SecWiki周刊(第99期)
2016/01/18-2016/01/24
安全资讯
安全技术
headless-chromium-in-c-with-cefglue
http://joelverhagen.com/blog/2013/12/headless-chromium-in-c-with-cefglue/
http://joelverhagen.com/blog/2013/12/headless-chromium-in-c-with-cefglue/
BSides Columbus 2016 Videos
https://www.irongeek.com/i.php?page=videos/bsidescolumbus2016/mainlist
https://www.irongeek.com/i.php?page=videos/bsidescolumbus2016/mainlist
My Experience With the Great Firewall of China
http://blog.zorinaq.com/?e=81
http://blog.zorinaq.com/?e=81
awesome-sec-talks: A collected list of awesome security talks
https://github.com/PaulSec/awesome-sec-talks
https://github.com/PaulSec/awesome-sec-talks
如何扫描统计全国Telnet默认口令
http://www.freebuf.com/articles/terminal/93851.html
http://www.freebuf.com/articles/terminal/93851.html
2015年网络安全威胁的回顾与展望
http://www.antiy.com/response/2015_Antiy_Annual_Security_Report.html
http://www.antiy.com/response/2015_Antiy_Annual_Security_Report.html
know-your-tools-cve-2015-2342-ioc-and-metasploit
https://www.graytier.com/blog/know-your-tools-cve-2015-2342-ioc-and-metasploit/
https://www.graytier.com/blog/know-your-tools-cve-2015-2342-ioc-and-metasploit/
Probabilistic Graphical Models for Fraud Detection
http://blog.applied.ai/probabilistic-graphical-models-for-fraud-detection-part-1/
http://blog.applied.ai/probabilistic-graphical-models-for-fraud-detection-part-1/
特性还是漏洞?滥用 SQLite 分词器
http://blog.chaitin.cn/abusing_fts3_tokenizer/
http://blog.chaitin.cn/abusing_fts3_tokenizer/
Yahoo Mail stored XSS
https://klikki.fi/adv/yahoo.html
https://klikki.fi/adv/yahoo.html
域渗透——Pass The Ticket
http://drops.wooyun.org/tips/12159
http://drops.wooyun.org/tips/12159
Adversarial Tactics, Techniques, and Common Knowledge
https://attack.mitre.org/wiki/Main_Page
https://attack.mitre.org/wiki/Main_Page
当xss点出现在js的if判断中(if-reflection-point)
https://respectxss.blogspot.de/2016/01/if-reflection-point.html
https://respectxss.blogspot.de/2016/01/if-reflection-point.html
Hacking Team流量攻击之EXE攻击分析
http://www.freebuf.com/articles/system/93394.html
http://www.freebuf.com/articles/system/93394.html
Autopwn every Android device on your network using BetterCap
http://www.evilsocket.net/2016/01/18/autopwn-every-android-device-on-your-network-using-bettercap-the-and-addjavascriptinterface-vulnerability/
http://www.evilsocket.net/2016/01/18/autopwn-every-android-device-on-your-network-using-bettercap-the-and-addjavascriptinterface-vulnerability/
解密BBOSS组织:全球超十二万站点的地下掌控者
http://www.freebuf.com/articles/system/93491.html
http://www.freebuf.com/articles/system/93491.html
写给大家看的中文排版指南
http://zhuanlan.zhihu.com/uicircle/20506092
http://zhuanlan.zhihu.com/uicircle/20506092
Text Classification and Sentiment Analysis
https://ataspinar.wordpress.com/2015/11/16/text-classification-and-sentiment-analysis/
https://ataspinar.wordpress.com/2015/11/16/text-classification-and-sentiment-analysis/
CVE-2015-5090 – Adobe Reader/Acrobat Pro Privilege Escalation
http://warchest.fusionx.com/cve-2015-5090-adobe-readeracrobat-pro-privilege-escalation/
http://warchest.fusionx.com/cve-2015-5090-adobe-readeracrobat-pro-privilege-escalation/
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第99期)
