SecWiki周刊(第149期)
2017/01/02-2017/01/08
安全资讯
[新闻]  美情报机构:俄罗斯涉嫌通过黑客攻击和散步虚假消息干预美国大选
http://www.freebuf.com/news/124662.html
[Web安全]  国际航空订票系统存在漏洞,可轻易取消、修改航班预约
http://www.freebuf.com/news/124348.html
[事件]  Cyber​​Zeist入侵FBI网站并泄露部分数据
http://www.mottoin.com/95023.html
[人物]  杨大路:威胁情报版“今日头条”该怎么做
https://mp.weixin.qq.com/s?__biz=MzIzMTAzNzUxMQ==&mid=2652877355&idx=1&sn=a5a80a487b502bf778b18506249beb90&chksm=f3415d03c436d415b22ecc601f84450aa76dfad8a3a758e08dc06b7a100bbc53aeaf21e15ad3
[新闻]  《中国网络安全企业50强》(2016年下)发布
https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651069981&idx=1&sn=4e643b78aec9216406dd9a87464b150a&chksm=bd14aece8a6327d81168a5e8758d1c3acd4272dba5064203f4eba715a07df24be59811d6048c
[观点]  在百度:如何做好企业安全这门生意?
https://mp.weixin.qq.com/s?__biz=MzAxMjIyNDE4Mg==&mid=2651758564&idx=1&sn=1d63e419706179bbbfc1c2de5ae115a8&chksm=804f2c3db738a52b5d5a7edb47cf017b4cf5c50725d78165cab710acf6145676cd4a21f1a9cb&mpshare=1
[设备安全]  The FTC’s Internet of Things (IoT) Challenge
http://krebsonsecurity.com/2017/01/the-ftcs-internet-of-things-iot-challenge/
[新闻]  廊坊历险记 -- 传销窝点救人纪实
http://weibo.com/ttarticle/p/show?id=2309404060928751575242
安全技术
[Web安全]  SQLChop - 一个新型 SQL 注入检测引擎
https://blog.chaitin.cn/sqlchop-the-sqli-detection-engine/
[Web安全]  Python 格式化字符串漏洞(Django为例)
http://bobao.360.cn/learning/detail/3374.html
[Web安全]  端口渗透总结
http://www.91ri.org/15441.html
[Web安全]  SSRF漏洞的挖掘经验
https://sobug.com/article/detail/11
[会议]  2016 GIAC 全球互联网架构大会圆满结束,全部 PPT 开放下载
http://mp.weixin.qq.com/s/daAZ1tmcpsZt4pHdAW3oWg
[工具]  内网渗透的一些工具和平台汇总
http://www.mottoin.com/95177.html
[Web安全]  dedeCMS友情链接getshell漏洞分析
http://www.hackdig.com/01/hack-42372.htm
[漏洞分析]  Kernel Exploitation -> Pool Overflow
http://www.fuzzysecurity.com/tutorials/expDev/20.html
[Web安全]  浅析ReDoS的原理与实践
http://www.freebuf.com/articles/network/124422.html
[Web安全]  BurpSuite插件开发Tips:请求响应参数的AES加解密
http://www.mottoin.com/95091.html
[Web安全]  33c32016 writeup
http://lorexxar.cn/2017/01/03/33c3-wp/
[Web安全]  e107 CMS <=2.1.2 权限提升漏洞分析
http://bobao.360.cn/learning/detail/3368.html
[漏洞分析]  【EXP】VMware vSphere Data Protection CVE-2016-7456 Authentication Bypass
https://github.com/phroxvs/metasploit-framework/blob/exploit_vdp_known_privkey/modules/exploits/linux/ssh/vmware_vdp_known_privkey.rb
[Web安全]  Data Retrieval over DNS in SQL Injection Attacks
https://arxiv.org/ftp/arxiv/papers/1303/1303.3047.pdf
[移动安全]  安卓Hook函数的复杂参数如何给定
https://xianzhi.aliyun.com/forum/read/611.html
[运维安全]  GitPrey: GitHub敏感信息扫描工具
https://github.com/repoog/GitPrey
[Web安全]  内网如何定位管理员
https://www.secpulse.com/archives/32859.html
[Web安全]  DomainSeeker 多方式收集目标子域名信息
http://www.evilclay.com/2017/01/02/domain-seeker%E4%BA%8C%E7%BA%A7%E5%9F%9F%E5%90%8D%E6%94%B6%E9%9B%86%E8%84%9A%E6%9C%AC/
[数据挖掘]  基于Spark GraphX实现微博二度关系推荐实践
http://weibo.com/ttarticle/p/show?id=2309404060500571876390
[Web安全]  Linux MySQL Udf 提权
http://www.91ri.org/16540.html
[取证分析]  How to turn a DLL into a standalone EXE
https://hshrzd.wordpress.com/2016/07/21/how-to-turn-a-dll-into-a-standalone-exe/
[恶意分析]  Technical analysis of CryptoMix/CryptFile2 ransomware
https://www.cert.pl/en/news/single/technical-analysis-of-cryptomixcryptfile2-ransomware/
[数据挖掘]  Deep Learning Security Papers 深度学习与安全
http://www.covert.io/deep-learning-security-papers/
[运维安全]  Invoke-TheHash:执行WMI和SMB命令的PowerShell脚本
http://www.mottoin.com/94990.html
[移动安全]  2017年最好用的Android渗透工具合集
http://www.freebuf.com/sectool/124507.html
[会议]  2016 GIAC 全球互联网架构大会圆满结束[PPT+视频]
https://mp.weixin.qq.com/s?__biz=MjM5NjQ4MjYwMQ==&mid=2664608640&idx=2&sn=446ba28dcbec21d1ed739c2e8bb1714b&chksm=bdce88c68ab901d04385aa5fd4d974a97bad02045ba0fa4ff411fb9577ea9612e0e168a7f6ef
[会议]  33C3: Works for Me 中文翻译版
http://hardenedlinux.org/translation/2017/01/03/33c3-works-for-me.html
[文档]  FIT 2017台前幕后大揭秘(附大会议题PPT)
http://www.freebuf.com/news/topnews/124133.html
[设备安全]  自助终端机的常见入侵方式
https://www.t00ls.net/articles-24444.html
[取证分析]  基于 IP 地址的种子下载历史查询
http://iknowwhatyoudownload.com/en/peer/
[会议]  My favorite DFIR(Digital Forensics and Incident Response) presentations for 2016
https://threatintel.eu/2016/12/30/my-favorite-dfir-presentations-for-2016/
[Web安全]  DOOM:分布式任务分发IP端口漏洞扫描器
http://www.mottoin.com/94946.html
[设备安全]  《物联网安全白皮书》
http://toutiao.secjia.com/nsfocus-iot-security-whitepaper-ppt
[Web安全]  通过Burp Collaborator插件利用SQL盲注
http://www.mottoin.com/95010.html
[比赛]  CTFCrackTools: 中国国内首个CTFcrack框架
https://github.com/0Linchen/CTFCrackTools
[其它]  Comprehensive insider threat mitigation resource list
http://www.nationalinsiderthreatsig.org/nitsig-insiderthreatsymposiumexporesources.html
[Web安全]  SRC漏洞挖掘小见解
http://www.mottoin.com/95043.html
[其它]  我的通行你的证
http://lvwei.me/passport.html
[其它]  FBI Hacked and Leaked -New Year wishes from Anonymous[需翻墙]
http://pastebin.com/5vwz6Wj4
[恶意分析]  如何绕过杀毒软件运行Mimikatz
http://www.mottoin.com/95145.html
[无线安全]  安卓无线渗透利器:Hijacker
http://www.freebuf.com/sectool/124156.html
[Web安全]  RESTful架构风格下的4大常见安全问题
https://mp.weixin.qq.com/s?__biz=MjM5MjY3OTgwMA==&mid=2652455776&idx=1&sn=047aea9144db8cf242e253083a0796a6&chksm=bd4f71778a38f861bd9399e96cf96a3d5f10a2cfbd73a8c5056c03335abd2baf73d61889c17c
[漏洞分析]  Oracle的酒店管理平台RCE漏洞以及持卡人数据泄漏(CVE-2016-5663/4/5)
http://www.freebuf.com/vuls/123989.html
[编程技术]  scrapy爬虫教程导航
http://brucedone.com/archives/771
[取证分析]  如何全面防御Webshell(下)
http://www.4hou.com/technology/2301.html
[漏洞分析]  WEB2PY 反序列化的安全問題-CVE-2016-3957
http://devco.re/blog/2017/01/03/web2py-unserialize-code-execution-CVE-2016-3957/
[编程技术]  The Beauty of Python Programming 「Python入门开源书籍」
https://funhacks.net/explore-python/
[移动安全]  Technical details on the Fancy Bear Android malware (poprd30.apk)
http://blog.crysys.hu/2017/01/technical-details-on-the-fancy-bear-android-malware-poprd30-apk/
[设备安全]  网络安全强国-以色列的工控安全之路
http://plcscan.org/blog/2017/01/development-path-of-ics-cybersecurity-in-israel/
[运维安全]  6步教你搞定网络威胁建模
https://mp.weixin.qq.com/s?__biz=MzI4MjA1MzkyNA==&mid=2655294723&idx=3&sn=4c6cbe71c8c3a59bbc5a3233d68bff20&chksm=f02fe948c758605e1bc05ed09516c472ad2ce31e50b3c8164ec9ecc833fc0bcf66923c6291ff
[恶意分析]  FirePhisha: full-fledged phishing framework to manage all phishing engagements
https://github.com/Raikia/FirePhish
[Web安全]  Exploiting difficult SQL injection vulnerabilities using sqlmap: Part 1
http://www.thegreycorner.com/2017/01/exploiting-difficult-sql-injection.html
[恶意分析]  使用Golang绕过杀毒软件
http://www.mottoin.com/95161.html
[Web安全]  美团点评数据库中间件DBProxy开源
http://tech.meituan.com/dbproxy-pr.html
[数据挖掘]  The Definitive Security Data Science and Machine Learning Guide
http://www.covert.io/the-definitive-security-datascience-and-machinelearning-guide/
[运维安全]  黑产:“打码平台”与“羊毛党”
https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655113653&idx=3&sn=223564a3bfa669f5d8fff887c136a2db&chksm=bc864c5a8bf1c54cf51e9f7ee392f66d5bca3ae5dc5e897bb4e85af5ce648324253af10e4905&mpshare=1&scene=1&srcid=0102epege22xuYhr2sFuGqhw
[设备安全]  iotdb: Nmap scans of Internet of Things devices
https://github.com/shodan-labs/iotdb
[Web安全]  PentesterLab 的 Padding Oracle 漏洞靶机测试
http://www.mottoin.com/94991.html
[Web安全]  SQLMap Tamper Scripts Update ~ ForkBombers
http://www.forkbombers.com/2016/07/sqlmap-tamper-scripts-update.html
[漏洞分析]  SMB Relay with Snarf
https://bluescreenofjeff.com/2016-02-19-smb-relay-with-snarfjs-making-the-most-of-your-mitm/
[Web安全]  40+ Intentionally Vulnerable Websites To (Legally) Practice Your Hacking Skills
https://www.bonkersabouttech.com/com.bonkersabouttech.model.response.BlogCategory@1e5325/40-intentionally-vulnerable-websites-to-practice-your-hacking-skills/392
[运维安全]  ipscan: Angry IP Scanner
https://github.com/angryziber/ipscan
[移动安全]  mach portal漏洞利用的一些细节
http://blog.pangu.io/mach-portal-details/
[恶意分析]   Python script to inject existing Android applications with a Meterpreter payloa
https://github.com/sensepost/kwetza
[恶意分析]  US Govt Data Shows Russia Used Outdated Ukrainian PHP Malware
https://www.wordfence.com/blog/2016/12/russia-malware-ip-hack/
[工具]  mitmAP:创建假AP和嗅探数据的简单工具
http://www.mottoin.com/94979.html
[设备安全]  物联网安全切入点(后有白皮书下载链接)
http://www.secjia.com/report/NSFOCUS-IoT-Security-Whitepaper.pdf
[工具]  PowerShell Empire | Building an Empire with PowerShell
http://www.powershellempire.com/
[Web安全]  [Bug Bounty] GitHub Enterprise SQL Injection
http://blog.orange.tw/2017/01/bug-bounty-github-enterprise-sql-injection.html
[移动安全]  Mac Malware of 2016: a cumulative analysis of new OS X malware
http://objective-see.com/blog/blog_0x16.html
[无线安全]   Improvements in rogue ap attacks – mana 1/2
https://sensepost.com/blog/2015/improvements-in-rogue-ap-attacks-mana-1-2/
[设备安全]  IoT Trust Framework: The foundation for future IoT certification programs
https://www.helpnetsecurity.com/2017/01/05/iot-trust-framework/
[取证分析]  Introducing rkt’s ability to automatically detect privilege escalation attacks on containers
https://coreos.com/blog/rkt-detect-privilege-escalation.html
[恶意分析]  Binary Ninja plugin to decompile binaries using RetDec API
https://github.com/hugsy/binja-retdec
[Web安全]  Safari Reader UXSS
http://alf.nu/SafariReaderUXSS
[Web安全]  持久化 XSS:被 ServiceWorkers 支配的恐惧
http://www.mottoin.com/95058.html
[Web安全]  Operative - The Fingerprint Framework
https://github.com/graniet/operative-framework
[恶意分析]  Open Source Malware Lab 相关开源系统介绍[论文+视频]
https://www.virusbulletin.com/blog/2017/01/vb2016-paper-open-source-malware-lab/
[设备安全]  IoT Home Inspector Challenge 物联网安全防护工具大赛
https://www.ftc.gov/iot-home-inspector-challenge
[设备安全]  对斐讯Fir302B路由器进行的渗透测试
http://www.freebuf.com/articles/terminal/124069.html
[数据挖掘]  基于Spark的公安大数据实时运维技术实践
http://mp.weixin.qq.com/s?__biz=MzA4Mzc0NjkwNA==&mid=2650781974&idx=2&sn=e07c921425016ec1f626dbada6caed6a&chksm=87fad021b08d593726b97819c668d7fb51f2fb4a86bb1aef2b13cc9cb09d703bf3b2bba2d7d7
[恶意分析]  Fresh Veil - Automatically Generating Payloads
https://bluescreenofjeff.com/2014-04-17-Fresh-Veil-Automatically-Generating-Payloads/
[工具]  Beaconpire
https://bluescreenofjeff.com/2016-11-29-beaconpire-cobalt-strike-and-empire-interoperability-with-aggressor-script/
[数据挖掘]   An evolutionary knowledge-based fuzzer
https://github.com/CENSUS/choronzon
[恶意分析]  Mac Malware of 2016 | a cumulative analysis of new OS X malware
https://objective-see.com/blog/blog_0x16.html
[数据挖掘]   Wadi fuzzer
https://sensepost.com/blog/2015/wadi-fuzzer/
[Web安全]  [another] intercepting proxy
https://sensepost.com/blog/2015/another-intercepting-proxy/
[运维安全]  2016年数据泄露年度汇总
https://www.t00ls.net/articles-37542.html
[恶意分析]  33C3: Analyzing Embedded Operating System Random Number Generators ←
http://samvartaka.github.io/cryptanalysis/2017/01/03/33c3-embedded-rngs
[漏洞分析]  SensePost | Abusing file converters
https://sensepost.com/blog/2015/abusing-file-converters/
[移动安全]  how to setup a rasperry pi 2 model b for wlan sniffing
http://blog.x1622.com/2016/12/how-to-setup-rasperry-pi-2-model-b-for.html
[文档]  2016中国电脑恶意程序伪装与欺骗性研究报告
http://www.freebuf.com/articles/system/124350.html
[编程技术]  一文读懂数据内容识别核心技术
http://blog.nsfocus.net/data-content-identification-core-technology/
[Web安全]  Apache mod_rewrite Grab Bag
https://bluescreenofjeff.com/2016-12-23-apache_mod_rewrite_grab_bag/
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第149期)