SecWiki周刊(第373期)
2021/04/19-2021/04/25
安全技术
[HTB] Grandpa Writeup
https://mp.weixin.qq.com/s/oin5ZGjw_-AY5kwYuUCz1Q
https://mp.weixin.qq.com/s/oin5ZGjw_-AY5kwYuUCz1Q
[HTB] Passage Writeup
https://mp.weixin.qq.com/s/UxwpzwuvvDd3T852yrGNFw
https://mp.weixin.qq.com/s/UxwpzwuvvDd3T852yrGNFw
[HTB] Legacy Writeup
https://mp.weixin.qq.com/s/C9f0T6NaApLpZg6vcuw7xg
https://mp.weixin.qq.com/s/C9f0T6NaApLpZg6vcuw7xg
[HTB] Shocker Writeup
https://mp.weixin.qq.com/s/oABTaWPOSyNzn112zOnUQA
https://mp.weixin.qq.com/s/oABTaWPOSyNzn112zOnUQA
[HTB] Worker Writeup
https://mp.weixin.qq.com/s/J5jKKfbwBbOTjpnwcFotrg
https://mp.weixin.qq.com/s/J5jKKfbwBbOTjpnwcFotrg
[HTB] Academy Writeup
https://mp.weixin.qq.com/s/0b-C5MHDMP-oKj8W5baeWg
https://mp.weixin.qq.com/s/0b-C5MHDMP-oKj8W5baeWg
[HTB] Granny Writeup
https://mp.weixin.qq.com/s/0iMqH0-P7vyaKB-xvfDLhA
https://mp.weixin.qq.com/s/0iMqH0-P7vyaKB-xvfDLhA
[HTB] Blue Writeup
https://mp.weixin.qq.com/s/_aofHejy1udowtstD2tgag
https://mp.weixin.qq.com/s/_aofHejy1udowtstD2tgag
基于数据分析特斯拉事故原因
https://mp.weixin.qq.com/s/_72ibt7GzNRDhV_SEKU_9g
https://mp.weixin.qq.com/s/_72ibt7GzNRDhV_SEKU_9g
Yii2反序列化RCE 新POP链
https://xz.aliyun.com/t/9420
https://xz.aliyun.com/t/9420
[译] APT分析报告:09.漏洞利用图谱–通过查找作者的指纹来寻找漏洞
https://mp.weixin.qq.com/s/wmI13qLfRPX3v6G7DinUMA
https://mp.weixin.qq.com/s/wmI13qLfRPX3v6G7DinUMA
从solar winds黑客入侵事件中看供应链安全
https://mp.weixin.qq.com/s/r5G1REnhZHplRPyfSYg_Ug
https://mp.weixin.qq.com/s/r5G1REnhZHplRPyfSYg_Ug
智能家居安全风险:设备共享场景下的漏洞及其利用
https://mp.weixin.qq.com/s/n74QyEN4KSUxW6uRgJ-VsQ
https://mp.weixin.qq.com/s/n74QyEN4KSUxW6uRgJ-VsQ
浅谈安全产品的hvv安全之道
https://mp.weixin.qq.com/s/DvpTpy5C5QTxrqm3zPV2qw
https://mp.weixin.qq.com/s/DvpTpy5C5QTxrqm3zPV2qw
如何制作一个微型内核
https://www.sec-in.com/article/1028
https://www.sec-in.com/article/1028
关于反诈工作的几个问题及思考
https://mp.weixin.qq.com/s/ps7GG2rKc5-J8J2Iybhi8Q
https://mp.weixin.qq.com/s/ps7GG2rKc5-J8J2Iybhi8Q
MyBatis和MyBatis可能导致的sql注入
https://www.sec-in.com/article/1022
https://www.sec-in.com/article/1022
[HTB] Netmon Writeup
https://mp.weixin.qq.com/s/bRR-8iFJTdqGspzAm9Gdbw
https://mp.weixin.qq.com/s/bRR-8iFJTdqGspzAm9Gdbw
Java反序列化 — URLDNS利用链分析
https://xz.aliyun.com/t/9417
https://xz.aliyun.com/t/9417
数据分类分级的技术实践指南
https://mp.weixin.qq.com/s/WknW2_lR4ryBLIgCma30Vw
https://mp.weixin.qq.com/s/WknW2_lR4ryBLIgCma30Vw
Analysis of a use-after-free Vulnerability in Adobe Acrobat Reader DC
https://blog.exodusintel.com/2021/04/20/analysis-of-a-use-after-free-vulnerability-in-adobe-acrobat-reader-dc/
https://blog.exodusintel.com/2021/04/20/analysis-of-a-use-after-free-vulnerability-in-adobe-acrobat-reader-dc/
恶意软件在沙盒中应该执行多长时间?
https://mp.weixin.qq.com/s/z1MS0Df89NhSeAU9IxF5nw
https://mp.weixin.qq.com/s/z1MS0Df89NhSeAU9IxF5nw
[HTB] Lame Writeup
https://mp.weixin.qq.com/s/_ImRBi8AE1TcAaiuk6Wd1Q
https://mp.weixin.qq.com/s/_ImRBi8AE1TcAaiuk6Wd1Q
[HTB] Jerry Writeup
https://mp.weixin.qq.com/s/30Xpwv3H50KKcxl3jY8aYQ
https://mp.weixin.qq.com/s/30Xpwv3H50KKcxl3jY8aYQ
[HTB] Heist Writeup
https://mp.weixin.qq.com/s/x9omAbVjQdtZ0jjQfumeTg
https://mp.weixin.qq.com/s/x9omAbVjQdtZ0jjQfumeTg
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第373期)
