SecWiki周刊(第6期)
2014/04/07-2014/04/13
安全技术
MS14-010 CVE-2014-0293 IE UXSS XDS: Cross-Device Scripting Attacks on Smartphones through HTML5-based Apps ssltest4multi.py 某视频客户端逆向实践 "Hack Away at the Unessential" with ExpLib2 in Metasploit 某互联网公司安全测试面试题 Log4Grid:分布式应用日志管理 Obfuscalp:suspicious/malicious code planted inside PHP openssl 多线程 多域名 EXP Configuring an SSL MITM Test Lab for Android Kioptrix: vulnerable machine for beginner jQuery 内容滑块 jQuery lightSlider PyHTTPShell:Python HTTP Shell Technical Analysis of CVE-2014-1761 RTF Vulnerability WhiteHat Security Observations and Advice about the Heartbleed OpenSSL Exploit Webshell 远程提权 Internet Heartbleed Health Report CVE-2014-1761 0day exploit 已經大量出現在台灣的APT攻擊 WebKit XSSAuditor source SyScan2014 Conference Slides dnsproxy:A simple DNS proxy server Malwarelyse.me (An MfS-Enterprise Project) Embedded in Academia : Heartbleed and Static Analysis Cookies with HttpOnly Flag: Problem in Some Browsers 一次通过漏洞挖掘成功渗透某网站的过程 Fuzzing Application AndroidManifest firewall-sosdg:Firewall/SOSDG & SRFirewall IIS4\IIS5 CGI环境块伪造0day 8×8 Script Leads to Infinity Drive-By Putty的颜色设置 关于OpenSSL“心脏出血”漏洞的分析 收集的资料从来不看怎么办 sslsniff:A tool for automated MITM attacks on SSL connections OPENSSL TLS 支持smtp, pop3, imap, ftp, or xmpp 云计算防入侵最佳实践 Android Bug Superior to Master Key 编程不易的《码农周刊》(第26期) Analyzing the "Power Worm" PowerShell-based Malware Hardening Android for Security and Privacy 微信公众平台完整开发教程 passivedns:A network sniffer that logs all DNS server replies SecWiki周刊(第5期) 表达式语法分析
安全专题
互联网Web安全职位面试题目汇总
https://www.sec-wiki.com/topic/44
https://www.sec-wiki.com/topic/44
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com
本期原文地址: SecWiki周刊(第6期)