SecWiki周刊(第218期)
2018/04/30-2018/05/06
安全资讯
2018首都网络安全日企业大点评
http://www.aqniu.com/industry/33318.html
http://www.aqniu.com/industry/33318.html
RSA2018终端厂商及产品趋势解读(EPP&EDR&CWPP)
http://www.aqniu.com/tools-tech/33370.html
http://www.aqniu.com/tools-tech/33370.html
吴世忠:对当前网络信息安全新特点新趋势的几点认识
https://mp.weixin.qq.com/s/h94f2_y9hsdDZQPIEF9ZVg
https://mp.weixin.qq.com/s/h94f2_y9hsdDZQPIEF9ZVg
安全技术
时间延迟盲注的三种加速注入方式[mysql篇]
http://www.ch1st.cn/?p=44
http://www.ch1st.cn/?p=44
打破基于openresty的WEB安全防护(CVE-2018-9230)
https://mp.weixin.qq.com/s/9Z6KSHbXQr61mrHcVA2--Q
https://mp.weixin.qq.com/s/9Z6KSHbXQr61mrHcVA2--Q
金融企业信息安全培训规划与实践
https://mp.weixin.qq.com/s/JKcaU2uMrTxcQudpsdFbnA
https://mp.weixin.qq.com/s/JKcaU2uMrTxcQudpsdFbnA
Free Security and Hacking eBooks
https://github.com/Hack-with-Github/Free-Security-eBooks
https://github.com/Hack-with-Github/Free-Security-eBooks
Bad-Pdf: Steal NTLM Hashes with Bad-PDF
https://github.com/deepzec/Bad-Pdf
https://github.com/deepzec/Bad-Pdf
GPON Home Gateway 远程命令执行漏洞分析
https://paper.seebug.org/593/
https://paper.seebug.org/593/
metasploit之学习笔记
http://nobgr.me/2018/05/05/metasploit/
http://nobgr.me/2018/05/05/metasploit/
burpsuite插件开发之检测越权访问漏洞
https://thief.one/2018/05/04/1/
https://thief.one/2018/05/04/1/
Kaspersky 发布针对网络间谍活动 ZooPark 的研究报告
https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/05/03114450/ZooPark_for_public_final_edit.pdf
https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/05/03114450/ZooPark_for_public_final_edit.pdf
借鉴开源框架自研日志收集系统
https://mp.weixin.qq.com/s/4TmrqAhr01e8N9e9keLCMA
https://mp.weixin.qq.com/s/4TmrqAhr01e8N9e9keLCMA
CVE-2018-9995_dvr_credentials: Get DVR Credentials
https://github.com/ezelf/CVE-2018-9995_dvr_credentials
https://github.com/ezelf/CVE-2018-9995_dvr_credentials
利用机器学习检测HTTP恶意外连流量
https://www.anquanke.com/post/id/107124
https://www.anquanke.com/post/id/107124
TITAN: 云集分布式全链路压测军演系统
https://github.com/yunjiweidian/TITAN
https://github.com/yunjiweidian/TITAN
Windows提权基本原理,各位表哥了解下!
https://bbs.ichunqiu.com/thread-39731-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-39731-1-1.html?from=sec
NIPS 2017对抗样本攻防竞赛总结
https://mp.weixin.qq.com/s/AuOFvbEl7sHpdbT4vFv46Q
https://mp.weixin.qq.com/s/AuOFvbEl7sHpdbT4vFv46Q
惊蛰:一款基于Pocsuite的漏洞扫描系统
https://github.com/jeffzh3ng/InsectsAwake
https://github.com/jeffzh3ng/InsectsAwake
ClickHouse与威胁日志分析
http://candylab.net/hobby/clickhouse-basic/?from=timeline
http://candylab.net/hobby/clickhouse-basic/?from=timeline
面向萌新的红帽杯2018线上赛wp
https://bbs.ichunqiu.com/thread-39687-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-39687-1-1.html?from=sec
CVE-2018-873X组合拳:深入分析NagiosXI漏洞链
https://xz.aliyun.com/t/2321
https://xz.aliyun.com/t/2321
Web前端攻防一些技巧
http://www.au1ge.xyz/2018/05/03/web%E5%89%8D%E7%AB%AF%E6%94%BB%E9%98%B2%E4%B8%80%E4%BA%9Btrick/
http://www.au1ge.xyz/2018/05/03/web%E5%89%8D%E7%AB%AF%E6%94%BB%E9%98%B2%E4%B8%80%E4%BA%9Btrick/
解析针对巴西用户的恶意软件及垃圾邮件行动
http://www.4hou.com/technology/11251.html
http://www.4hou.com/technology/11251.html
巧妙使用机器学习的方法来检测IOT设备中的DDOS攻击
https://mp.weixin.qq.com/s/ksqB8wkHuCFvmTvxD4doWA
https://mp.weixin.qq.com/s/ksqB8wkHuCFvmTvxD4doWA
web-analytics: 监测分析、异常监测、广告验证、访客唯一标识
https://github.com/TingGe/web-analytics
https://github.com/TingGe/web-analytics
Katana Framework武士刀操作指南
http://www.freebuf.com/sectool/169457.html
http://www.freebuf.com/sectool/169457.html
santa:A binary whitelisting/blacklisting system for Mac OS X
https://github.com/google/santa
https://github.com/google/santa
中国科学院院士:梅宏—智慧社会与软件定义
https://mp.weixin.qq.com/s/h1nGYuusENkNroxdte9_yQ
https://mp.weixin.qq.com/s/h1nGYuusENkNroxdte9_yQ
开源软件创建SOC的一份清单
http://www.freebuf.com/articles/network/169632.html
http://www.freebuf.com/articles/network/169632.html
Tips for Reverse-Engineering Malicious Code - Cheat Sheet
https://digital-forensics.sans.org/media/reverse-engineering-malicious-code-tips.pdf
https://digital-forensics.sans.org/media/reverse-engineering-malicious-code-tips.pdf
0xB9 威胁情报体系与企业SIEM结合的那些套路—TIP平台建设
https://zhuanlan.zhihu.com/p/36427877
https://zhuanlan.zhihu.com/p/36427877
Open Source Intelligence (OSINT) Tools & Resources
http://osint.link/
http://osint.link/
Multiple security vulnerabilities in domains belonging to Google
https://sysdream.com/news/lab/2018-04-30-multiple-security-vulnerabilities-in-domains-belonging-to-google/
https://sysdream.com/news/lab/2018-04-30-multiple-security-vulnerabilities-in-domains-belonging-to-google/
Norse - IPViking Map 源码改进与解析
https://github.com/TingGe/data-visualization/tree/master/ipviking
https://github.com/TingGe/data-visualization/tree/master/ipviking
Java反序列化漏洞的原理分析
http://www.freebuf.com/vuls/170344.html
http://www.freebuf.com/vuls/170344.html
揭开神秘的面纱:CCleaner APT事件调查
http://www.4hou.com/other/11221.html
http://www.4hou.com/other/11221.html
渗透技巧—Windows远程协助的隐蔽执行
https://3gstudent.github.io/3gstudent.github.io/%E6%B8%97%E9%80%8F%E6%8A%80%E5%B7%A7-Windows%E8%BF%9C%E7%A8%8B%E5%8D%8F%E5%8A%A9%E7%9A%84%E9%9A%90%E8%94%BD%E6%89%A7%E8%A1%8C/
https://3gstudent.github.io/3gstudent.github.io/%E6%B8%97%E9%80%8F%E6%8A%80%E5%B7%A7-Windows%E8%BF%9C%E7%A8%8B%E5%8D%8F%E5%8A%A9%E7%9A%84%E9%9A%90%E8%94%BD%E6%89%A7%E8%A1%8C/
GitList-0-6-Unauthenticated-RCE-分析
https://chybeta.github.io/2018/04/30/GitList-0-6-Unauthenticated-RCE-分析/
https://chybeta.github.io/2018/04/30/GitList-0-6-Unauthenticated-RCE-分析/
How I found 2.9 RCE at Yahoo! Bug Bounty program
https://medium.com/@kedrisec/how-i-found-2-9-rce-at-yahoo-bug-bounty-program-20ab50dbfac7
https://medium.com/@kedrisec/how-i-found-2-9-rce-at-yahoo-bug-bounty-program-20ab50dbfac7
Operation GhostSecret:在全球范围内窃取数据的攻击活动
https://www.anquanke.com/post/id/106853
https://www.anquanke.com/post/id/106853
线下AD&代码审计&ECShop V2.7.3
https://www.anquanke.com/post/id/107008
https://www.anquanke.com/post/id/107008
Palantir的新专利曝光:挖掘和整合全世界的数据
https://mp.weixin.qq.com/s/y6wEiVqaRkXxGvDeUxO6-w
https://mp.weixin.qq.com/s/y6wEiVqaRkXxGvDeUxO6-w
The new Domain Generation Algorithm of Nymaim
https://johannesbader.ch/2018/04/the-new-domain-generation-algorithm-of-nymaim/
https://johannesbader.ch/2018/04/the-new-domain-generation-algorithm-of-nymaim/
gdpr-checklist: The GDPR Checklist Project
https://github.com/privacyradius/gdpr-checklist
https://github.com/privacyradius/gdpr-checklist
A repository of sysmon configuration modules
https://github.com/olafhartong/sysmon-modular
https://github.com/olafhartong/sysmon-modular
7-Zip: From Uninitialized Memory to Remote Code Execution
https://landave.io/2018/05/7-zip-from-uninitialized-memory-to-remote-code-execution/
https://landave.io/2018/05/7-zip-from-uninitialized-memory-to-remote-code-execution/
安全圈乱象杂谈
http://riusksk.me/2018/04/30/%E5%AE%89%E5%85%A8%E5%9C%88%E4%B9%B1%E8%B1%A1%E6%9D%82%E8%B0%88/
http://riusksk.me/2018/04/30/%E5%AE%89%E5%85%A8%E5%9C%88%E4%B9%B1%E8%B1%A1%E6%9D%82%E8%B0%88/
Requests-html: Pythonic HTML Parsing for Humans
https://github.com/kennethreitz/requests-html
https://github.com/kennethreitz/requests-html
2018-redhat-misc&web-writeup
https://www.anquanke.com/post/id/107005
https://www.anquanke.com/post/id/107005
内网渗透中用到的计划任务
https://xz.aliyun.com/t/2319
https://xz.aliyun.com/t/2319
从钓鱼样本到某大厂存储型XSS
https://xz.aliyun.com/t/2322
https://xz.aliyun.com/t/2322
实战公有云威胁情报系统构建
http://www.4hou.com/technology/11307.html
http://www.4hou.com/technology/11307.html
#BugBounty — How I was able to bypass firewall to get RCE and then went from ser
https://medium.com/@logicbomb_1/bugbounty-how-i-was-able-to-bypass-firewall-to-get-rce-and-then-went-from-server-shell-to-get-783f71131b94
https://medium.com/@logicbomb_1/bugbounty-how-i-was-able-to-bypass-firewall-to-get-rce-and-then-went-from-server-shell-to-get-783f71131b94
JSON Web Token Pentesting
https://medium.com/@netscylla/json-web-token-pentesting-890bc2cf0dcd
https://medium.com/@netscylla/json-web-token-pentesting-890bc2cf0dcd
news_feed: 实时监控1000家中国企业的新闻动态
https://github.com/lazycatzh/news_feed
https://github.com/lazycatzh/news_feed
faceai:一款优秀的人脸检测、人脸识别、视频识别、文字识别等智能AI项目
https://github.com/vipstone/faceai
https://github.com/vipstone/faceai
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第218期)
