SecWiki周刊(第304期)
2019/12/23-2019/12/29
安全资讯
维他命2019大盘点之安全政策法规篇
https://mp.weixin.qq.com/s/gxBbLDYC9An2-N-hbULSwQ
https://mp.weixin.qq.com/s/gxBbLDYC9An2-N-hbULSwQ
RSA和McAfee的2020年安全威胁预测
https://mp.weixin.qq.com/s/gUOO1kDB_wuZ32nKAZjM0g
https://mp.weixin.qq.com/s/gUOO1kDB_wuZ32nKAZjM0g
安全技术
记一次对某非法站点从SQL注入到整站打包与本地搭建全过程
https://o0o0.club/%E8%AE%B0%E4%B8%80%E6%AC%A1%E5%AF%B9%E6%9F%90%E9%9D%9E%E6%B3%95%E7%AB%99%E7%82%B9%E4%BB%8ESQL%E6%B3%A8%E5%85%A5%E5%88%B0%E6%95%B4%E7%AB%99%E6%89%93%E5%8C%85%E4%B8%8E%E6%9C%AC%E5%9C%B0%E6%90%AD%E5%BB%BA%E5%85%A8%E8%BF%87%E7%A8%8B/
https://o0o0.club/%E8%AE%B0%E4%B8%80%E6%AC%A1%E5%AF%B9%E6%9F%90%E9%9D%9E%E6%B3%95%E7%AB%99%E7%82%B9%E4%BB%8ESQL%E6%B3%A8%E5%85%A5%E5%88%B0%E6%95%B4%E7%AB%99%E6%89%93%E5%8C%85%E4%B8%8E%E6%9C%AC%E5%9C%B0%E6%90%AD%E5%BB%BA%E5%85%A8%E8%BF%87%E7%A8%8B/
日志分析系列(一):介绍篇
https://mp.weixin.qq.com/s/FzF0sx2geStPIc5VbskoGQ
https://mp.weixin.qq.com/s/FzF0sx2geStPIc5VbskoGQ
一个HTTP数据包的奇幻之旅
https://mp.weixin.qq.com/s/suzicCzb2g5b8NN71S5Ngw
https://mp.weixin.qq.com/s/suzicCzb2g5b8NN71S5Ngw
ATT&CK之防御逃逸(二)
https://mp.weixin.qq.com/s/9IeSIFofiT58X8iu1BqW0Q
https://mp.weixin.qq.com/s/9IeSIFofiT58X8iu1BqW0Q
P2P Botnet: Mozi分析报告
https://blog.netlab.360.com/p2p-botnet-mozi/
https://blog.netlab.360.com/p2p-botnet-mozi/
2019年度OWASP中国项目总结
https://mp.weixin.qq.com/s/hcdA7R36RsSV40TnIu2fJg
https://mp.weixin.qq.com/s/hcdA7R36RsSV40TnIu2fJg
SecWiki周刊(第303期)
https://www.sec-wiki.com/weekly/303
https://www.sec-wiki.com/weekly/303
西门子S7comm-plus通信过程及重放攻击分析
https://www.freebuf.com/articles/ics-articles/220239.html
https://www.freebuf.com/articles/ics-articles/220239.html
ATT&CK之防御逃逸(一)
https://mp.weixin.qq.com/s/Qwc234edENL8NBxSm4d56g
https://mp.weixin.qq.com/s/Qwc234edENL8NBxSm4d56g
CyberRange: The Open-Source AWS Cyber Range
https://github.com/secdevops-cuse/CyberRange
https://github.com/secdevops-cuse/CyberRange
基于DNS的数据泄露开源测试工具篇(一)
https://www.freebuf.com/sectool/222561.html
https://www.freebuf.com/sectool/222561.html
darknet-ocr: darknet text detect and darknet cnn ocr
https://github.com/chineseocr/darknet-ocr
https://github.com/chineseocr/darknet-ocr
2019 HITCON-Final Web WP
https://momomoxiaoxi.com/ctf/2019/12/23/HITCONfinal/
https://momomoxiaoxi.com/ctf/2019/12/23/HITCONfinal/
论⾼级攻防团队建设⽅法论之思想的重要性(上)
https://mp.weixin.qq.com/s/nFvGQqeFvSYaEFksbi8FLw
https://mp.weixin.qq.com/s/nFvGQqeFvSYaEFksbi8FLw
HIDS系统存储方案探索与实践
https://www.freebuf.com/articles/es/222976.html
https://www.freebuf.com/articles/es/222976.html
靶场发展态势⑧美国家网络空间靶场综合设施(NCRC)
https://mp.weixin.qq.com/s/ZyrgqwLUD13sZVnHQ18Pqw
https://mp.weixin.qq.com/s/ZyrgqwLUD13sZVnHQ18Pqw
关于安全运营中心的几个问题
https://mp.weixin.qq.com/s/w_kfBpkXU7WdfkwSl-KSnA
https://mp.weixin.qq.com/s/w_kfBpkXU7WdfkwSl-KSnA
Gafgyt家族物联网僵尸网络家族分析
https://www.freebuf.com/articles/others-articles/222677.html
https://www.freebuf.com/articles/others-articles/222677.html
内网穿透及端口转发大合集
https://xz.aliyun.com/t/6966
https://xz.aliyun.com/t/6966
挖洞神器之XRAY使用初体验
https://xz.aliyun.com/t/6981
https://xz.aliyun.com/t/6981
拟态防御型Pwn题做题思路总结
https://www.anquanke.com/post/id/195801
https://www.anquanke.com/post/id/195801
针对ICS的网络攻击20强——谈天说地Part2
https://mp.weixin.qq.com/s/TS1m4XoTI3f36ZY8vtLkwg
https://mp.weixin.qq.com/s/TS1m4XoTI3f36ZY8vtLkwg
blind-pwn系列总结+创新
https://xz.aliyun.com/t/6984
https://xz.aliyun.com/t/6984
针对ICS的网络攻击20强——谈天说地Part1
https://mp.weixin.qq.com/s/H9f-z3oLDZ-fMrEax3nMaA
https://mp.weixin.qq.com/s/H9f-z3oLDZ-fMrEax3nMaA
记针对某单位一次相对完整的渗透测试
https://xz.aliyun.com/t/6979
https://xz.aliyun.com/t/6979
最新绕过D盾的php Webshell
https://www.bacde.me/post/Webshellkill-Bypass-Php-Webshell/
https://www.bacde.me/post/Webshellkill-Bypass-Php-Webshell/
基于卷积神经网络的入侵检测进行检测Dos攻击
https://mp.weixin.qq.com/s/yRQwHVPuYHM67yAo15hPOw
https://mp.weixin.qq.com/s/yRQwHVPuYHM67yAo15hPOw
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第304期)
