SecWiki周刊(第352期)
2020/11/23-2020/11/29
安全资讯
办理赌博犯罪案件新规(两高一部发布)
https://mp.weixin.qq.com/s/SPl3IXcvcYe3osAjqsswlg
https://mp.weixin.qq.com/s/SPl3IXcvcYe3osAjqsswlg
安全技术
安全狗绕waf、编写sqlmap tamper脚本
https://www.sec-in.com/article/609
https://www.sec-in.com/article/609
记录一些逻辑漏洞案例
https://www.sec-in.com/article/619
https://www.sec-in.com/article/619
一种针对Webpack等前端打包工具构建的网站的自动化测试思路(附开源项目)
https://www.hackinn.com/index.php/archives/744/
https://www.hackinn.com/index.php/archives/744/
Perl基础&代码审计
https://www.mi1k7ea.com/2020/11/24/Perl%E5%9F%BA%E7%A1%80-%E4%BB%A3%E7%A0%81%E5%AE%A1%E8%AE%A1/
https://www.mi1k7ea.com/2020/11/24/Perl%E5%9F%BA%E7%A1%80-%E4%BB%A3%E7%A0%81%E5%AE%A1%E8%AE%A1/
DNSMon: 用DNS数据进行威胁发现
https://mp.weixin.qq.com/s/6CtRd7o4IjreLaU-hFt9vQ
https://mp.weixin.qq.com/s/6CtRd7o4IjreLaU-hFt9vQ
JavaScript编码安全指南 V1.0
https://docs.qq.com/pdf/DSGxHeWhpdElKb3hL
https://docs.qq.com/pdf/DSGxHeWhpdElKb3hL
Metasploit主机上线钉钉通知
https://mp.weixin.qq.com/s/TpC-93r7dA7luEhkiHAi_g
https://mp.weixin.qq.com/s/TpC-93r7dA7luEhkiHAi_g
SharpGetTitle - 基于 C# 的多线程 Web Title 扫描器
https://github.com/Ch1ngg/SharpGetTitle
https://github.com/Ch1ngg/SharpGetTitle
浅谈华为SDL软件安全工程能力
https://mp.weixin.qq.com/s/i1N80qN14hGslRnrIV8mjg
https://mp.weixin.qq.com/s/i1N80qN14hGslRnrIV8mjg
物联网安全系列之探索IoT通信安全的研究之道
https://mp.weixin.qq.com/s/6KviA72Ke0I9ZVYusTDpoA
https://mp.weixin.qq.com/s/6KviA72Ke0I9ZVYusTDpoA
基于Flink的网络流量实时解析
https://mp.weixin.qq.com/s/i7f7p9HBE-03YWNnl_NdPA
https://mp.weixin.qq.com/s/i7f7p9HBE-03YWNnl_NdPA
智能合约:整数溢出、访问控制缺陷漏洞与跨合约调用漏洞
https://mp.weixin.qq.com/s/XRrHeugDMV-6ANRxC0ov3Q
https://mp.weixin.qq.com/s/XRrHeugDMV-6ANRxC0ov3Q
Google BeyondProd安全架构详解
https://mp.weixin.qq.com/s/l__r5GUIZJ_moVcKBF9pyA
https://mp.weixin.qq.com/s/l__r5GUIZJ_moVcKBF9pyA
phpMyAdmin后台Getshell总结
https://mp.weixin.qq.com/s/AYhwvH8Nb2wn-DElN5oi2w
https://mp.weixin.qq.com/s/AYhwvH8Nb2wn-DElN5oi2w
上传"定时任务"获取系统权限
https://www.sec-in.com/article/546
https://www.sec-in.com/article/546
ClickHouse海量数据分析分享
https://mp.weixin.qq.com/s/MnirNdLxyvrCAPd51SiW6w
https://mp.weixin.qq.com/s/MnirNdLxyvrCAPd51SiW6w
西部数码云主机失败提权案例
https://mp.weixin.qq.com/s/tMootD29tV5sPMje5GJFcA
https://mp.weixin.qq.com/s/tMootD29tV5sPMje5GJFcA
以色列网络安全产业发展经验及启示
https://mp.weixin.qq.com/s/YlvN-HBJwQwc9C4YJ0aXWg
https://mp.weixin.qq.com/s/YlvN-HBJwQwc9C4YJ0aXWg
玩转容器安全二 - 容器安全概述
https://blog.csdn.net/bloodzero_new/article/details/110328113
https://blog.csdn.net/bloodzero_new/article/details/110328113
浅谈中间件安全漏洞修复体系建设
https://mp.weixin.qq.com/s/6bJskpL_JLAEIXdGq5Hljw
https://mp.weixin.qq.com/s/6bJskpL_JLAEIXdGq5Hljw
SecWiki周刊(第351期)
https://www.sec-wiki.com/weekly/351
https://www.sec-wiki.com/weekly/351
从sql注入到连接3389
https://xz.aliyun.com/t/8561
https://xz.aliyun.com/t/8561
域之ntds.dit
https://www.sec-in.com/article/617
https://www.sec-in.com/article/617
基于程序分析的大数据应用内存预估方法
https://mp.weixin.qq.com/s/C3yN9nIRTN9ebmvOd8S2JA
https://mp.weixin.qq.com/s/C3yN9nIRTN9ebmvOd8S2JA
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第352期)
