SecWiki周刊(第291期)
2019/09/23-2019/09/29
安全资讯
江苏网警发布第六批网络安全行政执法典型案例
https://mp.weixin.qq.com/s/zD-jjZLrAWyE4NPjpguRwg
https://mp.weixin.qq.com/s/zD-jjZLrAWyE4NPjpguRwg
工信部:力争到2025年网络安全产业规模超过2000亿
https://m.21jingji.com/article/20190927/herald/6cbc8365dcdf265b0da4893c233643fb.html
https://m.21jingji.com/article/20190927/herald/6cbc8365dcdf265b0da4893c233643fb.html
安全技术
NIST SP800-207:零信任架构草案
https://mp.weixin.qq.com/s/F0tes4QbhQyv14PFokFYuQ
https://mp.weixin.qq.com/s/F0tes4QbhQyv14PFokFYuQ
记一次利用00进行短信轰炸的渗透手法
https://thief.one/2019/09/27/1/
https://thief.one/2019/09/27/1/
Pyshark:使用了WirdShark的Python数据包解析工具(Tshark)
https://www.freebuf.com/sectool/213642.html
https://www.freebuf.com/sectool/213642.html
JavaProbe: 一款Java应用运行时信息收集工具
https://github.com/0Kee-Team/JavaProbe?from=timeline&isappinstalled=0
https://github.com/0Kee-Team/JavaProbe?from=timeline&isappinstalled=0
ATT&CK 随笔系列之一:右脑知攻、左脑知防
https://www.aqniu.com/tools-tech/56242.html
https://www.aqniu.com/tools-tech/56242.html
RDP 登录日志取证与清除
https://paper.seebug.org/1043/
https://paper.seebug.org/1043/
metinfo 6.2.0正则匹配不严谨导致注入+getshell组合拳
https://www.chabug.org/web/999.html
https://www.chabug.org/web/999.html
PHPStudy后门动态分析
https://nosec.org/home/detail/2990.html
https://nosec.org/home/detail/2990.html
Thinkphp 反序列化利用链深入分析
https://blog.knownsec.com/2019/09/thinkphp-%e5%8f%8d%e5%ba%8f%e5%88%97%e5%8c%96%e5%88%a9%e7%94%a8%e9%93%be%e6%b7%b1%e5%85%a5%e5%88%86%e6%9e%90/
https://blog.knownsec.com/2019/09/thinkphp-%e5%8f%8d%e5%ba%8f%e5%88%97%e5%8c%96%e5%88%a9%e7%94%a8%e9%93%be%e6%b7%b1%e5%85%a5%e5%88%86%e6%9e%90/
基于日志分析的攻击检测和场景还原相关技术
http://www.arkteam.net/?p=4461
http://www.arkteam.net/?p=4461
网络战的战术实践与战略思考
https://mp.weixin.qq.com/s/NcpsTiVKaMj_NTzRydaSag
https://mp.weixin.qq.com/s/NcpsTiVKaMj_NTzRydaSag
LOLBins详解: Living-Off-the-Land Binaries
http://blog.topsec.com.cn/lolbins%e8%af%a6%e8%a7%a3/
http://blog.topsec.com.cn/lolbins%e8%af%a6%e8%a7%a3/
开发者必知必会的 WebSocket 协议
https://juejin.im/post/5d4cbc0cf265da038f47fa37
https://juejin.im/post/5d4cbc0cf265da038f47fa37
基于HIN传导分类的恶意域名识别系统
https://mp.weixin.qq.com/s/H6X-BfR7AqTz9xYWBx_Usg
https://mp.weixin.qq.com/s/H6X-BfR7AqTz9xYWBx_Usg
SecWiki周刊(第290期)
https://www.sec-wiki.com/weekly/290
https://www.sec-wiki.com/weekly/290
复盘网络战:乌克兰二次断电事件分析
https://www.freebuf.com/articles/system/214591.html
https://www.freebuf.com/articles/system/214591.html
Static Malware Analysis with OLE Tools and CyberChef
https://newtonpaul.com/static-malware-analysis-with-ole-tools-and-cyber-chef/
https://newtonpaul.com/static-malware-analysis-with-ole-tools-and-cyber-chef/
Powershell 进阶—基于Powershell的远控分析
https://www.anquanke.com/post/id/186953
https://www.anquanke.com/post/id/186953
Palo Alto Global Protect 网关设备格式化字符串漏洞分析(CVE-2019-1579)
https://www.4hou.com/info/news/20264.html
https://www.4hou.com/info/news/20264.html
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第291期)
