SecWiki周刊(第9期)
2014/04/28-2014/05/04
安全资讯
Cyber intelligence services reveal sensitive data firms are leaking online
http://www.net-security.org/secworld.php?id=16757
http://www.net-security.org/secworld.php?id=16757
思科ASA SSL VPN爆权限提升漏洞
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-asa
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-asa
一周海外安全事件回顾(20140421-0427)
http://www.freebuf.com/news/special/33285.html
http://www.freebuf.com/news/special/33285.html
Skype leaves Sensitive User Data Unencrypted Locally On Computers
http://thehackernews.com/2014/04/skype-leaves-sensitive-user-data.html
http://thehackernews.com/2014/04/skype-leaves-sensitive-user-data.html
AOL Security Update
http://blog.aol.com/2014/04/28/aol-security-update/
http://blog.aol.com/2014/04/28/aol-security-update/
Android users targeted by over 99 percent of mobile malware
http://www.v3.co.uk/v3-uk/news/2342442/android-users-targeted-by-over-99-percent-of-mobile-malware
http://www.v3.co.uk/v3-uk/news/2342442/android-users-targeted-by-over-99-percent-of-mobile-malware
One of World’s Largest Websites Hacked: Turns Visitors into “DDoS Zombies”
http://www.incapsula.com/blog/world-largest-site-xss-ddos-zombies.html
http://www.incapsula.com/blog/world-largest-site-xss-ddos-zombies.html
New zero-day vulnerability identified in all versions of IE
http://www.cnet.com/news/new-zero-day-vulnerability-identified-in-all-versions-of-ie/
http://www.cnet.com/news/new-zero-day-vulnerability-identified-in-all-versions-of-ie/
Apple iOS 7 Updates Silently Remove Encryption for Email Attachments
http://thehackernews.com/2014/05/ios-apple-iphone-data-protection-email-attachment.html
http://thehackernews.com/2014/05/ios-apple-iphone-data-protection-email-attachment.html
Using Facebook Notes to DDoS any website
http://chr13.com/2014/04/20/using-facebook-notes-to-ddos-any-website/
http://chr13.com/2014/04/20/using-facebook-notes-to-ddos-any-website/
安全技术
逆向基础(一) | WooYun知识库
http://drops.wooyun.org/tips/1517
http://drops.wooyun.org/tips/1517
Decrypting IIS Passwords to Break Out of the DMZ: Part 2
https://www.netspi.com/blog/entryid/226/decrypting-iis-passwords-to-break-out-of-the-dmz-part-2
https://www.netspi.com/blog/entryid/226/decrypting-iis-passwords-to-break-out-of-the-dmz-part-2
Decrypting IIS Passwords to Break Out of the DMZ: Part 1
https://www.netspi.com/blog/entryid/215/decrypting-iis-passwords-to-break-out-of-the-dmz-part-1
https://www.netspi.com/blog/entryid/215/decrypting-iis-passwords-to-break-out-of-the-dmz-part-1
keyscan.py: looking for prime factors
https://github.com/HackerFantastic/Public/blob/master/misc/keyscan.py
https://github.com/HackerFantastic/Public/blob/master/misc/keyscan.py
#QCon北京# 云计算构架案例
http://vdisk.weibo.com/s/A0GI9rXOBuKT
http://vdisk.weibo.com/s/A0GI9rXOBuKT
BYPASSING ADVANCED THREAT DETECTION SYSTEMS
https://3vildata.com/?p=1070
https://3vildata.com/?p=1070
Reverse Engineering for Beginners book
http://yurichev.com/RE-book.html
http://yurichev.com/RE-book.html
Out Of Control: Overcoming Control-Flow Integrity
http://www.cs.vu.nl/~herbertb/papers/outofcontrol_sp14.pdf
http://www.cs.vu.nl/~herbertb/papers/outofcontrol_sp14.pdf
Laravel cookie伪造,解密,和远程命令执行
http://drops.wooyun.org/papers/1515
http://drops.wooyun.org/papers/1515
Spark at Twitter - Seattle Spark Meetup
http://www.slideshare.net/krishflix/seattle-spark-meetup-spark-at-twitter
http://www.slideshare.net/krishflix/seattle-spark-meetup-spark-at-twitter
用Google语音识别API破解reCaptcha验证码
http://drops.wooyun.org/papers/1524
http://drops.wooyun.org/papers/1524
Burp Suite使用介绍(一)
http://drops.wooyun.org/tools/1548
http://drops.wooyun.org/tools/1548
Introduction to Android Malware Analysis
http://www.exploit-db.com/download_pdf/33093/
http://www.exploit-db.com/download_pdf/33093/
CVE-2013-0640 AdobeReader任意代码执行漏洞分析
http://www.freebuf.com/vuls/33448.html
http://www.freebuf.com/vuls/33448.html
big_data_privacy_report_may_1_2014
http://www.whitehouse.gov/sites/default/files/docs/big_data_privacy_report_may_1_2014.pdf
http://www.whitehouse.gov/sites/default/files/docs/big_data_privacy_report_may_1_2014.pdf
New Zero-Day Exploit targeting Internet Explorer Versions 9 through 11
http://www.fireeye.com/blog/uncategorized/2014/04/new-zero-day-exploit-targeting-internet-explorer-versions-9-through-11-identified-in-targeted-attacks.html
http://www.fireeye.com/blog/uncategorized/2014/04/new-zero-day-exploit-targeting-internet-explorer-versions-9-through-11-identified-in-targeted-attacks.html
A Year of MongoDB
https://speakerdeck.com/mitsuhiko/a-year-of-mongodb
https://speakerdeck.com/mitsuhiko/a-year-of-mongodb
The FireEye Advanced Threat Report 2013: European Edition
http://www.fireeye.com/blog/corporate/2014/04/the-fireeye-advanced-threat-report-2013-european-edition.html
http://www.fireeye.com/blog/corporate/2014/04/the-fireeye-advanced-threat-report-2013-european-edition.html
Burp Suite使用介绍(二)
http://drops.wooyun.org/tools/1629
http://drops.wooyun.org/tools/1629
Identifying Malware Traffic with Bro and (CIF)
http://blog.opensecurityresearch.com/2014/03/identifying-malware-traffic-with-bro.html
http://blog.opensecurityresearch.com/2014/03/identifying-malware-traffic-with-bro.html
Spark Contributor陈超:深入浅出Spark
http://share.csdn.net/slides/3070
http://share.csdn.net/slides/3070
Celery: Python Distributed Task Queue
http://www.celeryproject.org/
http://www.celeryproject.org/
cve-2014-1776_sample
http://pan.baidu.com/s/1mg7bQg4
http://pan.baidu.com/s/1mg7bQg4
Characterizing Privacy Leakage of Public WiFi Networks for Users on Travel
http://spirit.cs.ucdavis.edu/pubs/conf/Ningning_INFOCOM13.pdf
http://spirit.cs.ucdavis.edu/pubs/conf/Ningning_INFOCOM13.pdf
#QCon北京# 知名网站案例分析
http://vdisk.weibo.com/s/A0GI9rXOBsqH
http://vdisk.weibo.com/s/A0GI9rXOBsqH
Tips for Public Speaking
http://speaking.io/
http://speaking.io/
Lnk files in Email Malware Distribution
http://blog.spiderlabs.com/2014/05/lnk-files-in-email-malware-distribution.html
http://blog.spiderlabs.com/2014/05/lnk-files-in-email-malware-distribution.html
New Flash Player 0-day (CVE-2014-0515) used in watering-hole attacks
http://www.securelist.com/en/blog/8212/New_Flash_Player_0_day_CVE_2014_0515_used_in_watering_hole_attacks
http://www.securelist.com/en/blog/8212/New_Flash_Player_0_day_CVE_2014_0515_used_in_watering_hole_attacks
UI redress attack on live.com (affected all pages)
http://seclists.org/fulldisclosure/2014/Apr/268?utm_source=twitterfeed&utm_medium=twitter
http://seclists.org/fulldisclosure/2014/Apr/268?utm_source=twitterfeed&utm_medium=twitter
xrop:Tool to generate ROP gadgets
https://github.com/acama/xrop
https://github.com/acama/xrop
Bypass Win8.1 UAC源码 + 文档
http://bbs.pediy.com/showthread.php?p=1279309#post1279309
http://bbs.pediy.com/showthread.php?p=1279309#post1279309
APKinspector: analyze the Android applications
https://github.com/honeynet/apkinspector/
https://github.com/honeynet/apkinspector/
Revisiting Mac OS X Kernel Rootkits
http://phrack.org/papers/revisiting-mac-os-x-kernel-rootkits.html
http://phrack.org/papers/revisiting-mac-os-x-kernel-rootkits.html
PHP Callback Functions: Another Way to Hide Backdoors
http://blog.sucuri.net/2014/04/php-callback-functions-another-way-to-hide-backdoors.html
http://blog.sucuri.net/2014/04/php-callback-functions-another-way-to-hide-backdoors.html
Attack of the Week: Triple Handshakes (3Shake)
http://blog.cryptographyengineering.com/2014/04/attack-of-week-triple-handshakes-3shake.html
http://blog.cryptographyengineering.com/2014/04/attack-of-week-triple-handshakes-3shake.html
Hurricane Electric BGP Toolkit
http://bgp.he.net/
http://bgp.he.net/
zabbix企业应用之服务器硬件信息监控
http://dl528888.blog.51cto.com/2382721/1403893
http://dl528888.blog.51cto.com/2382721/1403893
某众多高校邮件系统的0day挖掘思路及XSS新防御方案
http://www.91ri.org/8698.html
http://www.91ri.org/8698.html
Augmenting Vulnerability Analysis of Binary Code
http://static.squarespace.com/static/507c09ede4b0954f51d59c75/t/50be2d59e4b0018c2576a149/1354640729368/acsac_2012.pdf
http://static.squarespace.com/static/507c09ede4b0954f51d59c75/t/50be2d59e4b0018c2576a149/1354640729368/acsac_2012.pdf
可能被绕过的防御有什么用
http://weibo.com/p/1001603704271748108576
http://weibo.com/p/1001603704271748108576
Best Paper Awards in Computer Science (since 1996)
http://jeffhuang.com/best_paper_awards.html#institutions
http://jeffhuang.com/best_paper_awards.html#institutions
oclHashcat: advanced password recovery
https://hashcat.net/oclhashcat/
https://hashcat.net/oclhashcat/
Defending Against Network-based Distributed Denial of Service Attacks
https://securosis.com/blog/defending-against-NDDoS-attacks-new-paper
https://securosis.com/blog/defending-against-NDDoS-attacks-new-paper
[投稿]对某国的一次APT攻击过程
http://www.91ri.org/8752.html
http://www.91ri.org/8752.html
基于AngularJS的企业软件前端架构
http://blog.xufei.gitpress.org/~posts/2014-04-27-%E5%9F%BA%E4%BA%8EAngularJS%E7%9A%84%E4%BC%81%E4%B8%9A%E8%BD%AF%E4%BB%B6%E5%89%8D%E7%AB%AF%E6%9E%B6%E6%9E%84.md
http://blog.xufei.gitpress.org/~posts/2014-04-27-%E5%9F%BA%E4%BA%8EAngularJS%E7%9A%84%E4%BC%81%E4%B8%9A%E8%BD%AF%E4%BB%B6%E5%89%8D%E7%AB%AF%E6%9E%B6%E6%9E%84.md
CVE-2014-1776 SWF
http://pastebin.com/qEtmrtCz
http://pastebin.com/qEtmrtCz
WaFFLE: Fingerprinting filter rules of WAFs
https://www.usenix.org/system/files/conference/woot12/woot12-final2.pdf
https://www.usenix.org/system/files/conference/woot12/woot12-final2.pdf
#QCon北京# 构建高效能团队
http://vdisk.weibo.com/s/A0GI9rXOBuKH
http://vdisk.weibo.com/s/A0GI9rXOBuKH
LINE Storage: Storing billions of rows in Sharded-Redis and HBase per Month
http://tech.naver.jp/blog/?p=1420
http://tech.naver.jp/blog/?p=1420
CVE-2014-1761_sample(pass infected)
http://yun.baidu.com/s/1qW4RMA4
http://yun.baidu.com/s/1qW4RMA4
BDAS:the Berkeley Data Analytics Stack
https://amplab.cs.berkeley.edu/software/
https://amplab.cs.berkeley.edu/software/
Q1 2014 Mobile Threat Report
http://www.f-secure.com/weblog/archives/00002699.html
http://www.f-secure.com/weblog/archives/00002699.html
小米自动化运维实践 qcon 2014 Beijing
http://noops.me/?p=1496
http://noops.me/?p=1496
Joomla Plugin Constructor Backdoor
http://blog.sucuri.net/2014/04/joomla-plugin-constructor-backdoor.html
http://blog.sucuri.net/2014/04/joomla-plugin-constructor-backdoor.html
Exploit: McAfee ePolicy 0wner (ePowner) v0.1
http://funoverip.net/2014/04/mcafee-epolicy-0wner-0-1-release/
http://funoverip.net/2014/04/mcafee-epolicy-0wner-0-1-release/
SimpleSAMLphp:native PHP that deals with authentication
https://simplesamlphp.org/
https://simplesamlphp.org/
Snoopy: A distributed tracking and profiling framework
https://www.sensepost.com/blog/7557.html
https://www.sensepost.com/blog/7557.html
那些年,那些 Apache Struts2 的漏洞
http://www.freebuf.com/articles/web/33232.html
http://www.freebuf.com/articles/web/33232.html
Wiley.Data Driven Security.Analysis.Visualization and Dashboards.2014
http://www.itpub.net/thread-1846599-1-1.html
http://www.itpub.net/thread-1846599-1-1.html
#QCon北京# 推荐系统工程实践
http://vdisk.weibo.com/s/A0GI9rXOBsAo
http://vdisk.weibo.com/s/A0GI9rXOBsAo
对sfgg所有博客的数据统计
http://blog.segmentfault.com/bigtan/1190000000486961
http://blog.segmentfault.com/bigtan/1190000000486961
python的分布式任务并行处理框架Jug简单使用
http://rfyiamcool.blog.51cto.com/1030776/1405532
http://rfyiamcool.blog.51cto.com/1030776/1405532
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第9期)
