SecWiki周刊(第459期)
2022/12/12-2022/12/18
安全资讯
电力行业网络安全等级保护管理办法
https://mp.weixin.qq.com/s/9IgOGdBKS0a2d778cVRZGA
https://mp.weixin.qq.com/s/9IgOGdBKS0a2d778cVRZGA
安全技术
软件开发安全应用实践中的十个误区
https://mp.weixin.qq.com/s/Wz26gkLz-KnVmND3AXhvGA
https://mp.weixin.qq.com/s/Wz26gkLz-KnVmND3AXhvGA
全量安全资产管理-进阶实践
https://mp.weixin.qq.com/s/b8W-FtTy4B8cGtPfp_2uRw
https://mp.weixin.qq.com/s/b8W-FtTy4B8cGtPfp_2uRw
SPEL注入流程分析及CTF中如何使用
https://sec-in.com/article/1988
https://sec-in.com/article/1988
uuWAF: 免费、高性能、高扩展开源WAF
https://github.com/Safe3/uuWAF
https://github.com/Safe3/uuWAF
通过PDF文件信息进行攻击溯源
https://mp.weixin.qq.com/s/yjCOCptJn_QcCpMs9CgBbQ
https://mp.weixin.qq.com/s/yjCOCptJn_QcCpMs9CgBbQ
DarkAngel: 一款全自动白帽漏洞扫描器
https://github.com/Bywalks/DarkAngel
https://github.com/Bywalks/DarkAngel
Shell中的幽灵王者—JAVAWEB 内存马
https://mp.weixin.qq.com/s/NKq4BZ8fLK7bsGSK5UhoGQ
https://mp.weixin.qq.com/s/NKq4BZ8fLK7bsGSK5UhoGQ
EMS:试验数据驱动的高效变异模糊测试系统
https://mp.weixin.qq.com/s/vb1Gq8B55y-sTom06hqUfA
https://mp.weixin.qq.com/s/vb1Gq8B55y-sTom06hqUfA
针对释放后重用漏洞的自动化分析和修复
https://www.bilibili.com/video/BV1UK411671w/
https://www.bilibili.com/video/BV1UK411671w/
Project Achilles:使用 RNN 对 Java 源代码进行静态漏洞检测的原型工具
https://mp.weixin.qq.com/s/U0sZwPc5otIg1-amv12BEg
https://mp.weixin.qq.com/s/U0sZwPc5otIg1-amv12BEg
Pentesting MSSQL - Microsoft SQL Server
https://xz.aliyun.com/t/11937
https://xz.aliyun.com/t/11937
SecWiki周刊(第458期)
https://www.sec-wiki.com/weekly/458
https://www.sec-wiki.com/weekly/458
[HTB] Seal Writeup
https://mp.weixin.qq.com/s/Z7jQOyA95tXL45Yk3Xeojg
https://mp.weixin.qq.com/s/Z7jQOyA95tXL45Yk3Xeojg
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第459期)
