwei-Ghost-Telephonist-Link-Hijack-Exploitations-In-4G-LTE-CS-Fallback
https://www.blackhat.com/docs/us-17/thursday/us-17-Yuwei-Ghost-Telephonist-Link-Hijack-Exploitations-In-4G-LTE-CS-Fallback.pdf
https://www.blackhat.com/docs/us-17/thursday/us-17-Yuwei-Ghost-Telephonist-Link-Hijack-Exploitations-In-4G-LTE-CS-Fallback.pdf
暗网系列之:利用Python + OnionScan 打造自己的安全威胁情报平台(一)
https://mp.weixin.qq.com/s?__biz=MzIxMzQ3MzkwMQ==&mid=2247489932&idx=1&sn=860bfed6583f1e2b2bf4f05bee42198c&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzIxMzQ3MzkwMQ==&mid=2247489932&idx=1&sn=860bfed6583f1e2b2bf4f05bee42198c&scene=0#wechat_redirect
A Look at JS_POWMET, a Completely Fileless Malware
http://blog.trendmicro.com/trendlabs-security-intelligence/look-js_powmet-completely-fileless-malware/
http://blog.trendmicro.com/trendlabs-security-intelligence/look-js_powmet-completely-fileless-malware/
[渗透神器系列] Metasploit
https://thief.one/2017/08/01/1/
https://thief.one/2017/08/01/1/
隐形的监控——无线键盘侦听
http://www.toutiao.com/i6444684546402157070/
http://www.toutiao.com/i6444684546402157070/
如何使用深度学习检测XSS
http://www.freebuf.com/news/142069.html
http://www.freebuf.com/news/142069.html
漏洞应急响应之批量poc验证
https://bbs.ichunqiu.com/thread-21441-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-21441-1-1.html?from=sec
Windows Lnk远程代码执行漏洞(CVE-2017-8464)利用测试
http://www.4hou.com/system/6938.html
http://www.4hou.com/system/6938.html
Web端口复用正向后门研究实现与防御
http://www.freebuf.com/articles/web/142628.html
http://www.freebuf.com/articles/web/142628.html
如何使用OnionScan定制暗网爬虫
http://bobao.360.cn/learning/detail/3166.html
http://bobao.360.cn/learning/detail/3166.html
Koadic C3 COM Command & Control - JScript RAT
https://github.com/zerosum0x0/koadic
https://github.com/zerosum0x0/koadic
详细的漏洞复现-vsftpd-v2.3.4
https://bbs.ichunqiu.com/thread-25066-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25066-1-1.html?from=sec
教你通过Node.js漏洞完成渗透测试
https://bbs.ichunqiu.com/thread-24807-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-24807-1-1.html?from=sec
Brida:将frida与burp结合进行移动app渗透测试
http://www.4hou.com/penetration/6916.html
http://www.4hou.com/penetration/6916.html
当我们谈论“安全意识”时,我们在谈论什么?
https://sosly.me/index.php/2017/07/30/anquanyishi/
https://sosly.me/index.php/2017/07/30/anquanyishi/
SiteScan: 网站基本信息自动扫描系统
https://github.com/jasonsheh/SiteScan
https://github.com/jasonsheh/SiteScan
Github信息泄露升级版案例
http://www.ms509.com/?p=718
http://www.ms509.com/?p=718
CVE-2015-2545 Word 利用样本分析
http://paper.seebug.org/368/
http://paper.seebug.org/368/
攻击者侵入系统后如何提升账户权限:提权技术详细分析
https://mp.weixin.qq.com/s/4U4w2NZQUDnwcJ1On5kE9A
https://mp.weixin.qq.com/s/4U4w2NZQUDnwcJ1On5kE9A
使用Neo4j可视化Windows日志
http://www.4hou.com/technology/6875.html
http://www.4hou.com/technology/6875.html
Fuzzing SQL,XSS and Command Injection using Burp Suite
http://www.hackingarticles.in/fuzzing-sqlxss-command-injection-using-burp-suite/
http://www.hackingarticles.in/fuzzing-sqlxss-command-injection-using-burp-suite/
[代码审计] Java代码审计连载之—添油加醋
https://bbs.ichunqiu.com/thread-25475-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25475-1-1.html?from=sec
白帽子的反击,一次社工智障锁机病毒er
https://bbs.ichunqiu.com/thread-25199-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25199-1-1.html?from=sec
中国上市网络安全公司分析报告2017Q2
https://mp.weixin.qq.com/s?__biz=MzI0MDY2MzE5NQ==&mid=2247484306&idx=1&sn=58e9aefed8e76007216acada81c02bc7&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzI0MDY2MzE5NQ==&mid=2247484306&idx=1&sn=58e9aefed8e76007216acada81c02bc7&scene=0#wechat_redirect
暗网收集公开情报资源(下):Python+Shodan+SSH密钥
http://bobao.360.cn/learning/detail/2955.html
http://bobao.360.cn/learning/detail/2955.html
gwhatweb: CMS识别 python gevent实现
https://github.com/boy-hack/gwhatweb
https://github.com/boy-hack/gwhatweb
Cobalt strikes back: an evolving multinational threat to finance
http://blog.ptsecurity.com/2017/08/cobalt-group-2017-cobalt-strikes-back.html
http://blog.ptsecurity.com/2017/08/cobalt-group-2017-cobalt-strikes-back.html
深入理解hash长度扩展攻击(sha1为例)
http://www.freebuf.com/articles/web/69264.html
http://www.freebuf.com/articles/web/69264.html
文件寄生——寄生虫自体繁衍的道路.
https://bbs.ichunqiu.com/thread-21322-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-21322-1-1.html?from=sec
DEFCON 25 CTF參賽記
http://maskray.me/blog/2017-08-01-defcon-25-ctf
http://maskray.me/blog/2017-08-01-defcon-25-ctf
crawler_email: crawl email of BBS 论坛邮件地址获取
https://github.com/jingchengyou/crawler_email
https://github.com/jingchengyou/crawler_email
educn-sqlScan: 对全国edu域名以及其二级域名进行的一次Sql注入
https://github.com/fiht/educn-sqlScan
https://github.com/fiht/educn-sqlScan
Blackhat兵器谱新添IOT安全武器
http://www.freebuf.com/column/142421.html
http://www.freebuf.com/column/142421.html
Java代码审计连载之—SQL注入
https://bbs.ichunqiu.com/thread-22170-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-22170-1-1.html?from=sec
us-17-Borgaonkar-New-Adventures-In-Spying-3G-And-4G-Users-Locate-Track-And-Monit
https://www.blackhat.com/docs/us-17/wednesday/us-17-Borgaonkar-New-Adventures-In-Spying-3G-And-4G-Users-Locate-Track-And-Monitor.pdf
https://www.blackhat.com/docs/us-17/wednesday/us-17-Borgaonkar-New-Adventures-In-Spying-3G-And-4G-Users-Locate-Track-And-Monitor.pdf
SecWiki周刊(第178期)
https://www.sec-wiki.com/weekly/178
https://www.sec-wiki.com/weekly/178
带你走进二进制-一次APT攻击分析
https://bbs.ichunqiu.com/thread-25291-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25291-1-1.html?from=sec
3亿6千万被黑密码免费下载及使用介绍
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
IoTChecklist: Baseline IoT security checklist 物联网安全基线检查
https://github.com/SecarmaLabs/IoTChecklist
https://github.com/SecarmaLabs/IoTChecklist
[原创] 我在全球最大的同性社交平台那点事
https://bbs.ichunqiu.com/thread-24971-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-24971-1-1.html?from=sec
extractTVpasswords: extract passwords from TeamViewer memory using Frida
https://github.com/vah13/extractTVpasswords
https://github.com/vah13/extractTVpasswords
从无到有通过ISO27001认证-建设篇
https://xianzhi.aliyun.com/forum/read/1922.html
https://xianzhi.aliyun.com/forum/read/1922.html
DEF CON CTF 2017 Final Scores and Data Dumps
https://blog.legitbs.net/2017/07/def-con-ctf-2017-final-scores-and-data.html
https://blog.legitbs.net/2017/07/def-con-ctf-2017-final-scores-and-data.html
渗透过程中的 Some Tricks
https://evi1cg.me/archives/Tricks.html
https://evi1cg.me/archives/Tricks.html
Pingback漏洞利用技术
http://blog.csdn.net/u011721501/article/details/76581012
http://blog.csdn.net/u011721501/article/details/76581012
iOS渗透测试第一步---环境配置及简单基础
https://bbs.ichunqiu.com/thread-25273-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25273-1-1.html?from=sec
Exploiting Second Order SQLi Flaws by using Burp & Custom Sqlmap Tamper
https://pentest.blog/exploiting-second-order-sqli-flaws-by-using-burp-custom-sqlmap-tamper/
https://pentest.blog/exploiting-second-order-sqli-flaws-by-using-burp-custom-sqlmap-tamper/
WSSiP: A WebSocket Manipulation Proxy
https://github.com/nccgroup/wssip
https://github.com/nccgroup/wssip
一个钓鱼木马的分析(二)
http://www.freebuf.com/column/143364.html
http://www.freebuf.com/column/143364.html
Mandiant and Adi Peretz Leaks(含文件下载)[翻墙]
https://pastebin.com/raw/6HugrWH4
https://pastebin.com/raw/6HugrWH4
WSSAT - Web Service Security Assessment Tool
http://www.kitploit.com/2017/07/wssat-web-service-security-assessment.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+PentestTools+%28PenTest+Tools%29
http://www.kitploit.com/2017/07/wssat-web-service-security-assessment.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+PentestTools+%28PenTest+Tools%29
一次对路边饮用水RFID供应机的跑路玩法
https://bbs.ichunqiu.com/thread-24889-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-24889-1-1.html?from=sec
日志追凶之从看日志了解黑客攻击手法
https://bbs.ichunqiu.com/thread-25379-1-1.html
https://bbs.ichunqiu.com/thread-25379-1-1.html
一次对恶意邮件分析并拿下其赎金服务器的溯源
http://www.4hou.com/info/news/6970.html
http://www.4hou.com/info/news/6970.html
绕过AppLocker系列之CreateRestrictedToken的利用
http://www.4hou.com/technology/6810.html
http://www.4hou.com/technology/6810.html
一文读懂TensorFlow基础
https://mp.weixin.qq.com/s?__biz=MzI1MjQ2OTQ3Ng==&mid=2247485432&idx=1&sn=058f5d3cb2f2ac6fdeb759aac1c77601&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzI1MjQ2OTQ3Ng==&mid=2247485432&idx=1&sn=058f5d3cb2f2ac6fdeb759aac1c77601&scene=0#wechat_redirect
手把手教你编写一个简单的PHP模块形态的后门
http://www.freebuf.com/articles/web/141911.html
http://www.freebuf.com/articles/web/141911.html
从无到有通过ISO27001认证-审核篇
https://xianzhi.aliyun.com/forum/read/1939.html
https://xianzhi.aliyun.com/forum/read/1939.html
TrickBot comes with new tricks – attacking Outlook and browsing data
https://blog.malwarebytes.com/threat-analysis/2017/08/trickbot-comes-with-new-tricks-attacking-outlook-and-browsing-data/
https://blog.malwarebytes.com/threat-analysis/2017/08/trickbot-comes-with-new-tricks-attacking-outlook-and-browsing-data/
BlackHat2017热点之DefPloreX—大规模网络犯罪取证的机器学习工具
http://www.4hou.com/tools/6881.html
http://www.4hou.com/tools/6881.html
Command and Control via Gmail
https://pentestlab.blog/2017/08/03/command-and-control-gmail/
https://pentestlab.blog/2017/08/03/command-and-control-gmail/
Python系列之——利用Python实现微博监控
https://bbs.ichunqiu.com/thread-25216-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25216-1-1.html?from=sec
抱歉,马斯克,你的特斯拉归我了
https://bbs.ichunqiu.com/thread-25280-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25280-1-1.html?from=sec
h1702ctf 2017移动安全挑战赛全程回顾
https://zhuanlan.zhihu.com/p/28201274?group_id=875742872190738432
https://zhuanlan.zhihu.com/p/28201274?group_id=875742872190738432
2017 SANS内部威胁调研
https://mp.weixin.qq.com/s?__biz=MzI4NzU2NjU4NQ==&mid=2247485227&idx=1&sn=35fc4e8fbabdb1bd95d4cc3b813a1ca5&scene=0#wechat_redirect
https://mp.weixin.qq.com/s?__biz=MzI4NzU2NjU4NQ==&mid=2247485227&idx=1&sn=35fc4e8fbabdb1bd95d4cc3b813a1ca5&scene=0#wechat_redirect
调戏木马病毒的正确姿势——上篇
http://bbs.ichunqiu.com/thread-16848-1-1.html?from=sec
http://bbs.ichunqiu.com/thread-16848-1-1.html?from=sec
在不熟悉C/C++情况下,hook windows事件
http://www.4hou.com/info/news/6935.html
http://www.4hou.com/info/news/6935.html
文件寄生——寻找宿主的不归路(NTFS文件流实际应用)
https://bbs.ichunqiu.com/thread-21137-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-21137-1-1.html?from=sec
狗汪汪玩转嵌入式——I2C 协议分析
https://xianzhi.aliyun.com/forum/read/1910.html
https://xianzhi.aliyun.com/forum/read/1910.html
how-do-i-get-started-with-v8-development-17e976ebe4a
https://medium.com/@fhinkel/how-do-i-get-started-with-v8-development-17e976ebe4af
https://medium.com/@fhinkel/how-do-i-get-started-with-v8-development-17e976ebe4af
基于PHP的日志审计系统研究
http://mp.weixin.qq.com/s/pIUICSwbgdo0JHAGgRxIAg
http://mp.weixin.qq.com/s/pIUICSwbgdo0JHAGgRxIAg
QA-Snake: 基于多搜索引擎和深度学习技术的自动问答
https://github.com/SnakeHacker/QA-Snake
https://github.com/SnakeHacker/QA-Snake
HID攻击进阶——WHID injector
http://www.toutiao.com/i6447694012714320397/
http://www.toutiao.com/i6447694012714320397/
[客户端安全] 调戏木马病毒的正确姿势——下篇
https://bbs.ichunqiu.com/thread-16846-1-1.html?fron=sec
https://bbs.ichunqiu.com/thread-16846-1-1.html?fron=sec
教你用python打造WiFiddos
http://bbs.ichunqiu.com/thread-18592-1-1.html?frpm=sec
http://bbs.ichunqiu.com/thread-18592-1-1.html?frpm=sec
IOS渗透测试第一步-基础知识统一放送
https://bbs.ichunqiu.com/thread-25281-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-25281-1-1.html?from=sec
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第179期)
