威脅趨勢:
1.互聯網黑勢力之流量劫持 by 獵豹漁村安全局
威脅情報:
1.數據科學在Web威脅感知中的應用(一) by 楚安
2.威脅感知的方法論 by 楚安
3.awesome-threat-intelligence by Herman Slatman
AI:
1.對AI應用於網絡安全的正確認識 by xiaohui
PT姿勢:
1.Art of Anti Detection 1 – Introduction to AV & Detection Techniques by Ege Balci
2.Art of Anti Detection 2 – PE Backdoor Manufacturing by Ege Balci
3.遠程漏洞利用:無需借助套接字的Shellcode by 0x00pico;翻譯:shan66
挖洞姿勢:
1.Finding Bugs in TensorFlow with LibFuzzer by DAVID ANDERSEN
漏洞分析:
1.PHPMailer任意文件讀取漏洞分析(CVE-2017-5223) by Yxlink
逆向分析:
1.微信小程序安全淺析 by 白澤安全團隊_Hill
2.Iranian Threat Agent OilRig Delivers Digitally Signed Malware, Impersonates University of Oxford by Clearsky
3.NEW VARIANT OF PLOUTUS ATM MALWARE OBSERVED IN THE WILD IN LATIN AMERICA by Daniel Regalado
基礎概念教學:
1.WiFi安全技術四:突破防護機制 by ms0x0
2.Windows DLL Injection Basics by Brad Antoniewicz
POC:
1.Nginx (Debian-based + Gentoo distros) - Root Privilege Escalation by Dawid Golunski
工具:
1.基礎惡意軟件分析工具介紹 by Change
2.JudasDNS - Nameserver DNS poisoning attacks made easy by Matthew Bryant
沒有留言:
張貼留言