SecWiki周刊(第75期)
2015/08/03-2015/08/09
安全资讯
Terracotta VPN: Enabler of Advanced Threat Anonymity
https://blogs.rsa.com/terracotta-vpn-enabler-of-advanced-threat-anonymity/
https://blogs.rsa.com/terracotta-vpn-enabler-of-advanced-threat-anonymity/
Firefox exploit found in the wild
https://blog.mozilla.org/security/2015/08/06/firefox-exploit-found-in-the-wild/
https://blog.mozilla.org/security/2015/08/06/firefox-exploit-found-in-the-wild/
Chinese VPN Service as Attack Platform
http://krebsonsecurity.com/2015/08/chinese-vpn-service-as-attack-platform/
http://krebsonsecurity.com/2015/08/chinese-vpn-service-as-attack-platform/
Hack The Planet! (Before It’s Too Late)
http://techcrunch.com/2015/08/07/hack-the-planet-before-its-too-late/
http://techcrunch.com/2015/08/07/hack-the-planet-before-its-too-late/
安全技术
Huawei mate 7 TrustZone exploit
https://github.com/retme7/mate7_TZ_exploit
https://github.com/retme7/mate7_TZ_exploit
PHP Challenge 2015 Solution
https://www.sektioneins.de/blog/15-08-03-php_challenge_2015_solution.html
https://www.sektioneins.de/blog/15-08-03-php_challenge_2015_solution.html
Identifier based XSSI attacks
http://www.mbsd.jp/Whitepaper/xssi.pdf
http://www.mbsd.jp/Whitepaper/xssi.pdf
On Browser-Based DDoS Attacks and Economics
http://trouge.net/gp/papers/woot15.pdf
http://trouge.net/gp/papers/woot15.pdf
Black Hat USA 2015 Briefings
http://www.blackhat.com/us-15/briefings.html
http://www.blackhat.com/us-15/briefings.html
商用WAF-impreva SecureSphere分析
http://danqingdani.blog.163.com/blog/static/186094195201575105622567
http://danqingdani.blog.163.com/blog/static/186094195201575105622567
Debugging PHP using Eclipse and PDT
https://eclipse.org/pdt/articles/debugger/os-php-eclipse-pdt-debug-pdf.pdf
https://eclipse.org/pdt/articles/debugger/os-php-eclipse-pdt-debug-pdf.pdf
利用赛门铁克漏洞渗透整个企业网络
https://www.91ri.org/13886.html
https://www.91ri.org/13886.html
分析及防护:Win10 执行流保护绕过问题
http://blog.nsfocus.net/win10-cfg-bypass/
http://blog.nsfocus.net/win10-cfg-bypass/
php比较操作符的安全问题
http://drops.wooyun.org/tips/7679
http://drops.wooyun.org/tips/7679
DEF CON 23 presentations
https://media.defcon.org/DEF%20CON%2023/DEF%20CON%2023%20presentations/
https://media.defcon.org/DEF%20CON%2023/DEF%20CON%2023%20presentations/
Reverse Engineering PCBs with JTAG
https://docs.google.com/presentation/d/13p6O0C3aY-LSeqGAjfEge2XQT6ArfYnJyvu_fhAZlJI/edit?pli=1#slide=id.p
https://docs.google.com/presentation/d/13p6O0C3aY-LSeqGAjfEge2XQT6ArfYnJyvu_fhAZlJI/edit?pli=1#slide=id.p
Building an Empire with PowerShell
http://www.sec-wiki.com/about/submit, http://www.slideshare.net/harmj0y/building-an-empire-with-powershell
http://www.sec-wiki.com/about/submit, http://www.slideshare.net/harmj0y/building-an-empire-with-powershell
Reverse Engineering with JavaScript
https://www.nowsecure.com/blog/2015/08/06/reverse-engineering-with-javascript/
https://www.nowsecure.com/blog/2015/08/06/reverse-engineering-with-javascript/
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第75期)
