SecWiki周刊(第190期)
2017/10/16-2017/10/22
安全资讯
ATM机即将沦陷,地下黑市正在出售ATM恶意软件
http://www.4hou.com/info/news/8042.html
http://www.4hou.com/info/news/8042.html
WPA2加密协议已被破解!你还敢用WiFi吗?
http://www.4hou.com/info/news/8018.html
http://www.4hou.com/info/news/8018.html
十九大报告中有关网安和信息化事业的内容
https://mp.weixin.qq.com/s/DEKQ8zSFNXHrnhkhSmtmYw
https://mp.weixin.qq.com/s/DEKQ8zSFNXHrnhkhSmtmYw
上市网络安全公司2017年三季度业绩预告
https://mp.weixin.qq.com/s/pd-9DCm-sCouRftXshY99A
https://mp.weixin.qq.com/s/pd-9DCm-sCouRftXshY99A
WPA2 协议漏洞让 Wi-Fi 流量能被攻击者监听
http://www.solidot.org/story?sid=54135
http://www.solidot.org/story?sid=54135
UEBA能够检测的七大类安全风险
https://mp.weixin.qq.com/s/okdYuSCbASLrtESh5KNO1A
https://mp.weixin.qq.com/s/okdYuSCbASLrtESh5KNO1A
安全技术
XSS常见Paylaod分析-1
https://zhuanlan.zhihu.com/p/30346946
https://zhuanlan.zhihu.com/p/30346946
两款防火墙的注入绕过姿势
https://secvul.com/topics/876.html
https://secvul.com/topics/876.html
Windows命令执行漏洞利用总结
https://evi1cg.me/archives/remote_exec.html
https://evi1cg.me/archives/remote_exec.html
Broken Link Hijacking - How expired links can be exploited.
https://edoverflow.com/2017/broken-link-hijacking/
https://edoverflow.com/2017/broken-link-hijacking/
信息安全领域有哪些非常棒的资源
http://bar.freebuf.com/comment/9775
http://bar.freebuf.com/comment/9775
2017世安杯CTF writeup详解
http://www.freebuf.com/articles/rookie/150129.html
http://www.freebuf.com/articles/rookie/150129.html
利用Mimikatz和Powersploit导出证书与绕过杀毒软件
https://insinuator.net/2017/10/extract-non-exportable-certificates-and-evade-anti-virus-with-mimikatz-and-powersploit/
https://insinuator.net/2017/10/extract-non-exportable-certificates-and-evade-anti-virus-with-mimikatz-and-powersploit/
符号执行:利用Angr进行简单CTF逆向分析
http://www.freebuf.com/articles/web/150296.html
http://www.freebuf.com/articles/web/150296.html
机器学习&数据分析在Web日志分析中的实践
http://blog.nsfocus.net/ml-data-web-logs-analysis/
http://blog.nsfocus.net/ml-data-web-logs-analysis/
Qcon2017上海「直击黑产」专题回顾
http://www.freebuf.com/fevents/151169.html
http://www.freebuf.com/fevents/151169.html
信息安全实习和校招的面经、真题和资料
https://github.com/SecYouth/sec-jobs
https://github.com/SecYouth/sec-jobs
海洋CMS(SEACMS)v6.55执行任意代码漏洞及其补丁绕过方法
http://blog.jowto.com/?p=278
http://blog.jowto.com/?p=278
FreeTalk深圳站看点回顾(附PPT下载)
http://www.freebuf.com/fevents/150894.html
http://www.freebuf.com/fevents/150894.html
iOS 应用安全分析工具 Passionfruit
https://zhuanlan.zhihu.com/p/29761306
https://zhuanlan.zhihu.com/p/29761306
蜜罐与内网安全从0到1(三)
https://sosly.me/index.php/2017/10/15/jymiguan3/
https://sosly.me/index.php/2017/10/15/jymiguan3/
实时监控1000家中国企业的新闻动态
https://github.com/NolanZhao/news_feed
https://github.com/NolanZhao/news_feed
代码审计之gxlcms
http://foreversong.cn/archives/736
http://foreversong.cn/archives/736
SQLMAP Tamper Scripts for The Win
https://pen-testing.sans.org/blog/2017/10/13/sqlmap-tamper-scripts-for-the-win
https://pen-testing.sans.org/blog/2017/10/13/sqlmap-tamper-scripts-for-the-win
lucky-js-fuzz: 开源jsfuzzer
https://github.com/blastxiang/lucky-js-fuzz
https://github.com/blastxiang/lucky-js-fuzz
2017杭州云栖大会视频
https://yunqi.aliyun.com/2017/hangzhou/videos?spm=a21cy.10467250.880280.455.v4ewXd&wh_ttid=pc#/video/222
https://yunqi.aliyun.com/2017/hangzhou/videos?spm=a21cy.10467250.880280.455.v4ewXd&wh_ttid=pc#/video/222
awesome-yara: A curated list of awesome YARA rules, tools, and people
https://github.com/InQuest/awesome-yara
https://github.com/InQuest/awesome-yara
PHP+Mysql注入防护与绕过
http://mp.weixin.qq.com/s/qwSS3d9H3_l6LXPheGdAZw
http://mp.weixin.qq.com/s/qwSS3d9H3_l6LXPheGdAZw
WebUSB:一个网页是如何从你的手机中盗窃数据的(含PoC)
http://www.freebuf.com/articles/web/150335.html
http://www.freebuf.com/articles/web/150335.html
SecWiki周刊(第189期)
https://www.sec-wiki.com/weekly/189
https://www.sec-wiki.com/weekly/189
使用威胁情报追踪攻击者—Part 3 使用威胁情报调查攻击者
https://zhuanlan.zhihu.com/p/30197024?group_id=903658683733594112
https://zhuanlan.zhihu.com/p/30197024?group_id=903658683733594112
使用深度学习检测XSS(续)
http://www.webber.tech/posts/%E4%BD%BF%E7%94%A8%E6%B7%B1%E5%BA%A6%E5%AD%A6%E4%B9%A0%E6%A3%80%E6%B5%8BXSS%28%E7%BB%AD%29/
http://www.webber.tech/posts/%E4%BD%BF%E7%94%A8%E6%B7%B1%E5%BA%A6%E5%AD%A6%E4%B9%A0%E6%A3%80%E6%B5%8BXSS%28%E7%BB%AD%29/
一款简单的Github信息泄露爬虫
http://www.freebuf.com/articles/web/150638.html
http://www.freebuf.com/articles/web/150638.html
subjack: Hostile Subdomain Takeover tool written in Go
https://github.com/haccer/subjack
https://github.com/haccer/subjack
Poet:一款功能强大的后渗透工具
http://www.freebuf.com/sectool/150461.html
http://www.freebuf.com/sectool/150461.html
Nmap插件编写之MySQL入库
http://www.freebuf.com/articles/network/150613.html
http://www.freebuf.com/articles/network/150613.html
IE 11浏览器0day漏洞(CVE-2015-2425)UAF分析
http://www.freebuf.com/vuls/151019.html
http://www.freebuf.com/vuls/151019.html
Java反序列化漏洞从理解到实践
http://www.freebuf.com/articles/web/149931.html
http://www.freebuf.com/articles/web/149931.html
IoT_reaper : 一个正在快速扩张的新 IoT 僵尸网络
http://blog.netlab.360.com/iot-reaper-a-quick-summary-of-a-rapid-spreading-new-iot-botnet/
http://blog.netlab.360.com/iot-reaper-a-quick-summary-of-a-rapid-spreading-new-iot-botnet/
使用威胁情报追踪攻击者-Part 2 高级威胁事件分析与防御矩阵
https://zhuanlan.zhihu.com/p/30160133?group_id=903290560648015872
https://zhuanlan.zhihu.com/p/30160133?group_id=903290560648015872
Aktaion - 用于研究 Exploit 和钓鱼检测的开源机器学习工具和样本
https://github.com/jzadeh/Aktaion
https://github.com/jzadeh/Aktaion
HACK.LU CTF 2017 Web Write-up
http://momomoxiaoxi.com/2017/10/19/hackluCTF/
http://momomoxiaoxi.com/2017/10/19/hackluCTF/
Blazy: a modern login brute forcer, CSRF, Clickjacking, Cloudflare and WAF
https://github.com/UltimateHackers/Blazy
https://github.com/UltimateHackers/Blazy
基于Openresty实现业务安全防护
http://www.freebuf.com/vuls/150571.html
http://www.freebuf.com/vuls/150571.html
网络空间靶场能力建设·技术沙龙
https://mp.weixin.qq.com/s/YyGiYORwk78SKRk_oLe0Xg
https://mp.weixin.qq.com/s/YyGiYORwk78SKRk_oLe0Xg
OSINTforPenTests 渗透者的开源情报搜集
https://github.com/g-solaria/OSINTforPenTests/blob/master/OSINTforPenTests.pdf
https://github.com/g-solaria/OSINTforPenTests/blob/master/OSINTforPenTests.pdf
Assemblyline-开源的恶意程序分析工具
https://bitbucket.org/cse-assemblyline/assemblyline/src
https://bitbucket.org/cse-assemblyline/assemblyline/src
互联网企业安全建设之路规划篇
https://xianzhi.aliyun.com/forum/read/2233.html
https://xianzhi.aliyun.com/forum/read/2233.html
MIDA-Multitool: 脚本集合(系统枚举,漏洞验证,权限提升)
https://github.com/NullArray/MIDA-Multitool
https://github.com/NullArray/MIDA-Multitool
实战Teensy烧录渗透测试U盘
http://www.freebuf.com/sectool/150367.html
http://www.freebuf.com/sectool/150367.html
用Sysmon进行威胁狩猎:发现具有宏的Word文档
http://www.4hou.com/web/8084.html
http://www.4hou.com/web/8084.html
RAID 2017 论文列表(Research in Attacks, Intrusions, and Defense)
https://link.springer.com/book/10.1007/978-3-319-66332-6
https://link.springer.com/book/10.1007/978-3-319-66332-6
How i found an SSRF in Yahoo! Guesthouse (Recon Wins)
https://medium.com/@th3g3nt3l/how-i-found-an-ssrf-in-yahoo-guesthouse-recon-wins-8722672e41d4
https://medium.com/@th3g3nt3l/how-i-found-an-ssrf-in-yahoo-guesthouse-recon-wins-8722672e41d4
Typical bank trojan reversed (detailed) [PDF]
http://www.blackstormsecurity.com/docs/FOAATTB.pdf
http://www.blackstormsecurity.com/docs/FOAATTB.pdf
Browser UI Security 技术白皮书
https://paper.seebug.org/papers/Archive/Browser%20UI%20Security%20%E6%8A%80%E6%9C%AF%E7%99%BD%E7%9A%AE%E4%B9%A6.pdf
https://paper.seebug.org/papers/Archive/Browser%20UI%20Security%20%E6%8A%80%E6%9C%AF%E7%99%BD%E7%9A%AE%E4%B9%A6.pdf
Wiping Out CSRF – Joe Rozner – Medium
https://medium.com/@jrozner/wiping-out-csrf-ded97ae7e83f
https://medium.com/@jrozner/wiping-out-csrf-ded97ae7e83f
BlackOasis APT and new targeted attacks leveraging zero-day exploit
https://securelist.com/blackoasis-apt-and-new-targeted-attacks-leveraging-zero-day-exploit/82732/
https://securelist.com/blackoasis-apt-and-new-targeted-attacks-leveraging-zero-day-exploit/82732/
The Cyber Vault Project | National Security Archive
http://nsarchive.gwu.edu/project/cyber-vault-project
http://nsarchive.gwu.edu/project/cyber-vault-project
如何利用Chrome扩展执行恶意操作
http://www.4hou.com/web/7996.html
http://www.4hou.com/web/7996.html
nsearch: minimal script to help find script into the nse database
https://github.com/JKO/nsearch
https://github.com/JKO/nsearch
Pandora’s Box: Auditing for DDoS Vulnerabilities, Part II
https://blog.radware.com/security/2017/10/auditing-ddos-vulnerabilities-2/
https://blog.radware.com/security/2017/10/auditing-ddos-vulnerabilities-2/
SAP_vulnerabilities: DoS exploits for SAP products
https://github.com/vah13/SAP_vulnerabilities
https://github.com/vah13/SAP_vulnerabilities
open-redirect-scanner: open redirect subdomains scanner
https://github.com/ak1t4/open-redirect-scanner
https://github.com/ak1t4/open-redirect-scanner
专治复制粘贴癌症患者的Pastejacking
http://www.4hou.com/web/8005.html
http://www.4hou.com/web/8005.html
BlackOasis APT 和利用 0day 漏洞的新目标攻击
https://paper.seebug.org/418/
https://paper.seebug.org/418/
Browser security beyond sandboxing
https://blogs.technet.microsoft.com/mmpc/2017/10/18/browser-security-beyond-sandboxing/
https://blogs.technet.microsoft.com/mmpc/2017/10/18/browser-security-beyond-sandboxing/
The Stony Path of Android
https://blog.it-securityguard.com/the-stony-path-of-android-%F0%9F%A4%96-bug-bounty-bypassing-certificate-pinning/
https://blog.it-securityguard.com/the-stony-path-of-android-%F0%9F%A4%96-bug-bounty-bypassing-certificate-pinning/
Hacking Bluetooth Smart Locks - workshop
https://smartlockpicking.com/slides/BruCON0x09_2017_Hacking_Bluetooth_Smart_locks.pdf
https://smartlockpicking.com/slides/BruCON0x09_2017_Hacking_Bluetooth_Smart_locks.pdf
如何用一种最简单的方式分析恶意软件
http://www.4hou.com/web/8053.html
http://www.4hou.com/web/8053.html
安全专题
20类252个顶级侦探必备查询网址汇总
https://www.sec-wiki.com/topic/79
https://www.sec-wiki.com/topic/79
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第190期)
