SecWiki周刊(第27期)
2014/09/01-2014/09/07
安全资讯
[Web安全]  美国安全局被曝建谷歌式搜索
http://www.wondersoft.cn/newsmore.aspx?cId=5&Id=27&aId=2103
[Web安全]  一周海外安全事件回顾(8.24-8.30)
http://www.freebuf.com/news/special/42231.html
安全技术
[Web安全]  安全+技术内刊 026期
http://www.nsfocus.com/images/6_about/journal/6_10_026_j.pdf
[设备安全]  RadioEye:基于Libnfc开源组件的RFID安全审计工具
http://radioeye.sinaapp.com/
[运维安全]  【门神】WAF应用层实现的架构漫谈
http://security.tencent.com/index.php/blog/msg/63
[Web安全]  内网中使用metasploit进行渗透测试
http://www.freebuf.com/articles/web/42208.html
[其它]  如何使用印象笔记管理大量笔记?
http://www.read.org.cn/html/2382-ru-shi-yong-yin-xiang-bi-ji-guan-li-da-liang-bi-ji.html
[恶意分析]  利用漏洞攻击来盗号游戏、IM账号猖獗
http://blog.vulnhunt.com/index.php/2014/09/05/vsr-2014-24/
[恶意分析]  Analysis of Havex
https://www.malware.lu/articles/2014/09/03/analysis-of-havex.html
[编程技术]  2014PHP技术峰会文档
http://www.phpconchina.com/
[恶意分析]  Darwin’s Favorite APT Group
http://www.fireeye.com/blog/technical/botnet-activities-research/2014/09/darwins-favorite-apt-group-2.html
[编程技术]  来自HeroKu的HTTP API 设计指南(中文版)
http://get.jobdeer.com/343.get
[其它]  《互联网时代》
http://tv.cntv.cn/vodplay/1cab695e21634fc28f5741ec424ae212/860010-1114010100#0-tsina-1-29209-397232819ff9a47a7b7e80a40613cfe1
[Web安全]  常见Flash XSS攻击方式
http://drops.wooyun.org/tips/2924
[漏洞分析]  Contemporary-Automatic-Program-Analysis
https://github.com/HockeyInJune/Contemporary-Automatic-Program-Analysis
[移动安全]  Android App安全加固行业分析报告
http://www.freebuf.com/articles/terminal/42525.html
[数据挖掘]  Inferring User Demographics and Social Strategies in Mobile Social Networks
http://keg.cs.tsinghua.edu.cn/jietang/publications/KDD14-Dong-WhoAmI.pdf
[Web安全]  Spring框架问题分析
http://drops.wooyun.org/tips/2892
[Web安全]  渗透中寻找突破口的那些事
http://drops.wooyun.org/tips/2915
[编程技术]  一个产品经理眼中的云计算:前生今世和未来
http://weibo.com/p/1001603751900137825351
[编程技术]  Android 快速开发框架 UltimateAndroid
http://blog.marshalchen.com/UltimateAndroid/#chinese_introduction
[漏洞分析]  Introducing Filescanner.exe
http://blog.didierstevens.com/2014/09/03/introducing-filescanner-exe/
[恶意分析]  RE Malware Analysis Skills
http://tylerhalfpop.com/re/2014/09/06/re-malware-analysis-skills/
[编程技术]  React:A JavaScript library for building user interfaces
http://facebook.github.io/react/index.html
[Web安全]  Black Hat video
https://www.youtube.com/user/BlackHatOfficialYT/
[编程技术]  PHPCON CHINA 2014 Video
http://www.youku.com/playlist_show/id_22801263_ascending_0_mode_pic.html
[Web安全]  分享信息安全工作小记
http://drops.wooyun.org/tips/2945
[漏洞分析]  漏洞利用与卡巴斯基的对抗之路
http://drops.wooyun.org/tips/2903
安全专题
边信道攻击研究的相关资料
https://www.sec-wiki.com/topic/47
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第27期)