SecWiki周刊(第191期)
2017/10/23-2017/10/29
安全资讯
Appleby律师事务所被黑泄露大量用户资料
http://securityaffairs.co/wordpress/64732/data-breach/appleby-hacked.html
http://securityaffairs.co/wordpress/64732/data-breach/appleby-hacked.html
急救药 | 发现个人信息被盗用后快速止损的方法
http://www.4hou.com/info/news/8167.html
http://www.4hou.com/info/news/8167.html
澳大利亚《关键基础设施安全法草案2017》解读
https://mp.weixin.qq.com/s/_45gVfcr8ax2GQw82l4B_w
https://mp.weixin.qq.com/s/_45gVfcr8ax2GQw82l4B_w
Bad Rabbit网络中新出现的大规模勒索病毒 ,目前主要受影响地区为俄罗斯
https://nosec.org/my/threats/1597
https://nosec.org/my/threats/1597
NSA bloke used backdoored MS Office key-gen, exposed secret exploits
https://www.theregister.co.uk/2017/10/25/kaspersky_nsa_keygen_backdoor_office/?mt=1509030579407
https://www.theregister.co.uk/2017/10/25/kaspersky_nsa_keygen_backdoor_office/?mt=1509030579407
2017年网络安全公司IPO情况汇总
https://mp.weixin.qq.com/s/3uQ4R2Bp5e8Xy27lh2Zb2w
https://mp.weixin.qq.com/s/3uQ4R2Bp5e8Xy27lh2Zb2w
安全技术
Burp Suite pro 1.7.26破解版本 Cracked 2017/12/3
http://www.secer.com.cn/article/183
http://www.secer.com.cn/article/183
第三期VFSec技术沙龙 PPT
https://mp.weixin.qq.com/s/m4kMZjHZUM6AaXp1VK2txw
https://mp.weixin.qq.com/s/m4kMZjHZUM6AaXp1VK2txw
代码审计之Semcms v2.3
http://foreversong.cn/archives/755
http://foreversong.cn/archives/755
2017年Q3季度互联网安全报告
https://guanjia.qq.com/news/n1/2168.html
https://guanjia.qq.com/news/n1/2168.html
SemFuzz:基于语义自动生成漏洞PoC
https://drive.google.com/file/d/0B8Y63-uONPJSNHB6UUxtSUNBdlU/view
https://drive.google.com/file/d/0B8Y63-uONPJSNHB6UUxtSUNBdlU/view
UsbKeyboardDataHacker: USB键盘流量包取证工具
https://github.com/WangYihang/UsbKeyboardDataHacker
https://github.com/WangYihang/UsbKeyboardDataHacker
Cobra-W: 白盒源代码审计工具-白帽子版
https://github.com/LoRexxar/Cobra-W
https://github.com/LoRexxar/Cobra-W
如何利用反弹 shell 构建你的僵尸网络
http://www.jianshu.com/p/8dc5a4abcc09
http://www.jianshu.com/p/8dc5a4abcc09
blueborne_CVE-2017-0785深入分析与调试
http://ne2der.com/2017/blueborne-CVE-2017-0785/
http://ne2der.com/2017/blueborne-CVE-2017-0785/
高级渗透测试:破解世界上最安全的网络#密码: n2sd
https://pan.baidu.com/s/1eSvSElG
https://pan.baidu.com/s/1eSvSElG
Passionfruit: iOS app分析取证系统
https://github.com/chaitin/passionfruit
https://github.com/chaitin/passionfruit
CTFDefense: 一些CTF的离线工具
https://github.com/ssooking/CTFDefense
https://github.com/ssooking/CTFDefense
灯塔实验室·技术沙龙(第五期)议题回顾
http://plcscan.org/blog/2017/10/ics-security-salon-5/
http://plcscan.org/blog/2017/10/ics-security-salon-5/
DOM XSS – auth.uber.com
http://stamone-bug-bounty.blogspot.com.es/2017/10/dom-xss-auth_14.html
http://stamone-bug-bounty.blogspot.com.es/2017/10/dom-xss-auth_14.html
A Study of RATs 29 年152种远控名称的时间轴
https://pbs.twimg.com/media/DKfVvtbW0AAEgnf.jpg:large
https://pbs.twimg.com/media/DKfVvtbW0AAEgnf.jpg:large
hackergame2017-writeup (中国科学技术大学第四届信息安全大赛)
https://volltin.gitbooks.io/hackergame2017-writeup/content/
https://volltin.gitbooks.io/hackergame2017-writeup/content/
WebShell-Detect-By-Machine-Learning: 使用机器学习识别WebShell
https://github.com/lcatro/WebShell-Detect-By-Machine-Learning
https://github.com/lcatro/WebShell-Detect-By-Machine-Learning
VirtualApp:Android 双开沙箱
https://github.com/asLody/VirtualApp/blob/master/CHINESE.md
https://github.com/asLody/VirtualApp/blob/master/CHINESE.md
GitLeak:Github 上查找密码信息的小工具
https://github.com/5alt/GitLeak
https://github.com/5alt/GitLeak
NATBypass: 一款lcx在golang下的实现
https://github.com/cw1997/NATBypass
https://github.com/cw1997/NATBypass
微软开源扫描工具Sonar
https://github.com/sonarwhal/sonar
https://github.com/sonarwhal/sonar
[CVE-2017-15688] GitBook 任意文件读取漏洞
https://xianzhi.aliyun.com/forum/read/2258.html
https://xianzhi.aliyun.com/forum/read/2258.html
VulHint: VulHint是辅助代码审计的 sublime text 3 插件
https://github.com/5alt/VulHint
https://github.com/5alt/VulHint
X-Ray:在线移动应用安全测试(iOS/Android)
https://www.htbridge.com/mobile/
https://www.htbridge.com/mobile/
Authenticode签名伪造——PE文件的签名伪造与签名验证劫持
https://3gstudent.github.io/3gstudent.github.io/Authenticode%E7%AD%BE%E5%90%8D%E4%BC%AA%E9%80%A0-PE%E6%96%87%E4%BB%B6%E7%9A%84%E7%AD%BE%E5%90%8D%E4%BC%AA%E9%80%A0%E4%B8%8E%E7%AD%BE%E5%90%8D%E9%AA%8C%E8%AF%81%E5%8A%AB%E6%8C%81/
https://3gstudent.github.io/3gstudent.github.io/Authenticode%E7%AD%BE%E5%90%8D%E4%BC%AA%E9%80%A0-PE%E6%96%87%E4%BB%B6%E7%9A%84%E7%AD%BE%E5%90%8D%E4%BC%AA%E9%80%A0%E4%B8%8E%E7%AD%BE%E5%90%8D%E9%AA%8C%E8%AF%81%E5%8A%AB%E6%8C%81/
关于最近的 Typecho 安全漏洞
https://joyqi.com/typecho/about-typecho-20171027.html
https://joyqi.com/typecho/about-typecho-20171027.html
菜鸟理解sql注入=“入侵五毛大楼”
https://bbs.ichunqiu.com/thread-28460-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-28460-1-1.html?from=sec
Cisco Traffic Analysis & Encrypted Threat Analytics
https://blogs.cisco.com/enterprise/cisco-traffic-analysis-encrypted-threat-analytics
https://blogs.cisco.com/enterprise/cisco-traffic-analysis-encrypted-threat-analytics
D-Link系列路由器漏洞挖掘入门
https://paper.seebug.org/429/
https://paper.seebug.org/429/
moloch 网络流量回溯分析系统
https://mp.weixin.qq.com/s/iRobUHtTIAsaU-i2TvLjTQ
https://mp.weixin.qq.com/s/iRobUHtTIAsaU-i2TvLjTQ
Typecho 后门事件始末
https://xianzhi.aliyun.com/forum/read/2266.html
https://xianzhi.aliyun.com/forum/read/2266.html
关于linux提权的命令你知道多少?
http://mp.weixin.qq.com/s/OLuOTfVpeu-xlAqnf8SjJg
http://mp.weixin.qq.com/s/OLuOTfVpeu-xlAqnf8SjJg
vulnerable-scene: 基于 Exploit-DB的漏洞环境
https://github.com/havysec/vulnerable-scene
https://github.com/havysec/vulnerable-scene
打造一款1kb大马并且处理D盾以及安全狗拦截与查杀
https://bbs.ichunqiu.com/thread-28476-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-28476-1-1.html?from=sec
无线网络(WI-FI)保护协议标准WPA2漏洞综合分析报告
https://paper.seebug.org/420/
https://paper.seebug.org/420/
Ubuntu 编译 OsmocomBB 环境 [更新2017-10-24]
https://www.92ez.com/?action=show&id=23458
https://www.92ez.com/?action=show&id=23458
Google reCaptcha验证码识别 - 85%成功率
https://github.com/ecthros/uncaptcha
https://github.com/ecthros/uncaptcha
Wordpress安全架构分析
https://paper.seebug.org/422/
https://paper.seebug.org/422/
前端防御从入门到弃坑--CSP变迁
https://paper.seebug.org/423/
https://paper.seebug.org/423/
SecWiki周刊(第190期)
https://www.sec-wiki.com/weekly/190
https://www.sec-wiki.com/weekly/190
旁路WAF:使用Burp插件绕过一些WAF设备
http://www.4hou.com/tools/8065.html
http://www.4hou.com/tools/8065.html
Biu-framework 企业内网基础服务安全扫描框架
https://github.com/0xbug/Biu-framework/blob/master/README_zh.md
https://github.com/0xbug/Biu-framework/blob/master/README_zh.md
WDigest:清除内存中的密码,使mimikatz等工具无法获取到明文
http://www.4hou.com/info/news/8126.html
http://www.4hou.com/info/news/8126.html
社交应用Sarahah安全测试
https://scotthelme.co.uk/sarahah/
https://scotthelme.co.uk/sarahah/
分享一个近期遇到的逻辑漏洞案例
http://www.freebuf.com/vuls/151196.html
http://www.freebuf.com/vuls/151196.html
偏执的iOS逆向研究员:收集全版本的macOS iOS+越狱+内核调试
http://www.freebuf.com/articles/rookie/151326.html
http://www.freebuf.com/articles/rookie/151326.html
OSINTforPenTests: 渗透测试中的开源情报信息收集
https://github.com/g-solaria/OSINTforPenTests
https://github.com/g-solaria/OSINTforPenTests
Scan .onion hidden services with nmap using Tor, Docker
https://github.com/milesrichardson/docker-onion-nmap
https://github.com/milesrichardson/docker-onion-nmap
Typecho install.php 后门代码分析
https://xianzhi.aliyun.com/forum/read/2257.html
https://xianzhi.aliyun.com/forum/read/2257.html
国产网站恶意代码监测(网马监控)工具优化版
http://www.freebuf.com/sectool/150647.html
http://www.freebuf.com/sectool/150647.html
exploitpack: Exploit Pack - Penetration testing framework
https://github.com/juansacco/exploitpack
https://github.com/juansacco/exploitpack
HTTPS攻击原理与防御
http://mp.weixin.qq.com/s/-o3ReWEkXII6PkOYqIf5rw
http://mp.weixin.qq.com/s/-o3ReWEkXII6PkOYqIf5rw
deception-as-detection: 基于欺诈的检测技术
https://github.com/0x4D31/deception-as-detection
https://github.com/0x4D31/deception-as-detection
Jboss引起的内网渗透
http://rcoil.me/2017/10/Jboss%E5%BC%95%E8%B5%B7%E7%9A%84%E5%86%85%E7%BD%91%E6%B8%97%E9%80%8F/
http://rcoil.me/2017/10/Jboss%E5%BC%95%E8%B5%B7%E7%9A%84%E5%86%85%E7%BD%91%E6%B8%97%E9%80%8F/
Apache Solr 已知版本漏洞现状基本调查报告
https://cert.360.cn/report/detail?id=5d8fcd3c20ccac9f8b62b4e9214c5127
https://cert.360.cn/report/detail?id=5d8fcd3c20ccac9f8b62b4e9214c5127
sqlmap自带的tamper你了解多少?
http://mp.weixin.qq.com/s/vEEoMacmETUA4yZODY8xMQ
http://mp.weixin.qq.com/s/vEEoMacmETUA4yZODY8xMQ
基于flask的restful-api后端笔记
https://jiayi.space/post/ji-yu-flaskde-restful-apihou-duan-bi-ji
https://jiayi.space/post/ji-yu-flaskde-restful-apihou-duan-bi-ji
Linux TBB SFTP URI allows local IP disclosure
https://hackerone.com/reports/253429
https://hackerone.com/reports/253429
Unsupervised Machine Learning in Cyber Security
http://raffy.ch/blog/2017/10/22/unsupervised-machine-learning-in-cyber-security/
http://raffy.ch/blog/2017/10/22/unsupervised-machine-learning-in-cyber-security/
Detecting Malicious Requests Using Keras & Tensorflow
https://github.com/adamkusey/securitai-lstm-model
https://github.com/adamkusey/securitai-lstm-model
SecurityFTW/cs-suite: AWS云基础设施安全审计工具
https://github.com/SecurityFTW/cs-suite
https://github.com/SecurityFTW/cs-suite
WAF攻防研究之四个层次Bypass WAF
https://xianzhi.aliyun.com/forum/read/2251.html
https://xianzhi.aliyun.com/forum/read/2251.html
CSRF花式绕过Referer技巧
http://0x007.blog.51cto.com/6330498/1610946
http://0x007.blog.51cto.com/6330498/1610946
Stage-RemoteDll.ps1:32位和64位架构上的各种DLL注入技术
https://github.com/FuzzySecurity/PowerShell-Suite/blob/master/Stage-RemoteDll.ps1
https://github.com/FuzzySecurity/PowerShell-Suite/blob/master/Stage-RemoteDll.ps1
美国情报分析互联网资源之一
https://mp.weixin.qq.com/s/hxg2nHAIuUNt5VewML4v6A
https://mp.weixin.qq.com/s/hxg2nHAIuUNt5VewML4v6A
YeAHPot: Yet Another Honey Pot
https://github.com/juansacco/yetanotherhoneypot
https://github.com/juansacco/yetanotherhoneypot
onehttpd 0.7远程拒绝服务漏洞分析
http://whereisk0shl.top/post/2017-10-25
http://whereisk0shl.top/post/2017-10-25
IoT_reaper 情况更新
http://blog.netlab.360.com/iot_reaper-a-few-updates/
http://blog.netlab.360.com/iot_reaper-a-few-updates/
安全客2017季刊-第3期
https://mp.weixin.qq.com/s/din1YezwlRmchwOBxLP38A
https://mp.weixin.qq.com/s/din1YezwlRmchwOBxLP38A
OSXFuzz: macOS Kernel Fuzzer
https://github.com/mwrlabs/OSXFuzz
https://github.com/mwrlabs/OSXFuzz
recodeking/MalwareAnalysis: 恶意软件分析工具和资源列表
https://github.com/recodeking/MalwareAnalysis
https://github.com/recodeking/MalwareAnalysis
Slack SAML authentication bypass
http://blog.intothesymmetry.com/2017/10/slack-saml-authentication-bypass.html
http://blog.intothesymmetry.com/2017/10/slack-saml-authentication-bypass.html
How to post-process YARA rules generated by yarGen
https://medium.com/@cyb3rops/how-to-post-process-yara-rules-generated-by-yargen-121d29322282
https://medium.com/@cyb3rops/how-to-post-process-yara-rules-generated-by-yargen-121d29322282
一文读懂集成学习(附学习资源)
https://mp.weixin.qq.com/s/zEgan2w9QjAtt0ylzzwHPw
https://mp.weixin.qq.com/s/zEgan2w9QjAtt0ylzzwHPw
Stealing Amazon EC2 Keys via an XSS Vulnerability
https://ionize.com.au/stealing-amazon-ec2-keys-via-xss-vulnerability/
https://ionize.com.au/stealing-amazon-ec2-keys-via-xss-vulnerability/
DNS错误响应的案例
https://ripe75.ripe.net/presentations/20-A-curious-case-of-broken-DNS-responses-RIPE-75.pdf
https://ripe75.ripe.net/presentations/20-A-curious-case-of-broken-DNS-responses-RIPE-75.pdf
KeyStoneJS Pentest Report
https://securelayer7.net/download/pdf/KeystoneJS-Pentest-Report-SecureLayer7.pdf
https://securelayer7.net/download/pdf/KeystoneJS-Pentest-Report-SecureLayer7.pdf
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第191期)
