SecWiki周刊(第398期)
2021/10/11-2021/10/17
安全技术
Host碰撞原理及复现(含利用工具)
https://mp.weixin.qq.com/s/uH40OJ4ev0rpuzDLMn7x-A
https://mp.weixin.qq.com/s/uH40OJ4ev0rpuzDLMn7x-A
CodeQL从0到1(内附Shiro检测demo)
https://www.anquanke.com/post/id/255721
https://www.anquanke.com/post/id/255721
基于溯源图的APT攻击检测安全顶会论文总结
https://mp.weixin.qq.com/s/NosFWfRl9Mmqi2_QXUJNpw
https://mp.weixin.qq.com/s/NosFWfRl9Mmqi2_QXUJNpw
JAVA反序列化之C3P0不出网利用
https://mp.weixin.qq.com/s/KBog9XXz7Of93hAiV8Y7fQ
https://mp.weixin.qq.com/s/KBog9XXz7Of93hAiV8Y7fQ
Metarget:构建云原生基础设施靶场
https://github.com/Metarget/metarget
https://github.com/Metarget/metarget
yak gRPC Client GUI - 集成化单兵工具平台
https://github.com/yaklang/yakit
https://github.com/yaklang/yakit
SecWiki周刊(第397期)
https://www.sec-wiki.com/weekly/397
https://www.sec-wiki.com/weekly/397
从零开始搭建一个反弹shell协同平台
https://www.anquanke.com/post/id/254442?
https://www.anquanke.com/post/id/254442?
TCTF 2021 0bf
https://www.anquanke.com/post/id/255241
https://www.anquanke.com/post/id/255241
2021中国网络安全产业分析报告解读
https://mp.weixin.qq.com/s/YgjVkukxQUTLBG1uRL-kEQ
https://mp.weixin.qq.com/s/YgjVkukxQUTLBG1uRL-kEQ
rdp 协议攻击面与安全性分析
https://paper.seebug.org/1734/
https://paper.seebug.org/1734/
为什么机器学习解决网络安全问题总是失败:脆弱的系统工程
https://toooold.com/2021/10/11/why_ml_fails_security_frag_cn.html?continueFlag=55bb45962d1070d2fe02f082a54e0d98
https://toooold.com/2021/10/11/why_ml_fails_security_frag_cn.html?continueFlag=55bb45962d1070d2fe02f082a54e0d98
通过缓存属性感知特征进行DNS隧道检测
https://mp.weixin.qq.com/s/hhYmO1Oz2VLsePWJT5wIiQ
https://mp.weixin.qq.com/s/hhYmO1Oz2VLsePWJT5wIiQ
捕获透明网络钓鱼:分析和检测中间人网络钓鱼工具套件
https://mp.weixin.qq.com/s/KW15JK8XJKFWRe-FjFMOSA
https://mp.weixin.qq.com/s/KW15JK8XJKFWRe-FjFMOSA
深度追踪 Keksec 僵尸网络
https://mp.weixin.qq.com/s/xDCS2GTAIQOMuM6TFSdyYw
https://mp.weixin.qq.com/s/xDCS2GTAIQOMuM6TFSdyYw
[HTB] Luanne Writeup
https://mp.weixin.qq.com/s/GHC0G6ZVTIt_pSYDHTC4pw
https://mp.weixin.qq.com/s/GHC0G6ZVTIt_pSYDHTC4pw
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第398期)
