SecWiki周刊(第344期)
2020/09/28-2020/10/04
安全技术
ksubdomain: 无状态子域名爆破工具
https://github.com/knownsec/ksubdomain
https://github.com/knownsec/ksubdomain
利用图片隐写术远程动态加载shellcode
https://c1y2m3.github.io/c1y2m3.github.io/2020/08/24/%E5%9B%BE%E7%89%87%E9%9A%90%E5%86%99%E6%9C%AFshellcode/
https://c1y2m3.github.io/c1y2m3.github.io/2020/08/24/%E5%9B%BE%E7%89%87%E9%9A%90%E5%86%99%E6%9C%AFshellcode/
Mail-Probe: 邮箱探针后台管理系统
https://github.com/r00tSe7en/Mail-Probe
https://github.com/r00tSe7en/Mail-Probe
Webshell研究综述:检测与对抗技术的动态博弈进展
https://zhuanlan.zhihu.com/p/259985000?utm_oi=771453567763492864
https://zhuanlan.zhihu.com/p/259985000?utm_oi=771453567763492864
ShadowMove:隐蔽的横向移动策略
https://www.anquanke.com/post/id/218560
https://www.anquanke.com/post/id/218560
Cobalt Strike 绕过流量审计
https://paper.seebug.org/1349/
https://paper.seebug.org/1349/
从美国顶尖信息技术咨询公司博思艾伦报告看俄罗斯网络作战
https://mp.weixin.qq.com/s/aq7mFjsz_sT8JqWFHRSwHQ
https://mp.weixin.qq.com/s/aq7mFjsz_sT8JqWFHRSwHQ
Go二进制文件逆向分析从基础到进阶——MetaInfo、函数符号和源码文件路径列表
https://www.anquanke.com/post/id/215419
https://www.anquanke.com/post/id/215419
Win the 0-Day Racing Game Against Botnet on Cloud
https://static.cdxy.me/asia-20-Xu-Win-The-0-Day-Racing-Game-Against-Botnet-In-Public-Cloud.pdf
https://static.cdxy.me/asia-20-Xu-Win-The-0-Day-Racing-Game-Against-Botnet-In-Public-Cloud.pdf
Go二进制文件逆向分析从基础到进阶——数据类型
https://www.anquanke.com/post/id/215820
https://www.anquanke.com/post/id/215820
Go二进制文件逆向分析从基础到进阶——Tips与实战案例
https://www.anquanke.com/post/id/218674
https://www.anquanke.com/post/id/218674
SecWiki周刊(第343期)
https://www.sec-wiki.com/weekly/343
https://www.sec-wiki.com/weekly/343
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第344期)
