資安年會:
1.2016年高校網絡信息安全學術年會
資安趨勢:
1.The number of ICS Attacks continues to increase worldwide by Pierluigi Paganini
2.Most Exploited Vulnerabilities: by Whom, When, and How by Pierluigi Paganini
3.Swords and Shields – a Study of Mobile Game Hacks and Existing Defenses by GoSSIP
PT姿勢:
1.How to bypass CSP nonces with DOM XSS by EDUARDO VELA;翻譯:知道創宇404安全實驗室_Holic
惡意軟體分析:
1.Malware Obfuscation Techniques: Packing by LaSER
基礎概念教學:
1.A look into the Mobile Messaging Black Box by Roland Schilling、Frieder Steinmetz
漏洞分析:
1.12 Days of HaXmas: A Fireside Foray into a Firefox Fracas by William Webb
2.What could possibly go wrong with <insert x86 instruction here>? by Clémentine Maurice、Moritz Lipp
POC:
1.JSM Bypass via createClassLoader by n0tr00t security team_Demon
工具:
1.commix - Automated All-in-One OS command injection and exploitation tool by commixproject
2.使用Docker構建滲透測試容器(安全相關Docker Image收集) by Júnior Carreiro;翻譯:MottoIN
3.django-DefectDojo - defect tracking application by OWASP
4.The Ultimate Maltego Book by Paterva
5.Aegis - Open Souce ICS / SCADA Fuzzer by Automatak
沒有留言:
張貼留言