SecWiki周刊(第242期)
2018/10/15-2018/10/21
安全资讯
[其它]  美国选民数据再次遭到泄露,数量达3500万
https://nosec.org/home/detail/1899.html
[新闻]  加州IoT设备网络安全法对物联网法律之影响(附法案翻译)
https://www.anquanke.com/post/id/161941
[法规]  区块链信息服务管理规定(征求意见稿)
http://zqyj.chinalaw.gov.cn/readmore?id=2708&listType=2
[新闻]  2018前三季度上市网络安全公司业绩预告
https://mp.weixin.qq.com/s/dLsXvmU0ba91_9gjmvPU3w
安全技术
[运维安全]  FireEye:ICS安全趋势分析
https://mp.weixin.qq.com/s/a8DRajYpeCMo_bwSKbQErA
[会议]  安大略湖畔的安全之光——ACM CCS 2018 小记(2)
https://zhuanlan.zhihu.com/p/47219624
[移动安全]  智能网联汽车信息安全风险分析及实践探讨
https://www.kiwisec.com/news/detail/5bc4490ddb30c341099f272d.html
[会议]  安大略湖畔的安全之光——ACM CCS 2018 小记(1)
https://zhuanlan.zhihu.com/p/47087828
[取证分析]  看我如何通过邮箱获取IP定位
https://mp.weixin.qq.com/s/QBLnJruKj753XY0rnmVSXg
[Web安全]  跨平台横向移动 [ wmi利用 ]
https://mp.weixin.qq.com/s/7YidkhJvmVBxFhYcD7pIfQ
[Web安全]  Teltonika路由器存在远程命令执行漏洞(CVE-2018-17532)
https://nosec.org/home/detail/1901.html
[设备安全]  SoK: Security Evaluation of Home-Based IoT Deployments
https://astrolavos.gatech.edu/articles/sok_sp19.pdf
[漏洞分析]  Java常见通用漏洞和修复的代码以及利用payload
https://github.com/JoyChou93/java-sec-code
[Web安全]  MetInfo最新版本爆出SQL注入漏洞
https://nosec.org/home/detail/1889.html
[Web安全]  PHPWander: A Static Vulnerability Analysis Tool for PHP
https://www.duo.uio.no/bitstream/handle/10852/63609/master-pavelju.pdf
[漏洞分析]  智能合约游戏之殇——Dice2win安全分析
https://lorexxar.cn/2018/10/18/dice2win-safe/
[数据挖掘]  olap2018: 易观第二届OLAP漏斗算法大赛
https://github.com/housepower/olap2018
[观点]  如何进入Gartner报告?
https://mp.weixin.qq.com/s/uGhcnkgGNeZhGRAGlPfUWg
[文档]  京东云安全白皮书
https://img1.jcloudcs.com/portal/pdf/JDCloud-Security-WhitePaper-201809.pdf
[Web安全]  零基础如何学习 Web 安全?
https://www.zhihu.com/question/21606800
[漏洞分析]  2018护网杯calendar详析
https://www.anquanke.com/post/id/162121
[运维安全]  甲方安全建设的一些思路和思考
https://mp.weixin.qq.com/s/quwaJMVHYpBAXpkgtR12Kw
[其它]  net-creds:从网络接口或PCAP文件中嗅探敏感信息
https://nosec.org/home/detail/1905.html
[设备安全]  D-Link 850L&645路由漏洞分析
https://xz.aliyun.com/t/2941
[恶意分析]  Malware Families & Actors 恶意家族查询
https://malpedia.caad.fkie.fraunhofer.de/families
[恶意分析]  Anatomy of an Attack: Detecting and Defeating CRASHOVERRIDE
https://dragos.com/media/CRASHOVERRIDE2018.pdf
[取证分析]  风险评估服务能力成熟度模型研究
https://mp.weixin.qq.com/s/y9Qx4htmcoWgC96G2sWvpw
[恶意分析]  Finding Related ATT&CK Techniques
https://medium.com/mitre-attack/finding-related-att-ck-techniques-f1a4e8dfe2b6
[取证分析]  记一次安全应急响应中遇到的利用SSH日志触发的后门分析
http://www.freebuf.com/articles/system/185942.html?from=timeline
[其它]  old-school-evil-excel-4-0-macros-xlm
https://outflank.nl/blog/2018/10/06/old-school-evil-excel-4-0-macros-xlm/
[漏洞分析]  浅谈重放漏洞与竞态条件漏洞
https://mp.weixin.qq.com/s/oN_AvF7luMNvwB3GDyk_PA
[漏洞分析]  Git Submodule 漏洞(CVE-2018-17456)分析
https://paper.seebug.org/716/
[数据挖掘]  一步步教你轻松学主成分分析PCA降维算法
http://www.52nlp.cn/10738-2
[其它]  Analyzing WebAssembly binaries
https://www.forcepoint.com/blog/security-labs/analyzing-webassembly-binaries
[恶意分析]  Detecting Malicious Campaigns with Machine Learning
https://researchcenter.paloaltonetworks.com/2018/10/unit42-detecting-malicious-campaigns-machine-learning/
[取证分析]  一次入侵应急响应分析
http://www.freebuf.com/articles/network/186071.html
[恶意分析]  分析基于RTF恶意文档的攻击活动
https://www.anquanke.com/post/id/162105
[杂志]  SecWiki周刊(第241期)
https://www.sec-wiki.com/weekly/241
[漏洞分析]  使用QEMU chroot进行固件本地调试
http://blog.nsfocus.net/qemu-chroot/
[恶意分析]  Another link between Equation Group and Stuxnet?
https://www.a12d404.net/security/2018/08/10/another-link-between-eqgrp-and-stuxnet.html
[恶意分析]  负载恶意软件HawkEye的VB Inject样本分析
http://www.freebuf.com/articles/paper/186050.html
[设备安全]  IoT时代,“白帽子”以网为剑捍卫安全
https://mp.weixin.qq.com/s/9t36Z_8exZwI_rpG-P57Yw
[漏洞分析]  正解HTTPS与中间人攻击
https://mp.weixin.qq.com/s/E0_NRjpsyCCZtNgzuXU5Jw
[恶意分析]  DarkPulsa (apt)
https://securelist.com/darkpulsar/88199/
[其它]  The dark side of WebAssembly
https://www.virusbulletin.com/virusbulletin/2018/10/dark-side-webassembly/
[工具]  The release of Dmp2Json & Querying Memory Images through JSON format
https://blog.comae.io/the-release-of-dmp2json-querying-memory-images-through-json-format-11fa01fd86ae
[漏洞分析]  某CMS 排行页面存储型XSS漏洞分析
https://xz.aliyun.com/t/2899
[比赛]  Flare-on Challenge 2018 Write-up
https://bruce30262.github.io/flare-on-challenge-2018-write-up/
[漏洞分析]  Struts2 漏洞exp从零分析
https://www.anquanke.com/post/id/161690
[其它]  The Problems and Promise of WebAssembly
https://googleprojectzero.blogspot.com/2018/08/the-problems-and-promise-of-webassembly.html
[取证分析]  Forrester 威胁情报服务厂商评估报告
https://mp.weixin.qq.com/s/1O5KU5O95s_naz5MKKpYow
[观点]  网络安全发展新时代新机遇
https://mp.weixin.qq.com/s/KpTSoXsDi2PCfrJxRensqg
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第242期)