SecWiki周刊(第51期)
2015/02/16-2015/02/22
安全资讯
China's Incomplete Military Transformation
http://www.rand.org/content/dam/rand/pubs/research_reports/RR800/RR893/RAND_RR893.pdf
http://www.rand.org/content/dam/rand/pubs/research_reports/RR800/RR893/RAND_RR893.pdf
Most vulnerable operating systems and applications in 2014
http://www.gfi.com/blog/most-vulnerable-operating-systems-and-applications-in-2014/
http://www.gfi.com/blog/most-vulnerable-operating-systems-and-applications-in-2014/
Search Engine for Deep Web that Works From Normal Web Browser
http://thehackernews.com/2015/02/Onion-city-darknet-seach-engine.html
http://thehackernews.com/2015/02/Onion-city-darknet-seach-engine.html
Lenovo Is Breaking HTTPS Security on its Recent Laptops
https://www.eff.org/deeplinks/2015/02/further-evidence-lenovo-breaking-https-security-its-laptops
https://www.eff.org/deeplinks/2015/02/further-evidence-lenovo-breaking-https-security-its-laptops
安全技术
《安全参考》HACKCTO-201502-26
http://pan.baidu.com/s/1pJ0Yp79
http://pan.baidu.com/s/1pJ0Yp79
RSA conference slide download
http://pan.baidu.com/s/1hqEdTrA
http://pan.baidu.com/s/1hqEdTrA
Chrome 开发者工具中文手册
https://github.com/CN-Chrome-DevTools/CN-Chrome-DevTools
https://github.com/CN-Chrome-DevTools/CN-Chrome-DevTools
rdpy:Remote Desktop Protocol in Twisted Python
https://github.com/citronneur/rdpy
https://github.com/citronneur/rdpy
Malware Is Still Spying On You After Your Mobile Is Off
http://now.avg.com/malware-is-still-spying-on-you-after-your-mobile-is-off/
http://now.avg.com/malware-is-still-spying-on-you-after-your-mobile-is-off/
UNDERSTANDING THE OWASP TOP 10
https://www.dropbox.com/s/f26q6ay7n9vru2d/Owasp%20Top%2010%20-%20PHPUK%202015%20Gary%20Hockin.pdf?dl=0
https://www.dropbox.com/s/f26q6ay7n9vru2d/Owasp%20Top%2010%20-%20PHPUK%202015%20Gary%20Hockin.pdf?dl=0
Python + Elasticsearch. First steps.
http://blog.tryolabs.com/2015/02/17/python-elasticsearch-first-steps/
http://blog.tryolabs.com/2015/02/17/python-elasticsearch-first-steps/
Silic Security Handbook
http://attach.blackbap.org/pdf/Silic_Security_Handbook.pdf
http://attach.blackbap.org/pdf/Silic_Security_Handbook.pdf
Gh0st RAT Part 2: Packet Structure and Defense Measures
http://resources.infosecinstitute.com/gh0st-rat-part-2-packet-structure-defense-measures/
http://resources.infosecinstitute.com/gh0st-rat-part-2-packet-structure-defense-measures/
Dynamic Translation and Dynamic Optimization
http://dragonstar.ict.ac.cn/course_07/course07_wc_hsu.htm#1
http://dragonstar.ict.ac.cn/course_07/course07_wc_hsu.htm#1
aioshell:A php webshell run under linux based webservers
https://github.com/cloudsec/aioshell
https://github.com/cloudsec/aioshell
国際情報化協力Plesk建站平台安全实例
http://silic.org/post/Plesk_Panel_Security_in_Silic_Focus
http://silic.org/post/Plesk_Panel_Security_in_Silic_Focus
Asgard:PHP Malware Scanner (Machine Learning)
http://www.asgardapi.com/
http://www.asgardapi.com/
BE2 Extraordinary Plugins, Siemens Targeting, Dev Fails
https://securelist.com/blog/68838/be2-extraordinary-plugins-siemens-targeting-dev-fails/
https://securelist.com/blog/68838/be2-extraordinary-plugins-siemens-targeting-dev-fails/
Extracting the SuperFish certificate
http://blog.erratasec.com/2015/02/extracting-superfish-certificate.html#.VOaNSlND52c
http://blog.erratasec.com/2015/02/extracting-superfish-certificate.html#.VOaNSlND52c
持续性攻击组织Equation Group
https://securelist.com/files/2015/02/Equation_group_questions_and_answers.pdf
https://securelist.com/files/2015/02/Equation_group_questions_and_answers.pdf
IEEE Security & Privacy 2015 vol.13
http://www.computer.org/csdl/mags/sp/2015/01/index.html
http://www.computer.org/csdl/mags/sp/2015/01/index.html
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第51期)
