SecWiki周刊(第428期)
2022/05/09-2022/05/15
安全技术
新型eBPF后门boopkit的原理分析与演示
https://www.cnxct.com/ebpf-rootkit-how-boopkit-works/
https://www.cnxct.com/ebpf-rootkit-how-boopkit-works/
CVE-2021-34535 RDP客户端漏洞分析
http://noahblog.360.cn/cve-2021-34535-rdpke-hu-duan-lou-dong-fen-xi/
http://noahblog.360.cn/cve-2021-34535-rdpke-hu-duan-lou-dong-fen-xi/
CVE-2021-31209 分析学习
https://www.sec-in.com/article/1710
https://www.sec-in.com/article/1710
【D3FEND】网络安全对策知识图谱框架解读
https://mp.weixin.qq.com/s/ziHX1gQYo89sWz248yLgAQ
https://mp.weixin.qq.com/s/ziHX1gQYo89sWz248yLgAQ
从ATT&CK V11版发布看ATT&CK的更新历程
https://mp.weixin.qq.com/s/vm13xmTzLYrqLrMRlndAZA
https://mp.weixin.qq.com/s/vm13xmTzLYrqLrMRlndAZA
F5 BIG-IP 未授权 RCE(CVE-2022-1388)分析
https://paper.seebug.org/1893/
https://paper.seebug.org/1893/
Commit Level Vulnerability Dataset
https://blog.quarkslab.com/commit-level-vulnerability-dataset.html
https://blog.quarkslab.com/commit-level-vulnerability-dataset.html
CVE-2022-21907 http协议远程代码执行漏洞分析总结
http://noahblog.360.cn/cve-2022-21907-httpxie-yi-yuan-cheng-dai-ma-zhi-xing-lou-dong-fen-xi-zong-jie/
http://noahblog.360.cn/cve-2022-21907-httpxie-yi-yuan-cheng-dai-ma-zhi-xing-lou-dong-fen-xi-zong-jie/
顶会论文的经验分享与心路历程:立志勇攀高峰 坚持追求卓越
https://mp.weixin.qq.com/s/J0atxc05c3xFd_bXxejQpQ
https://mp.weixin.qq.com/s/J0atxc05c3xFd_bXxejQpQ
SecWiki周刊(第427期)
https://www.sec-wiki.com/weekly/427
https://www.sec-wiki.com/weekly/427
MYSQL8.0特性—无select注入
https://www.sec-in.com/article/1715
https://www.sec-in.com/article/1715
从500到账户接管
https://www.sec-in.com/article/1692
https://www.sec-in.com/article/1692
企业安全建设:资产管理面面观
https://mp.weixin.qq.com/s/23fekORQNpmj82Oh1ttixg
https://mp.weixin.qq.com/s/23fekORQNpmj82Oh1ttixg
元学习——让机器学习学会学习
https://mp.weixin.qq.com/s/fMZWI-pvjVnKcvC7RO6lHA
https://mp.weixin.qq.com/s/fMZWI-pvjVnKcvC7RO6lHA
卫星互联网发展与信息安全趋势
https://mp.weixin.qq.com/s/qsrZ8RJl_wE_aN0t4-mhog
https://mp.weixin.qq.com/s/qsrZ8RJl_wE_aN0t4-mhog
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第428期)
