SecWiki周刊(第219期)
2018/05/07-2018/05/13
安全资讯
黑客蒸米:一个大V的生活意见
https://mp.weixin.qq.com/s/AwhvVEAMtWUl65_8bN54iQ
https://mp.weixin.qq.com/s/AwhvVEAMtWUl65_8bN54iQ
2017年网络安全公司营业收入排行
https://mp.weixin.qq.com/s/OaMoKelLkkElNUcxJyL2-Q
https://mp.weixin.qq.com/s/OaMoKelLkkElNUcxJyL2-Q
从到乌克兰电网到德国钢厂:攻击工控系统五大真实案例
http://www.aqniu.com/news-views/33857.html
http://www.aqniu.com/news-views/33857.html
安全技术
一起玩蛇-Nodejs代码审计中的器
https://mp.weixin.qq.com/s/97whUiR5v0URQ7QT0CQ6bg
https://mp.weixin.qq.com/s/97whUiR5v0URQ7QT0CQ6bg
xKungfoo 2018 信息安全交流大会 PPT下载
http://www.4hou.com/info/news/11370.html
http://www.4hou.com/info/news/11370.html
RCE with spring-security-oauth2 分析-CVE-2018-1260
https://xz.aliyun.com/t/2330
https://xz.aliyun.com/t/2330
CVE-2018-1260|Spring-security-oauth2远程命令执行
https://mp.weixin.qq.com/s/g2d34avm-H_nhBqQFUF7hw
https://mp.weixin.qq.com/s/g2d34avm-H_nhBqQFUF7hw
The-Axer:一款自动化地用 msfvenom 生成 payload 的工具
https://github.com/ceh-tn/The-Axer
https://github.com/ceh-tn/The-Axer
VirusShare Malware Collection: A-Z 恶意样本数据集
https://archive.org/details/virusshare_malware_collection_aaa
https://archive.org/details/virusshare_malware_collection_aaa
JavaScript 恶意代码样本收集仓库
https://github.com/HynekPetrak/javascript-malware-collection
https://github.com/HynekPetrak/javascript-malware-collection
Logpara: 一个对常见的Web日志进行解析处理的粗糙DEMO
https://github.com/0xa-saline/Logpara
https://github.com/0xa-saline/Logpara
DarkHotel APT团伙新近活动的样本分析
https://mp.weixin.qq.com/s/LC_udciIifrJBt-abuEUaA
https://mp.weixin.qq.com/s/LC_udciIifrJBt-abuEUaA
docker-security: docker 安全基线规范
https://github.com/Kutim/docker-security
https://github.com/Kutim/docker-security
GitLab web hooks SSRF(CVE-2018-8801) Patch analysis and How to safely fix SSRF
https://github.com/Cryin/Paper/blob/master/GitLab%20web%20hooks%20SSRF(CVE-2018-8801)%20Patch%20analysis%20and%20How%20to%20safely%20fix%20SSRF.md
https://github.com/Cryin/Paper/blob/master/GitLab%20web%20hooks%20SSRF(CVE-2018-8801)%20Patch%20analysis%20and%20How%20to%20safely%20fix%20SSRF.md
RansomwareDetector 勒索软件检测工具
https://github.com/remyLucas/RansomwareDetector
https://github.com/remyLucas/RansomwareDetector
初探新版 Elasticsearch 中的强悍插件 X-pack
https://mp.weixin.qq.com/s/2SFJUFgb_e3cKP6eOKS4jw
https://mp.weixin.qq.com/s/2SFJUFgb_e3cKP6eOKS4jw
struts2 命令/代码执行漏洞分析系列 S2-003和S3-005
https://xz.aliyun.com/t/2323
https://xz.aliyun.com/t/2323
Malware Analysis Tools
http://malwareanalysis.tools/
http://malwareanalysis.tools/
渗透测试实战-BSides靶机入侵
https://www.anquanke.com/post/id/113020
https://www.anquanke.com/post/id/113020
Study: Attack on KrebsOnSecurity Cost IoT Device Owners $323K
https://krebsonsecurity.com/2018/05/study-attack-on-krebsonsecurity-cost-iot-device-owners-323k/
https://krebsonsecurity.com/2018/05/study-attack-on-krebsonsecurity-cost-iot-device-owners-323k/
一个Linux平台的门罗币挖矿木马的查杀与分析
http://www.freebuf.com/articles/system/170211.html
http://www.freebuf.com/articles/system/170211.html
$4500 Bounty — How I got lucky
https://medium.com/bugbountywriteup/4500-bounty-how-i-got-lucky-99d8bc933f75
https://medium.com/bugbountywriteup/4500-bounty-how-i-got-lucky-99d8bc933f75
GoKu-API-Gateway:悟空API网关开源版
https://github.com/eolinker/GoKu-API-Gateway
https://github.com/eolinker/GoKu-API-Gateway
Defcon China 靶场题 - 内网渗透Writeup
http://www.cnblogs.com/iamstudy/articles/2018_defcon_china_pentest_writeup.html
http://www.cnblogs.com/iamstudy/articles/2018_defcon_china_pentest_writeup.html
Bug-Project-Framework: 漏洞利用框架模块分享仓库
https://github.com/Fplyth0ner-Combie/Bug-Project-Framework
https://github.com/Fplyth0ner-Combie/Bug-Project-Framework
GPON 漏洞的在野利用(一)—muhstik 僵尸网络
http://blog.netlab.360.com/gpon-exploit-in-the-wild-i-muhstik-botnet-among-others/
http://blog.netlab.360.com/gpon-exploit-in-the-wild-i-muhstik-botnet-among-others/
Blue Team fundamentals Part Two: Windows Processes.
https://securitybytes.io/blue-team-fundamentals-part-two-windows-processes-759fe15965e2
https://securitybytes.io/blue-team-fundamentals-part-two-windows-processes-759fe15965e2
PHP 一句话木马检测绕过研究
https://mp.weixin.qq.com/s/LytVSOt81UpRyetMh6twnw
https://mp.weixin.qq.com/s/LytVSOt81UpRyetMh6twnw
Unsafe Unzip with spring-integration-zip 分析-CVE-2018-1261
https://xz.aliyun.com/t/2334
https://xz.aliyun.com/t/2334
图文教程:无限刷BEC币与漏洞分析(多图预警)
https://mp.weixin.qq.com/s/CLq9jkHon8QJgO_rnBA9Yw
https://mp.weixin.qq.com/s/CLq9jkHon8QJgO_rnBA9Yw
Google YOLO
https://blog.innerht.ml/google-yolo/
https://blog.innerht.ml/google-yolo/
2017中国企业邮箱安全性研究报告
https://mp.weixin.qq.com/s/1My9bwN2BLbCwcqEIP-xeA
https://mp.weixin.qq.com/s/1My9bwN2BLbCwcqEIP-xeA
使用hashcat破解加密office文件
https://evi1cg.me/archives/hashcat_crack_office.html
https://evi1cg.me/archives/hashcat_crack_office.html
CVE-2017-14322 登录认证绕过分析
https://mp.weixin.qq.com/s/GWdKiwWf8Eiy5ee8B-D5Dw
https://mp.weixin.qq.com/s/GWdKiwWf8Eiy5ee8B-D5Dw
ShellPop:generate easy and sofisticated reverse or bind shell commands
https://github.com/0x00-0x00/ShellPop
https://github.com/0x00-0x00/ShellPop
如何滥用DCOM实现横向渗透
https://www.anquanke.com/post/id/107097
https://www.anquanke.com/post/id/107097
禁用import的情况下绕过python沙箱
https://www.anquanke.com/post/id/107000
https://www.anquanke.com/post/id/107000
Python exploit for Remote Code Executuion on GPON home routers (CVE-2018-10562).
https://github.com/f3d0x0/GPON
https://github.com/f3d0x0/GPON
区块链安全分析报告
https://bcsec.org/
https://bcsec.org/
Vulnhub渗透测试练习-Kioptrix 1
https://uknowsec.cn/posts/notes/Vulnhub%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E7%BB%83%E4%B9%A0-Kioptrix-1.html
https://uknowsec.cn/posts/notes/Vulnhub%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E7%BB%83%E4%B9%A0-Kioptrix-1.html
Bypass ngx_lua_waf SQL注入防御(多姿势)
https://mp.weixin.qq.com/s/tOf66FGINaO9oVv2pDcxcQ
https://mp.weixin.qq.com/s/tOf66FGINaO9oVv2pDcxcQ
Burp Suite API学习思路
https://bbs.ichunqiu.com/thread-40003-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-40003-1-1.html?from=sec
Off the Chain: Observing Bitcoin Nodes on the Public Internet
https://www.rapid7.com/globalassets/_pdfs/research/rapid7-block-chain-research-report.pdf
https://www.rapid7.com/globalassets/_pdfs/research/rapid7-block-chain-research-report.pdf
SecWiki周刊(第218期)
https://www.sec-wiki.com/weekly/218
https://www.sec-wiki.com/weekly/218
Vulnhub渗透测试练习-Kioptrix 3
https://uknowsec.cn/posts/notes/Vulnhub%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E7%BB%83%E4%B9%A0-Kioptrix-3.html
https://uknowsec.cn/posts/notes/Vulnhub%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E7%BB%83%E4%B9%A0-Kioptrix-3.html
Hiding Metasploit Shellcode to Evade Windows Defender
https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/?from=timeline
https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/?from=timeline
JPCERT/CC漏洞协调与披露指南(中文版)
http://www.shuziguanxing.com/guide.pdf
http://www.shuziguanxing.com/guide.pdf
Yearning: 基于Inception的可视化Web端SQL审核平台
https://github.com/cookieY/Yearning
https://github.com/cookieY/Yearning
linux_information: 自动化收集linux信息
https://github.com/l3m0n/linux_information
https://github.com/l3m0n/linux_information
Analyzing Large Capture Files Part 1 – Colorizing Conversations in Wireshark
http://chrissanders.org/2018/05/large-captures1-colorizing-wireshark/
http://chrissanders.org/2018/05/large-captures1-colorizing-wireshark/
python-iocextract: Advanced Indicator of Compromise (IOC) extractor
https://github.com/InQuest/python-iocextract
https://github.com/InQuest/python-iocextract
Debugging Windows Services
https://musings.konundrum.org/2018/05/03/debugging-windows-services.html
https://musings.konundrum.org/2018/05/03/debugging-windows-services.html
如何用Powershell PE注入弹你一脸计算器
https://bbs.ichunqiu.com/thread-39788-1-1.html?from=sec
https://bbs.ichunqiu.com/thread-39788-1-1.html?from=sec
nbns-spoofing
https://pentestlab.blog/2018/05/08/nbns-spoofing/
https://pentestlab.blog/2018/05/08/nbns-spoofing/
GPON Home Gateway 远程命令执行漏洞被利用情况
https://paper.seebug.org/595/
https://paper.seebug.org/595/
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第219期)
