SecWiki周刊(第48期)
2015/01/26-2015/02/01
安全资讯
GitHub给安全行业的四大启示
http://www.aqniu.com/neotech/secured-development/6445.html
http://www.aqniu.com/neotech/secured-development/6445.html
GHOST glibc Linux Remote Code Execution Vulnerability
http://threatpost.com/ghost-glibc-remote-code-execution-vulnerability-affects-all-linux-systems/110679
http://threatpost.com/ghost-glibc-remote-code-execution-vulnerability-affects-all-linux-systems/110679
nullcon Goa 2015 conference speakers
http://nullcon.net/website/goa-15/about-speakers.php#night-talks
http://nullcon.net/website/goa-15/about-speakers.php#night-talks
2015年2月3日[sec-un]北京沙龙
http://www.sec-un.org/february-3-2015-beijing-salon-notice.html
http://www.sec-un.org/february-3-2015-beijing-salon-notice.html
安全技术
中国姓名排行TOP500(来自人口数据库)
http://zone.wooyun.org/content/18372
http://zone.wooyun.org/content/18372
Full Disclosure: OpenSSH =6.6 SFTP misconfiguration exploit for 64bit Linux
http://seclists.org/fulldisclosure/2014/Oct/35?spm=5176.7189909.0.0.0lYRbk
http://seclists.org/fulldisclosure/2014/Oct/35?spm=5176.7189909.0.0.0lYRbk
Top 5 Websites To Learn How To Hack Like A Pro
http://www.makeuseof.com/tag/top-5-websites-to-learn-how-to-hack-like-a-pro/
http://www.makeuseof.com/tag/top-5-websites-to-learn-how-to-hack-like-a-pro/
菜鸟之2015MSC解题思路(前三题)
http://bbs.pediy.com/showthread.php?t=197330
http://bbs.pediy.com/showthread.php?t=197330
Shmoocon 2015 Videos
https://archive.org/details/shmoocon-2015-videos-playlist
https://archive.org/details/shmoocon-2015-videos-playlist
Triggering Deep Vulnerabilities Using Symbolic Execution [30c3]
https://www.youtube.com/watch?v=Febh70kldP0
https://www.youtube.com/watch?v=Febh70kldP0
VulnHub Resources
https://www.vulnhub.com/resources/
https://www.vulnhub.com/resources/
Getting back determinism in the Low Fragmentation Heap
http://blog.lse.epita.fr/cat/security/index.html
http://blog.lse.epita.fr/cat/security/index.html
exploiting tutorials from fuzzysecurity
http://www.fuzzysecurity.com/tutorials.html
http://www.fuzzysecurity.com/tutorials.html
Linux下如何过滤、分割以及合并 pcap 文件
http://linux.cn/article-4762-weibo.html
http://linux.cn/article-4762-weibo.html
Static analysis of an unknown compression format
http://blog.lse.epita.fr/articles/8-static-analysis-of-an-unknown-compression-format.html
http://blog.lse.epita.fr/articles/8-static-analysis-of-an-unknown-compression-format.html
A Different Exploit Angle on Adobe's Recent Zero-Day
https://www.fireeye.com/blog/threat-research/2015/01/a_different_exploit.html
https://www.fireeye.com/blog/threat-research/2015/01/a_different_exploit.html
黑客防线2014年第12期杂志
http://www.hacker.com.cn/show-7-2742-1.html
http://www.hacker.com.cn/show-7-2742-1.html
Synergy Binaries Download Mirror
http://synergykm.com/synergy-binaries-mirror/
http://synergykm.com/synergy-binaries-mirror/
Android APP安全测试之使用调试器
http://www.secpulse.com/archives/4370.html
http://www.secpulse.com/archives/4370.html
GNU Radio – CC1111 packets encoder/decoder blocks
https://funoverip.net/2014/07/gnu-radio-cc1111-packets-encoderdecoder-blocks/
https://funoverip.net/2014/07/gnu-radio-cc1111-packets-encoderdecoder-blocks/
“暗云”BootKit木马详细技术分析
http://www.freebuf.com/vuls/57868.html
http://www.freebuf.com/vuls/57868.html
Reverse Engineer a Verisure Wireless Alarm part 1 – Radio Communications
https://funoverip.net/2014/11/reverse-engineer-a-verisure-wireless-alarm-part-1-radio-communications/
https://funoverip.net/2014/11/reverse-engineer-a-verisure-wireless-alarm-part-1-radio-communications/
giefroot:rooting tool (CVE-2014-4322)
http://forum.xda-developers.com/crossdevice-dev/sony/giefroot-rooting-tool-cve-2014-4322-t3011598
http://forum.xda-developers.com/crossdevice-dev/sony/giefroot-rooting-tool-cve-2014-4322-t3011598
BadSamba – Exploiting Windows Startup Scripts Using a Malicious SMB Server
http://www.tuicool.com/articles/yMjM7jy
http://www.tuicool.com/articles/yMjM7jy
Recover Lost Data from iPhone 5s/5C/5/4S/4
https://archive.org/details/iPhone-data-recovery-tenorshare
https://archive.org/details/iPhone-data-recovery-tenorshare
webrtc-ips:STUN IP Address requests for WebRTC
https://github.com/diafygi/webrtc-ips
https://github.com/diafygi/webrtc-ips
metrilyx-2.0:Visualization and analytics interface for OpenTSDB
https://github.com/Ticketmaster/Metrilyx-2.0
https://github.com/Ticketmaster/Metrilyx-2.0
Shellcodeexec - essentially a payload stager.
https://github.com/inquisb/shellcodeexec
https://github.com/inquisb/shellcodeexec
paperwork:OpenSource note-taking & archiving
https://github.com/twostairs/paperwork
https://github.com/twostairs/paperwork
Remote kernel debugging using Windbg.
http://ihazomgsecurityskillz.blogspot.tw/2012/09/remote-kernel-debugging-using-windbg.html
http://ihazomgsecurityskillz.blogspot.tw/2012/09/remote-kernel-debugging-using-windbg.html
A heap analysis tool for Immunity Debugger.
https://github.com/net-ninja/heaper
https://github.com/net-ninja/heaper
Implementing generic double-word compare and swap for x86/x86-64
http://blog.lse.epita.fr/cat/tutorials/index.html
http://blog.lse.epita.fr/cat/tutorials/index.html
Sh@d0w v1.0 - Cloak your presence in the network
http://www.fuzzysecurity.com/scripts/1.html
http://www.fuzzysecurity.com/scripts/1.html
Writing Small Shellcode
https://www.nccgroup.com/media/18604/writing_small_shellcode.pdf
https://www.nccgroup.com/media/18604/writing_small_shellcode.pdf
PHP disable_function Bypass的一种姿势
http://bobao.360.cn/learning/detail/225.html
http://bobao.360.cn/learning/detail/225.html
Discovering and remediating an active but disused botnet
http://colin.keigher.ca/2015/01/discovering-and-remediating-active-but.html
http://colin.keigher.ca/2015/01/discovering-and-remediating-active-but.html
exploiting bootcamp
https://archive.org/search.php?query=creator:%22Corey+K.%22
https://archive.org/search.php?query=creator:%22Corey+K.%22
Bin v1.0 - Write shellcode to a binary file
http://www.fuzzysecurity.com/scripts/4.html
http://www.fuzzysecurity.com/scripts/4.html
Android APP安全测试入门
http://www.secpulse.com/archives/4325.html
http://www.secpulse.com/archives/4325.html
ipcalf:Gives back your public IP address
https://github.com/natevw/ipcalf/
https://github.com/natevw/ipcalf/
Docker安全部署的17条建议
http://dockerone.com/article/150
http://dockerone.com/article/150
安全漏洞本质扯谈之漏洞“串串烧”之整型溢出
http://www.weibo.com/p/1001643803191148956529
http://www.weibo.com/p/1001643803191148956529
infiltrate12-the stack is back
https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf
https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf
Understanding the ELF
https://medium.com/@MrJamesFisher/understanding-the-elf-4bd60daac571
https://medium.com/@MrJamesFisher/understanding-the-elf-4bd60daac571
rekall:Rekall Memory Forensic Framework
https://github.com/google/rekall
https://github.com/google/rekall
IKAT - Binaries That Bypass Group Policy
http://ha.cked.net/Windows/index.html
http://ha.cked.net/Windows/index.html
Reverse Engineer a Verisure Wireless Alarm part 2 – Firmwares and crypto keys
https://funoverip.net/2014/12/reverse-engineer-a-verisure-wireless-alarm-part-2-firmwares-and-crypto-keys/
https://funoverip.net/2014/12/reverse-engineer-a-verisure-wireless-alarm-part-2-firmwares-and-crypto-keys/
CVE-2015-0016: Escaping the Internet Explorer Sandbox
http://blog.trendmicro.com/trendlabs-security-intelligence/cve-2015-0016-escaping-the-internet-explorer-sandbox/
http://blog.trendmicro.com/trendlabs-security-intelligence/cve-2015-0016-escaping-the-internet-explorer-sandbox/
Cartero:Mailing Phishing Framework
http://section9labs.github.io/Cartero/
http://section9labs.github.io/Cartero/
Autopsy:数字取证平台
http://www.sleuthkit.org/autopsy/
http://www.sleuthkit.org/autopsy/
Telematics电子汽车安全风险分析
http://bobao.360.cn/learning/detail/153.html
http://bobao.360.cn/learning/detail/153.html
malwaRE:malware repository framework
https://github.com/c633/malwaRE
https://github.com/c633/malwaRE
Nscan: Fast internet-wide scanner
https://github.com/OffensivePython/Nscan
https://github.com/OffensivePython/Nscan
linux symbolic link attack tutorial
http://drops.wooyun.org/papers/4762
http://drops.wooyun.org/papers/4762
The Web Platform: Browser technologies
https://platform.html5.org/
https://platform.html5.org/
Windows10安全增强:Build 9926引入的两个字体安全特性
http://blogs.360.cn/blog/windows10_font_security_mitigations/
http://blogs.360.cn/blog/windows10_font_security_mitigations/
安全专题
Symbolic Execution Source Tools
https://www.sec-wiki.com/topic/57
https://www.sec-wiki.com/topic/57
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第48期)
