SecWiki周刊(第341期)
2020/09/07-2020/09/13
安全技术
ARL: 资产侦察灯塔系统
https://github.com/TophantTechnology/ARL
https://github.com/TophantTechnology/ARL
物联网安全之MQTT渗透实战
https://bacde.me/post/mqtt-security-part-two/
https://bacde.me/post/mqtt-security-part-two/
JavaParse(AST)获取Java Web API list
https://uxss.net/2020/09/06/JavaParse(AST)%E8%8E%B7%E5%8F%96Java%20Web%20API%20list/
https://uxss.net/2020/09/06/JavaParse(AST)%E8%8E%B7%E5%8F%96Java%20Web%20API%20list/
DataCon 2020 网络黑产分析方向亚军writeup
https://mp.weixin.qq.com/s/Ots4JVLacoaySqCNwUvzQg
https://mp.weixin.qq.com/s/Ots4JVLacoaySqCNwUvzQg
IoT-vulhub: IoT 固件漏洞复现环境
https://github.com/firmianay/IoT-vulhub
https://github.com/firmianay/IoT-vulhub
一部手机失窃而揭露的窃取个人信息实现资金盗取的黑色产业链
https://mp.weixin.qq.com/s/3UeZzw2LmPsM3cU7Rhmb8w
https://mp.weixin.qq.com/s/3UeZzw2LmPsM3cU7Rhmb8w
固件空间安全测绘工具(FirmwareTotal)的进化之路
https://www.anquanke.com/post/id/216834
https://www.anquanke.com/post/id/216834
有关Angr的正确学习路线
https://zhuanlan.zhihu.com/p/102582636
https://zhuanlan.zhihu.com/p/102582636
2020上半年出行行业黑灰产研究报告
https://mp.weixin.qq.com/s/sQJRZZonTF7bjCs1jd_H9A
https://mp.weixin.qq.com/s/sQJRZZonTF7bjCs1jd_H9A
利用OpenVpn配置文件反制的武器化探索
https://mp.weixin.qq.com/s/hOHzmr6qCS2EwranvVEY1w
https://mp.weixin.qq.com/s/hOHzmr6qCS2EwranvVEY1w
探索MITRE Shield如何用于主动防御
https://mp.weixin.qq.com/s/K95QEs2UaUyvoUsVvUGDXg
https://mp.weixin.qq.com/s/K95QEs2UaUyvoUsVvUGDXg
攻防对抗的思考(2)21分钟学会网络攻防
https://zhuanlan.zhihu.com/p/228478328
https://zhuanlan.zhihu.com/p/228478328
美军红队评估体系建设现状及启示
https://mp.weixin.qq.com/s/JZef789soLqK2SdskBV5WQ
https://mp.weixin.qq.com/s/JZef789soLqK2SdskBV5WQ
攻防对抗的思考(1)网络诈骗的拱心石
https://zhuanlan.zhihu.com/p/223173210
https://zhuanlan.zhihu.com/p/223173210
bugbounty之我是如何侵入电信网络的
https://xz.aliyun.com/t/8255
https://xz.aliyun.com/t/8255
如何评价安全工作的好坏
https://zhuanlan.zhihu.com/p/226493047
https://zhuanlan.zhihu.com/p/226493047
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第341期)
