SecWiki周刊(第210期)
2018/03/05-2018/03/11
安全资讯
[人物]  黑产猎人:老毕
https://mp.weixin.qq.com/s/Ii7dZSaN1XDWupYP8aVKIw
[新闻]  直接接管暗网网站,钓出几十万毒品买卖家信息
https://mp.weixin.qq.com/s/DqE9u4eSClAA7d1MFuUcBA
[新闻]  3月7日这一夜,黑客耍了所有人
https://mp.weixin.qq.com/s/z39hBMif1bQJeb4Ar_zRAw
[新闻]  Hacking Team's infamous surveillance tool detected by ESET systems
https://www.welivesecurity.com/2018/03/09/new-traces-hacking-team-wild/
[新闻]  美国2018年版《国防战略报告》概要(全文翻译)
https://mp.weixin.qq.com/s/m_aj7s3X0MtDK1ADpV5dGQ
安全技术
[漏洞分析]   区块链安全 - 以太坊短地址攻击
http://blog.csdn.net/u011721501/article/details/79476587
[漏洞分析]  Exim Off-by-one RCE: Exploiting CVE-2018-6789 with Fully Mitigations Bypassing
https://devco.re/blog/2018/03/06/exim-off-by-one-RCE-exploiting-CVE-2018-6789-en/
[Web安全]  S7scan: 集七种功能的漏洞综合检测利用工具
https://github.com/jiangsir404/S7scan
[Web安全]  从SQL注入到Getshell:记一次禅道系统的渗透
http://www.cnblogs.com/iamstudy/articles/chandao_pentest_1.html
[Web安全]  Java Web 代码安全审计实战1-跨站 XSS
https://www.ibm.com/developerworks/cn/java/j-lo-audit-xss/index.html
[人物]  tombkeeper 教主微博语录
https://github.com/findneo/TKposts
[Web安全]  代码审计指南
http://blog.nsfocus.net/code-audit-instruction/
[Web安全]  渗透Facebook 的思路与发现
https://xianzhi.aliyun.com/forum/topic/2128
[Web安全]  PHP SSRF Techniques - How to bypass filter_var(), preg_match() and parse_url()
https://medium.com/secjuice/php-ssrf-techniques-9d422cb28d51
[编程技术]  爬虫基础篇[Web 漏洞扫描器]
http://blog.fatezero.org/2018/03/05/web-scanner-crawler-01/
[Web安全]  Newbie-Security-List-网络安全学习资料小合集
https://github.com/findneo/Newbie-Security-List
[其它]  我的时间管理之路(一)
https://mp.weixin.qq.com/s/v_Uw6XbK3ksecPOH2bcDfw
[取证分析]  ATT&CK™ Navigator: 新版恶意策略、技术和常识模型
https://mitre.github.io/attack-navigator/enterprise/
[Web安全]  TOMCAT安全测试概要
http://www.91ri.org/17611.html
[漏洞分析]  Encryption 101系列:破解之道
https://xianzhi.aliyun.com/forum/topic/2132
[编程技术]  基于Python的自动化代码审计
https://blog.formsec.cn/2018/02/11/python-audit-auto/media/python_audit.pdf
[Web安全]  Java Web 代码安全审计实战2-SQL 注入
https://www.ibm.com/developerworks/cn/java/j-lo-audit-sql-injection/index.html
[编程技术]  PaperAirplane: 一个类似于Proxifier的SOCKS5代理工具
https://github.com/liulilittle/PaperAirplane
[设备安全]  2017年我国联网智能设备安全情况报告
https://mp.weixin.qq.com/s/3t8-Wc-0Z0ROB66A36jZ4w
[Web安全]  前端黑魔法之远程控制地址栏
https://www.leavesongs.com/PENETRATION/use-target-to-spoof-fishing.html
[漏洞分析]  以太坊区块链网络的Eclipse攻击详解
http://www.4hou.com/technology/10570.html
[Web安全]  Getting any Facebook user's friend list and partial payment card details
https://www.josipfranjkovic.com/blog/facebook-friendlist-paymentcard-leak
[其它]  基于MetaSploit内网穿透渗透测试
https://blog.sectown.cn/archives/323/
[Web安全]  Java Web 代码安全审计实战4-环境加固
https://www.ibm.com/developerworks/cn/java/j-lo-audit-environmental-reinforcement/index.html
[杂志]  SecWiki周刊(第209期)
https://www.sec-wiki.com/weekly/209
[工具]  Python Remote Administration Tool (RAT) to gain meterpreter session
https://github.com/islamTaha12/Python-Rootkit
[Web安全]  Java Web 代码安全审计实战3-文件路径操纵、系统日志欺骗、线程安全和资源未释放
https://www.ibm.com/developerworks/cn/java/j-lo-audit-file-safe/index.html
[恶意分析]  malware-ioc: Indicators of Compromises (IOC) of eset
https://github.com/eset/malware-ioc
[取证分析]  Lazarus APT组织最新攻击活动揭露
https://mp.weixin.qq.com/s/-cCnpo1kBebvJ7WMRj65tg
[恶意分析]  CVE-2018-4878 (Flash Player up to 28.0.0.137) and Exploit Kits
https://malware.dontneedcoffee.com/2018/03/CVE-2018-4878.html
[Web安全]  企业安全项目-前端绕过专项整改
http://mp.weixin.qq.com/s/0zWcGrZwB5siMNDeFUJcEg
[运维安全]  威胁情报之落地实战-由灰向黑篇
https://mp.weixin.qq.com/s/-EcZnVvwBo2AEO7aHUIvMQ
[Web安全]  How I found a $5,000 Google Maps XSS (by fiddling with Protobuf)
https://medium.com/@marin_m/how-i-found-a-5-000-google-maps-xss-by-fiddling-with-protobuf-963ee0d9caff
[Web安全]  XSS-hunter: 收集Webview 页面上存在的反射,储存型XSS
https://github.com/lcatro/XSS-hunter
[运维安全]  0xB8 威胁情报体系与企业SIEM结合的那些套路—威胁情报的需求判定和选择
https://zhuanlan.zhihu.com/p/34336700?group_id=955089373448953856
[Web安全]  Java代码审计-层层推进
https://mp.weixin.qq.com/s/muv_q5ENH_0_zpWZqqvHVw
[漏洞分析]  针对Linux邮件传输代理Exim缓冲区溢出漏洞的分析
https://www.anquanke.com/post/id/100447
[Web安全]  Apache Fineract SQL Inject—CVE-2017-5663
https://xianzhi.aliyun.com/forum/topic/1978
[漏洞分析]  Debug Blocker反调试技术分析
https://www.anquanke.com/post/id/100115
[文档]  how-to-learn-powershell(内有部分资源列表)
http://www.jaapbrasser.com/how-to-learn-powershell/
[工具]  Source Code Search Engine
https://publicwww.com/
[Web安全]  敏信审计系列之Dorado5开发框架
https://xianzhi.aliyun.com/forum/topic/2114
[其它]  思科年度安全报告(2018)
https://xianzhi.aliyun.com/forum/topic/2105?from=timeline
[Web安全]  Drcomdecoder: Drcom 数据库账号密码加解密
https://github.com/scanfsec/Drcomdecoder
[Web安全]  Mozilla Rhino 反序列化漏洞 POC 分析
https://mp.weixin.qq.com/s/qm3mS78r43IIOHgZ-6YyGw
[编程技术]  利用Debug Help Library定位Windows NT内核未导出的函数和结构体
http://www.4hou.com/system/10590.html
[其它]  互联网反欺诈体系漫谈
https://mp.weixin.qq.com/s/KcXd8lssUajdnron0A2gXw
[工具]  Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
https://github.com/UnaPibaGeek/ctfr
[漏洞分析]  区块链安全-DAO攻击事件解析
http://blog.csdn.net/u011721501/article/details/79450122
[恶意分析]  使用 Pin 和 Cuckoo 自动化追踪恶意软件
http://blog.fernandodominguez.me/automating-malware-tracing-with-pin-and-cuckoo/
[运维安全]  Port-knocking 简单教程
http://www.cnblogs.com/xiaoxiaoleo/p/8523322.html
[移动安全]  血族手游Lua脚本及资源文件解密
https://blog.sectown.cn/archives/320/
[Web安全]  谈谈Selenium Server的安全问题 - 未完
http://www.polaris-lab.com/index.php/archives/454/
[Web安全]  Laravel Stored XSS Vulnerability
https://x1m.nl/poc/2018/03/07/Laravel-XSS-Vuln/
[工具]  OpticSpy:用于解码光学隐蔽信道传输的数据的工具
http://www.4hou.com/tools/10583.html
[Web安全]  fineract v1.1.0 CVE三连爆
https://mp.weixin.qq.com/s/g3qha-O4gdMZQrPmXEcy_A
[编程技术]  Headless Chrome and API
https://thief.one/2018/03/06/1/
[Web安全]  敏信审计系列之dorado5开发框架
https://mp.weixin.qq.com/s/y1TOfw063Zh6DHhgLQPpzQ
[取证分析]  如何清除window上的RDP连接记录
https://xianzhi.aliyun.com/forum/topic/2102
[漏洞分析]  An Exploration of Security When Building Docker Containers
https://blog.heroku.com/exploration-of-security-when-building-docker-containers
[设备安全]  Deconstructing the Xbox Boot ROM
https://mborgerson.com/deconstructing-the-xbox-boot-rom/
-----微信ID:SecWiki-----
SecWiki,5年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com

本期原文地址: SecWiki周刊(第210期)