SecWiki周刊(第280期)
2019/07/08-2019/07/14
安全资讯
福利—中国互联网安全领袖峰会门票
https://mp.weixin.qq.com/s/ZFsrfCjtwrBiRaak1mbhsg
https://mp.weixin.qq.com/s/ZFsrfCjtwrBiRaak1mbhsg
2019上半年网络安全观察(2019.01.01-2019.06.30)
http://blog.nsfocus.net/network-security-observation-2019/
http://blog.nsfocus.net/network-security-observation-2019/
安全技术
w13scan: 被动扫描器
https://github.com/boy-hack/w13scan?from=timeline
https://github.com/boy-hack/w13scan?from=timeline
Knife:一个将有用的小功能加入Burp Suite右键菜单的插件
https://mp.weixin.qq.com/s/Y03VVF3sD9N0_H6TQlxYuQ
https://mp.weixin.qq.com/s/Y03VVF3sD9N0_H6TQlxYuQ
安全分析中的威胁情报(二):ATT&CK
https://zhuanlan.zhihu.com/p/73172883
https://zhuanlan.zhihu.com/p/73172883
ML_Malware_detect: 阿里云安全恶意程序检测比赛
https://github.com/Rman0fCN/ML_Malware_detect
https://github.com/Rman0fCN/ML_Malware_detect
Hacking WildFly
https://mp.weixin.qq.com/s/KQ_17nJBPRcOTn-rPBRKTQ
https://mp.weixin.qq.com/s/KQ_17nJBPRcOTn-rPBRKTQ
硬件安全|智能门锁安全研究方法总结
https://nosec.org/home/detail/2760.html
https://nosec.org/home/detail/2760.html
A Top 10 Reading List if You’re Getting Started in Cyber Threat Intelligence
https://medium.com/katies-five-cents/a-top-10-reading-list-if-youre-getting-started-in-cyber-threat-intelligence-c11a18fc9798
https://medium.com/katies-five-cents/a-top-10-reading-list-if-youre-getting-started-in-cyber-threat-intelligence-c11a18fc9798
Zoom会议系统曝出高危漏洞,或影响400万电脑摄像头
https://nosec.org/home/detail/2761.html
https://nosec.org/home/detail/2761.html
Discuz!ML V3.X 代码注入分析
https://xz.aliyun.com/t/5638
https://xz.aliyun.com/t/5638
APT34核心组件Glimpse:远控复现与流量分析
https://www.freebuf.com/articles/database/207469.html
https://www.freebuf.com/articles/database/207469.html
智能音箱网络安全与隐私研究报告
https://mp.weixin.qq.com/s/suXWmn_PM6zmm3loYO1Zgw
https://mp.weixin.qq.com/s/suXWmn_PM6zmm3loYO1Zgw
CVE-2019-0863漏洞分析
https://xz.aliyun.com/t/5571
https://xz.aliyun.com/t/5571
网络安全学习方法论之体系的重要性
https://mp.weixin.qq.com/s/yXA4BRbMfJNPQ68_-Nme6g
https://mp.weixin.qq.com/s/yXA4BRbMfJNPQ68_-Nme6g
中国工业信息安全产业发展白皮书(2018-2019)综合篇
http://nisia.org.cn/filedownload/188104
http://nisia.org.cn/filedownload/188104
Graph Mining:审视世界的眼睛
https://mp.weixin.qq.com/s/1jutuzIq3xlkFejUFbLFFA
https://mp.weixin.qq.com/s/1jutuzIq3xlkFejUFbLFFA
OpenSource-HoneyPot: 对开源蜜罐的学习研究与理解
https://github.com/XiaoXiaoGuaiXiaShi/OpenSource-HoneyPot
https://github.com/XiaoXiaoGuaiXiaShi/OpenSource-HoneyPot
CTI Reading List
https://medium.com/@sroberts/cti-reading-list-a93ccdd7469c
https://medium.com/@sroberts/cti-reading-list-a93ccdd7469c
Red Team Hardware Toolkit
https://github.com/ismailtasdelen/redteam-hardware-toolkit
https://github.com/ismailtasdelen/redteam-hardware-toolkit
利用PHP的字符串解析特性绕过安全防护软件
https://nosec.org/home/detail/2759.html
https://nosec.org/home/detail/2759.html
防追踪溯源识别联网工控设备的方法
https://www.freebuf.com/articles/ics-articles/206856.html
https://www.freebuf.com/articles/ics-articles/206856.html
参与电力行业安全课程有感
https://my.oschina.net/9199771/blog/3070429
https://my.oschina.net/9199771/blog/3070429
Phishing Tool for 18 social media
https://github.com/thelinuxchoice/shellphish
https://github.com/thelinuxchoice/shellphish
Assess your data potential with ATT&CK Datamap
https://medium.com/@olafhartong/assess-your-data-potential-with-att-ck-datamap-f44884cfed11
https://medium.com/@olafhartong/assess-your-data-potential-with-att-ck-datamap-f44884cfed11
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第280期)
