SecWiki周刊(第211期)
2018/03/12-2018/03/18
安全资讯
专访Eur3kA战队Atum队长:我们战队充满热情和活力
https://mp.weixin.qq.com/s/wKawjbRxyXwMxij4tlZ6jg
https://mp.weixin.qq.com/s/wKawjbRxyXwMxij4tlZ6jg
近期“污水”(MuddyWater)APT组织攻击活动汇总
http://www.freebuf.com/articles/web/165061.html
http://www.freebuf.com/articles/web/165061.html
当前量子计算技术前沿是什么水平
https://www.zhihu.com/question/53050049/answer/343521753
https://www.zhihu.com/question/53050049/answer/343521753
“软件智能分析”学术沙龙第五次活动2018年3月20日开办
https://www.inforsec.org/wp/?p=2418
https://www.inforsec.org/wp/?p=2418
嫌犯一露面系统就报警 —— 贵阳公安“人像大数据”系统
https://mp.weixin.qq.com/s/R1Yw1sZxetiVEj0lBKbKQw
https://mp.weixin.qq.com/s/R1Yw1sZxetiVEj0lBKbKQw
美国“天网”系统:大数据算法下的滥杀
https://mp.weixin.qq.com/s/yEUN2uLsXqPLBC_JzEcK2A
https://mp.weixin.qq.com/s/yEUN2uLsXqPLBC_JzEcK2A
突破物理隔离:利用扬声器和耳机隐秘传输数据
http://www.aqniu.com/hack-geek/32079.html
http://www.aqniu.com/hack-geek/32079.html
安全技术
CLTPHP_v5.5.3 前台无限制Getshell
https://mp.weixin.qq.com/s?__biz=MzA3NzE2MjgwMg==&mid=301419949&idx=1&sn=0a4ab4f3c69e22aba6a69a09bcbfe009&chksm=0b55ddf03c2254e6982bd0b8fca4b410462781b3435acf837ba622888aa1cd62631736f3660c&mpshare=1&scene=23&srcid=0318lckYIwNLZKInw7H18N4w#rd
https://mp.weixin.qq.com/s?__biz=MzA3NzE2MjgwMg==&mid=301419949&idx=1&sn=0a4ab4f3c69e22aba6a69a09bcbfe009&chksm=0b55ddf03c2254e6982bd0b8fca4b410462781b3435acf837ba622888aa1cd62631736f3660c&mpshare=1&scene=23&srcid=0318lckYIwNLZKInw7H18N4w#rd
Java-Web-Security 安全书籍
https://github.com/dschadow/Java-Web-Security
https://github.com/dschadow/Java-Web-Security
敏信审计系列之DWR开发框架
https://mp.weixin.qq.com/s/tiLU2CiVhRKsOnsx8pZkJg
https://mp.weixin.qq.com/s/tiLU2CiVhRKsOnsx8pZkJg
一起玩蛇-python武器库的打开方式
http://mp.weixin.qq.com/s/Bc8Ko9JFUMixe9GDUzWBNw
http://mp.weixin.qq.com/s/Bc8Ko9JFUMixe9GDUzWBNw
Web日志安全分析系统实践
https://xianzhi.aliyun.com/forum/topic/2136
https://xianzhi.aliyun.com/forum/topic/2136
从S2-052补丁分析Xstream反序列化漏洞修复方案
http://www.csecgroup.com/blog/Fix-xstream-object-deserialization-via-White-Listing/
http://www.csecgroup.com/blog/Fix-xstream-object-deserialization-via-White-Listing/
ESM安装配置指南-ArcSight实战系列之三
https://mp.weixin.qq.com/s/e31X64Xg6pUoM_xysiDP6Q
https://mp.weixin.qq.com/s/e31X64Xg6pUoM_xysiDP6Q
知识图谱系列(1)基础知识简介
http://www.polaris-lab.com/index.php/archives/474/
http://www.polaris-lab.com/index.php/archives/474/
如何劫持大疆Spark无人机
https://www.anquanke.com/post/id/101057
https://www.anquanke.com/post/id/101057
针对OS X上Coldroot RAT跨平台后门的详细分析
https://www.anquanke.com/post/id/100727
https://www.anquanke.com/post/id/100727
MsraMiner: 潜伏已久的挖矿僵尸网络
http://blog.netlab.360.com/msraminer-qian-fu-yi-jiu-de-wa-kuang-jiang-shi-wang-luo/
http://blog.netlab.360.com/msraminer-qian-fu-yi-jiu-de-wa-kuang-jiang-shi-wang-luo/
N1CTF Easy&&Hard Php Writeup
https://xianzhi.aliyun.com/forum/topic/2148
https://xianzhi.aliyun.com/forum/topic/2148
Cobalt Strike—利用混淆处理绕过Windows Defender
https://xianzhi.aliyun.com/forum/topic/2173
https://xianzhi.aliyun.com/forum/topic/2173
CTF线下赛writeup&tinyblog代码审计
https://www.anquanke.com/post/id/100991
https://www.anquanke.com/post/id/100991
klara: KasperskyLab hunt for new malware using Yara
https://github.com/KasperskyLab/klara?files=1
https://github.com/KasperskyLab/klara?files=1
价值2W刀的Google存储型XSS和SSRF
https://blog.formsec.cn/2018/03/08/google-xss-ssrf-2w/
https://blog.formsec.cn/2018/03/08/google-xss-ssrf-2w/
养鸡厂厂长日记—规模化Botnet养殖和应用
https://xianzhi.aliyun.com/forum/topic/2141
https://xianzhi.aliyun.com/forum/topic/2141
Syslog类型Connector安装配置-ArcSight实战系列之四
https://mp.weixin.qq.com/s/LgrUUhWGN7SV0Po4aS7cMA
https://mp.weixin.qq.com/s/LgrUUhWGN7SV0Po4aS7cMA
漫谈漏洞扫描器的设计与开发
https://thief.one/2018/03/16/1/
https://thief.one/2018/03/16/1/
金融企业信息安全团队建设(务虚篇)
http://mp.weixin.qq.com/s/1s0lQJXqIHc83Tithcj1sw
http://mp.weixin.qq.com/s/1s0lQJXqIHc83Tithcj1sw
CNCERT 2017年我国联网智能设备安全情况报告
http://www.freebuf.com/articles/terminal/164866.html
http://www.freebuf.com/articles/terminal/164866.html
打造一款属于自己的远程管理软件(一)
http://www.freebuf.com/sectool/164028.html
http://www.freebuf.com/sectool/164028.html
SecWiki周刊(第210期)
https://www.sec-wiki.com/weekly/210
https://www.sec-wiki.com/weekly/210
机器学习与网络安全相关的资料
http://www.lucien116.com/archives/407
http://www.lucien116.com/archives/407
渗透技巧—获得Windows系统的远程桌面连接历史记录
https://xianzhi.aliyun.com/forum/topic/2161
https://xianzhi.aliyun.com/forum/topic/2161
打造一款属于自己的远程管理软件(三)
http://www.freebuf.com/sectool/164513.html
http://www.freebuf.com/sectool/164513.html
国外和国内工业控制产品信息安全认证
https://mp.weixin.qq.com/s/ImSw-mCfqE-OGiZMQgpvwA
https://mp.weixin.qq.com/s/ImSw-mCfqE-OGiZMQgpvwA
JBoss引起的内网渗透-2
http://rcoil.me/2018/03/JBoss%E5%BC%95%E8%B5%B7%E7%9A%84%E5%86%85%E7%BD%91%E6%B8%97%E9%80%8F-2/
http://rcoil.me/2018/03/JBoss%E5%BC%95%E8%B5%B7%E7%9A%84%E5%86%85%E7%BD%91%E6%B8%97%E9%80%8F-2/
MongoDB_AutoDump: 快速探测未授权MongoDB数据库结构
https://github.com/az0ne/MongoDB_AutoDump
https://github.com/az0ne/MongoDB_AutoDump
Analysis of a Kubernetes hack — Backdooring through kubelet
https://medium.com/handy-tech/analysis-of-a-kubernetes-hack-backdooring-through-kubelet-823be5c3d67c
https://medium.com/handy-tech/analysis-of-a-kubernetes-hack-backdooring-through-kubelet-823be5c3d67c
SSRF技巧之如何绕过filter_var( )
https://www.anquanke.com/post/id/101058
https://www.anquanke.com/post/id/101058
2018工业互联网:政策战略、关键技术、典型案例深度解读
https://mp.weixin.qq.com/s/XGLhdAljXv2nAJ_XL7WBeA
https://mp.weixin.qq.com/s/XGLhdAljXv2nAJ_XL7WBeA
Exploiting Adobe ColdFusion before CVE-2017-3066
https://codewhitesec.blogspot.com.au/2018/03/exploiting-adobe-coldfusion.html
https://codewhitesec.blogspot.com.au/2018/03/exploiting-adobe-coldfusion.html
诸神之眼nmap定制化之NSE进阶
http://www.freebuf.com/column/165252.html
http://www.freebuf.com/column/165252.html
Docker容器构建过程的安全性分析
http://www.4hou.com/web/10659.html
http://www.4hou.com/web/10659.html
PHP类继承与全局变量组合造成的漏洞分析
http://phantom0301.cc/2018/03/12/php-class/
http://phantom0301.cc/2018/03/12/php-class/
New investigations into the CCleaner incident point to a possible third stage
https://blog.avast.com/new-investigations-in-ccleaner-incident-point-to-a-possible-third-stage-that-had-keylogger-capacities
https://blog.avast.com/new-investigations-in-ccleaner-incident-point-to-a-possible-third-stage-that-had-keylogger-capacities
Drive-by as a service: BlackTDS
https://www.proofpoint.com/us/threat-insight/post/drive-service-blacktds
https://www.proofpoint.com/us/threat-insight/post/drive-service-blacktds
针对Weblogic测试的一些小总结
https://xianzhi.aliyun.com/forum/topic/2149
https://xianzhi.aliyun.com/forum/topic/2149
2017年百度安全技术精选
https://mp.weixin.qq.com/s/6evxKjAzc3sweIQrbC3QrA
https://mp.weixin.qq.com/s/6evxKjAzc3sweIQrbC3QrA
打造一款属于自己的远程管理软件(二)
http://www.freebuf.com/sectool/164385.html
http://www.freebuf.com/sectool/164385.html
Information Extraction with Stanford NLP
http://philipperemy.github.io/information-extract/
http://philipperemy.github.io/information-extract/
配置Additional LSA Protection监控Password Filter DL
https://3gstudent.github.io/3gstudent.github.io/%E9%85%8D%E7%BD%AEAdditional-LSA-Protection%E7%9B%91%E6%8E%A7Password-Filter-DLL/
https://3gstudent.github.io/3gstudent.github.io/%E9%85%8D%E7%BD%AEAdditional-LSA-Protection%E7%9B%91%E6%8E%A7Password-Filter-DLL/
如何Fuzz Json Web Services
https://www.anquanke.com/post/id/100916
https://www.anquanke.com/post/id/100916
Django开发最佳实践(上)
http://www.freebuf.com/column/165233.html
http://www.freebuf.com/column/165233.html
uxss-db: Universal Cross-site Scripting DB [+ other browser vulnerabilities]
https://github.com/Metnew/uxss-db
https://github.com/Metnew/uxss-db
在CI中实现持续Web安全扫描
http://www.infoq.com/cn/articles/WebScan-CI
http://www.infoq.com/cn/articles/WebScan-CI
Mysql 执行优先级和sleep函数延时注入的一个Tip
http://blackwolfsec.cc/2018/03/13/Mysql_sleep/
http://blackwolfsec.cc/2018/03/13/Mysql_sleep/
Paper_for_Digital_Forensics: 数字取证相关的论文(摄像头特征)
https://github.com/NetSecLab/Paper_for_Digital_Forensics
https://github.com/NetSecLab/Paper_for_Digital_Forensics
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第211期)
