SecWiki周刊(第251期)
2018/12/17-2018/12/23
安全资讯
[新闻]  美国指控所谓“中国黑客”事件始末(上)
https://nosec.org/home/detail/2091.html
[新闻]  美国指控所谓“中国黑客”事件始末(下)
https://nosec.org/home/detail/2090.html
[事件]  暗网帝国丝路覆灭记:FBI探员都被拉下水的比特币迷局
https://mp.weixin.qq.com/s/I2gatFhkEs1GpGPHC97PnQ
[观点]  破阵:对国内外网络供应链攻击的思考
https://mp.weixin.qq.com/s/AleZLuX6ZGEsMWJAHfQq5g
[新闻]  国内外 APT 组织武力排行榜大揭秘
https://mp.weixin.qq.com/s/AsA8CRUAimz86V2yEyQQ1Q
[新闻]  隔空取数:且看跨网窃密如何实现
http://www.gjbmj.gov.cn/n1/2018/0717/c411145-30152285.html
安全技术
[其它]  企业内部安全意识培训-钓鱼攻击:gophish
https://bloodzer0.github.io/ossa/infrastructure-security/network-security/office-network-security/gophish/
[漏洞分析]  Discuz! 1.5-2.5 命令执行漏洞分析(CVE-2018-14729)
https://paper.seebug.org/763/
[Web安全]  改造中国蚁剑AntSword之轻松过狗
https://www.3hack.com/note/33.html
[数据挖掘]  绿盟安全风险评估算法体系
http://blog.nsfocus.net/nsfocus-security-risk-assessment-algorithms-system/
[运维安全]  VIPKID安全中心自研Github安全监控系统
https://mp.weixin.qq.com/s/4W42FLdfiO4cu7gykthe9A
[Web安全]  从0开始你的域渗透之旅
https://github.com/crazywa1ker/DarthSidious-Chinese
[比赛]  第九届SWPUCTF官方writeup
https://www.anquanke.com/post/id/168338
[漏洞分析]  看我如何通过nodejs中的SSRF完全控制aws
http://www.4hou.com/vulnerable/15088.html
[其它]  聊一聊薅羊毛党最爱用的改机神器
https://media.weibo.cn/article?id=2309404283470665937933
[数据挖掘]  以虎嗅网4W+文章的文本挖掘为例,展现数据分析的一整套流程
https://zhuanlan.zhihu.com/p/52782063
[漏洞分析]  认识二进制安全与漏洞攻防技术(Windows平台)
https://mp.weixin.qq.com/s/10NEuo0z4SZ--qRZmgy5MQ
[论文]  Predicting Impending Exposure to Malicious Content from User Behavior
https://mp.weixin.qq.com/s/6ES6VQhLFWV7czJglZc4hQ
[其它]  github监控技术讨论
https://bloodzer0.github.io/ossa/infrastructure-security/network-security/network-security-monitor/github-monitor/
[数据挖掘]  快手万亿级实时OLAP平台的建设与实践
https://mp.weixin.qq.com/s/bKDtv892f4TJVV-JjW0vfQ
[运维安全]  如何构建一个相对安全的账号体系
https://mp.weixin.qq.com/s/pNHthmCvRPFCNpOrMyyTPg
[其它]  ELK日志分析系列:安装+进阶+报警+踩坑
https://bloodzer0.github.io/ossa/infrastructure-security/host-security/log-analysis/elk1/
[取证分析]  MHN蜜罐技术使用心得
https://bloodzer0.github.io/ossa/infrastructure-security/host-security/honeypot/mhn-honeypot/
[编程技术]  深度学习装机指南:从GPU到显示器
https://mp.weixin.qq.com/s/YLGjsd6eqYODjFa6XUce3w
[Web安全]  2018年第三届南宁市网络安全技术大赛Web题部分
https://nosec.org/home/detail/2092.html
[漏洞分析]  iWeChat: 勾勒出微信的设计,使用到的技术手段
https://github.com/lefex/iWeChat
[Web安全]  CCTV视频监控设备存在后门等多个漏洞
https://nosec.org/home/detail/2045.html
[取证分析]  从几起热点事件看2018年的暗网趋势
https://mp.weixin.qq.com/s/z9y1_Y9l0fpWy9v_Qpi4Fg
[Web安全]  后渗透攻击
https://mp.weixin.qq.com/s/FHpVT4fjxyuOueUnBndmEQ
[取证分析]  如何排查常见挖矿木马
https://mp.weixin.qq.com/s/FhcoPGXG_udkRCj3AFOmxA
[编程技术]  VulCloud: 便捷的漏洞镜像管理部署Web应用
https://github.com/phantom0301/VulCloud
[Web安全]  价值17000美元的本地文件下载漏洞
https://nosec.org/home/detail/2084.html
[漏洞分析]  Google在线编程竞赛网Code-in因JSON数据逃逸出现的XSS漏洞
https://nosec.org/home/detail/2075.html
[数据挖掘]  confluo: Real-time Monitoring and Analysis of Data Streams
https://github.com/ucbrise/confluo
[取证分析]  密码朋克的社会实验之一:开灯看暗网
https://mp.weixin.qq.com/s/LAeAsiGEvw7JeCe4fomXyg
[Web安全]  应用层拒绝服务攻击
https://bloodzer0.github.io/ossa/infrastructure-security/network-security/cc-dos-ddos/cc/
[Web安全]  前后端分离开发风险浅析
http://pirogue.org/2018/12/17/SPA/
[取证分析]  从APTX系列报告解读看攻防能力建设路径
https://mp.weixin.qq.com/s/yDIAynaCx_mpYuQ16mWZ5A
[运维安全]  Kolide Fleet osquery体验
http://0cx.cc/managing-osquery-with-fleet.jspx
[运维安全]  开源kapacitor操作手册
http://tanjiti.com/2018/12/18/%E5%BC%80%E6%BA%90kapacitor%E6%93%8D%E4%BD%9C%E6%89%8B%E5%86%8C/
[Web安全]  无需sendmail:巧用LD_PRELOAD突破disable_functions
https://www.freebuf.com/articles/web/192052.html
[论文]  S&P 2019 议题解读(二)
https://mp.weixin.qq.com/s/SaIiTpdPMP_11sMSPzIQ_A
[Web安全]  通过webshell导出域控ntds.dit文件
https://xz.aliyun.com/t/3636
[取证分析]  Windows系统文件执行记录的获取与清除
https://3gstudent.github.io/%E6%B8%97%E9%80%8F%E6%8A%80%E5%B7%A7-Windows%E7%B3%BB%E7%BB%9F%E6%96%87%E4%BB%B6%E6%89%A7%E8%A1%8C%E8%AE%B0%E5%BD%95%E7%9A%84%E8%8E%B7%E5%8F%96%E4%B8%8E%E6%B8%85%E9%99%A4/
[取证分析]  伪造图像的检测方法
https://mp.weixin.qq.com/s/SKsPxTbzFGNhCChg7o3tTA
[数据挖掘]  Open-source framework to detect outliers in Elasticsearch events
https://github.com/NVISO-BE/ee-outliers
[其它]  RDP蜜罐:中间人技术的实践
https://nosec.org/home/detail/2093.html
[杂志]  SecWiki周刊(第250期)
https://www.sec-wiki.com/weekly/250
[数据挖掘]  第二届微软恶意软件预测挑战赛初探
https://xz.aliyun.com/t/3649
[数据挖掘]  区块链安全—合约存储机制安全分析
https://xz.aliyun.com/t/3606
[Web安全]  SkyDog: 2016 – Catch Me If You Can 靶机渗透测试
https://www.freebuf.com/articles/web/192217.html
[运维安全]  安全思维模型解读谷歌零信任安全架构(安全设计视角)
https://www.freebuf.com/articles/network/191017.html
[其它]  拒绝服务攻击DoS&DDoS
https://bloodzer0.github.io/ossa/infrastructure-security/network-security/cc-dos-ddos/dos-ddos/
[运维安全]  主机端口扫描
https://bloodzer0.github.io/ossa/infrastructure-security/host-security/host-security-scan/
[恶意分析]  In-Depth on APT28/Sofacy Zebrocy Golang Loader
https://www.vkremez.com/2018/12/lets-learn-dissecting-apt28sofacy.html
[取证分析]  针对驱动人生公司的定向攻击活动分析
https://mp.weixin.qq.com/s/ctBgivcvH216dwq00WRmOA
[恶意分析]  Linux.Omni IoT恶意软件分析
https://www.freebuf.com/articles/ics-articles/192066.html
[Web安全]  从Self-XSS到一个有趣的存储XSS
https://nosec.org/home/detail/2081.html
[Web安全]  如何利用Web应用的文件下载漏洞偷取NTLMv2哈希
https://nosec.org/home/detail/2072.html
[观点]  区块链的安全与是非
https://mp.weixin.qq.com/s/JG0fMLf4WcvSH5K0DHMBtw
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第251期)