SecWiki周刊(第458期)
2022/12/05-2022/12/11
安全技术
ACSAC 2022 论文录用列表
https://mp.weixin.qq.com/s/hZO9X3nyKEWPLj_zej__8w
https://mp.weixin.qq.com/s/hZO9X3nyKEWPLj_zej__8w
Thinkphp 多语言 RCE
https://tttang.com/archive/1865/
https://tttang.com/archive/1865/
安全测试案例库
http://case.tidesec.com/
http://case.tidesec.com/
2022年度“CCF优秀博士学位论文激励计划”论文列表
https://www.ccf.org.cn/Awards/Awards/2022-12-08/781242.shtml
https://www.ccf.org.cn/Awards/Awards/2022-12-08/781242.shtml
BlackHat2022:4G/5G新型前门攻击解读
https://mp.weixin.qq.com/s/X1lD5PLkUsexAv0B7R3aOQ
https://mp.weixin.qq.com/s/X1lD5PLkUsexAv0B7R3aOQ
开源软件供应链安全系列:OSS风险点与预防
https://mp.weixin.qq.com/s/Sn9-qk_cfgTHBJh9ourD4A
https://mp.weixin.qq.com/s/Sn9-qk_cfgTHBJh9ourD4A
SEVulDet:一种语义增强的可学习漏洞检测器
https://mp.weixin.qq.com/s/agQNMQo9atwZOFjPBleLcg
https://mp.weixin.qq.com/s/agQNMQo9atwZOFjPBleLcg
DISTDET:具有成本效益的分布式网络威胁检测系统
https://mp.weixin.qq.com/s/AdyyZQit40tulOaIyNAbEA
https://mp.weixin.qq.com/s/AdyyZQit40tulOaIyNAbEA
SecWiki周刊(第457期)
https://www.sec-wiki.com/weekly/457
https://www.sec-wiki.com/weekly/457
ConDySTA: 上下文感知的动态辅助静态污点分析
https://mp.weixin.qq.com/s/syrJfq9HsB_Ob4yvN4_KtA
https://mp.weixin.qq.com/s/syrJfq9HsB_Ob4yvN4_KtA
从Deserialization和覆盖trustURLCodebase进行JNDI注入
https://sec-in.com/article/1980
https://sec-in.com/article/1980
S&P'22:探测并抵御CI服务中的非法加密挖矿
https://mp.weixin.qq.com/s/uC7Jbtbqs2BHPtjiiQqG8Q
https://mp.weixin.qq.com/s/uC7Jbtbqs2BHPtjiiQqG8Q
-----微信ID:SecWiki-----
SecWiki,12年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第458期)
