SecWiki周刊(第406期)
2021/12/06-2021/12/12
安全资讯
安全技术
log4j2 JNDI注入漏洞速通
https://lorexxar.cn/2021/12/10/log4j2-jndi/
https://lorexxar.cn/2021/12/10/log4j2-jndi/
利用zotero与dblp批量收集论文
https://moxiaoxi.info/papers/2020/10/18/Papers/
https://moxiaoxi.info/papers/2020/10/18/Papers/
log4j 漏洞一些特殊的利用方式
https://mp.weixin.qq.com/s/vAE89A5wKrc-YnvTr0qaNg
https://mp.weixin.qq.com/s/vAE89A5wKrc-YnvTr0qaNg
利用DoH技术加密传输的DNS隧道流量检测分析
https://mp.weixin.qq.com/s/TY17e0hpW0b9n4eQtcvaeg
https://mp.weixin.qq.com/s/TY17e0hpW0b9n4eQtcvaeg
如何使用Yakit进行流量劫持
https://mp.weixin.qq.com/s/9vVRTehwAhkSLM65JaKiQA
https://mp.weixin.qq.com/s/9vVRTehwAhkSLM65JaKiQA
Security_Scan: 组件安全基线扫描工具
https://www.freebuf.com/sectool/306967.html
https://www.freebuf.com/sectool/306967.html
Unraid篇:docker私有部署服务推荐
https://le4f.net/unraid-docker-apps/
https://le4f.net/unraid-docker-apps/
基于POI和查询似然的微博用户地理位置推演
https://mp.weixin.qq.com/s/OtlCMVceCi5syVOaG5Fpzg
https://mp.weixin.qq.com/s/OtlCMVceCi5syVOaG5Fpzg
僵尸网络是如何应对执法行动的?
https://mp.weixin.qq.com/s/okOIk2Ery3FdvtHIGtjr_Q
https://mp.weixin.qq.com/s/okOIk2Ery3FdvtHIGtjr_Q
加密后门的木马分析
https://tttang.com/archive/1342/
https://tttang.com/archive/1342/
Digvuln Tricks之JS泄露全到后台越权
https://www.sec-in.com/article/1134
https://www.sec-in.com/article/1134
N1CTF2021 Jerry WP
https://www.anquanke.com/post/id/260633
https://www.anquanke.com/post/id/260633
JSPKiller: 基于污点分析的JSP Webshell检测工具
https://github.com/EmYiQing/JSPKiller
https://github.com/EmYiQing/JSPKiller
[HTB] Armageddon Writeup
https://mp.weixin.qq.com/s/vizmtNhYW4r-kETt4qJuww
https://mp.weixin.qq.com/s/vizmtNhYW4r-kETt4qJuww
基于模糊加权随机森林算法的恶意软件检测
https://mp.weixin.qq.com/s/ytvN73RMv4b9NtSs0vqqPg
https://mp.weixin.qq.com/s/ytvN73RMv4b9NtSs0vqqPg
解析服务提供商对非授权域名解析情况的评估
https://mp.weixin.qq.com/s/v5kcg9XZGb8DwtpNgHXRCQ
https://mp.weixin.qq.com/s/v5kcg9XZGb8DwtpNgHXRCQ
SecWiki周刊(第405期)
https://www.sec-wiki.com/weekly/405
https://www.sec-wiki.com/weekly/405
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第406期)
