SecWiki周刊(第27期)
2014/09/01-2014/09/07
安全资讯
一周海外安全事件回顾(8.24-8.30)
http://www.freebuf.com/news/special/42231.html
http://www.freebuf.com/news/special/42231.html
安全技术
RadioEye:基于Libnfc开源组件的RFID安全审计工具
http://radioeye.sinaapp.com/
http://radioeye.sinaapp.com/
【门神】WAF应用层实现的架构漫谈
http://security.tencent.com/index.php/blog/msg/63
http://security.tencent.com/index.php/blog/msg/63
内网中使用metasploit进行渗透测试
http://www.freebuf.com/articles/web/42208.html
http://www.freebuf.com/articles/web/42208.html
如何使用印象笔记管理大量笔记?
http://www.read.org.cn/html/2382-ru-shi-yong-yin-xiang-bi-ji-guan-li-da-liang-bi-ji.html
http://www.read.org.cn/html/2382-ru-shi-yong-yin-xiang-bi-ji-guan-li-da-liang-bi-ji.html
利用漏洞攻击来盗号游戏、IM账号猖獗
http://blog.vulnhunt.com/index.php/2014/09/05/vsr-2014-24/
http://blog.vulnhunt.com/index.php/2014/09/05/vsr-2014-24/
Analysis of Havex
https://www.malware.lu/articles/2014/09/03/analysis-of-havex.html
https://www.malware.lu/articles/2014/09/03/analysis-of-havex.html
2014PHP技术峰会文档
http://www.phpconchina.com/
http://www.phpconchina.com/
Darwin’s Favorite APT Group
http://www.fireeye.com/blog/technical/botnet-activities-research/2014/09/darwins-favorite-apt-group-2.html
http://www.fireeye.com/blog/technical/botnet-activities-research/2014/09/darwins-favorite-apt-group-2.html
常见Flash XSS攻击方式
http://drops.wooyun.org/tips/2924
http://drops.wooyun.org/tips/2924
来自HeroKu的HTTP API 设计指南(中文版)
http://get.jobdeer.com/343.get
http://get.jobdeer.com/343.get
Android App安全加固行业分析报告
http://www.freebuf.com/articles/terminal/42525.html
http://www.freebuf.com/articles/terminal/42525.html
Contemporary-Automatic-Program-Analysis
https://github.com/HockeyInJune/Contemporary-Automatic-Program-Analysis
https://github.com/HockeyInJune/Contemporary-Automatic-Program-Analysis
Spring框架问题分析
http://drops.wooyun.org/tips/2892
http://drops.wooyun.org/tips/2892
Inferring User Demographics and Social Strategies in Mobile Social Networks
http://keg.cs.tsinghua.edu.cn/jietang/publications/KDD14-Dong-WhoAmI.pdf
http://keg.cs.tsinghua.edu.cn/jietang/publications/KDD14-Dong-WhoAmI.pdf
渗透中寻找突破口的那些事
http://drops.wooyun.org/tips/2915
http://drops.wooyun.org/tips/2915
Android 快速开发框架 UltimateAndroid
http://blog.marshalchen.com/UltimateAndroid/#chinese_introduction
http://blog.marshalchen.com/UltimateAndroid/#chinese_introduction
一个产品经理眼中的云计算:前生今世和未来
http://weibo.com/p/1001603751900137825351
http://weibo.com/p/1001603751900137825351
Introducing Filescanner.exe
http://blog.didierstevens.com/2014/09/03/introducing-filescanner-exe/
http://blog.didierstevens.com/2014/09/03/introducing-filescanner-exe/
RE Malware Analysis Skills
http://tylerhalfpop.com/re/2014/09/06/re-malware-analysis-skills/
http://tylerhalfpop.com/re/2014/09/06/re-malware-analysis-skills/
React:A JavaScript library for building user interfaces
http://facebook.github.io/react/index.html
http://facebook.github.io/react/index.html
Black Hat video
https://www.youtube.com/user/BlackHatOfficialYT/
https://www.youtube.com/user/BlackHatOfficialYT/
PHPCON CHINA 2014 Video
http://www.youku.com/playlist_show/id_22801263_ascending_0_mode_pic.html
http://www.youku.com/playlist_show/id_22801263_ascending_0_mode_pic.html
漏洞利用与卡巴斯基的对抗之路
http://drops.wooyun.org/tips/2903
http://drops.wooyun.org/tips/2903
分享信息安全工作小记
http://drops.wooyun.org/tips/2945
http://drops.wooyun.org/tips/2945
安全专题
边信道攻击研究的相关资料
https://www.sec-wiki.com/topic/47
https://www.sec-wiki.com/topic/47
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第27期)
