PT姿勢:
1.sql注入時case when ... then ... else ...end 的應用 by virusdefender
2.Post-compromise RDP brute-force cheat sheet by JohnLaTwC
防禦姿勢:
1.如何全面防御Webshell(上)? by Change
2.如何全面防御Webshell(下)? by Change
漏洞分析:
1.Python 模板字符串與模板注入 by virusdefender
2.Trend Micro – Control Manager 6.0 by Gregory DRAPERI
3.Remote code execution vulnerability with XHTML-IM enabled by arcriley
4.Restricted Admin mode for RDP in Windows 8.1 / 2012 R2 by Kurt Falde
基礎概念教學:
1.seedlab by 實驗樓在線教育_seedlab
2.Buffer Overflow Explained by Felix
POC:
1.Windows x64 Password Protected Bind Shell TCP shellcode by Roziul Hasan Khan Shifat
學習資源:
1.The Definitive Security Data Science and Machine Learning Guide by Jason Trost
2.Deep Learning Security Papers by Jason Trost
工具:
1.DomainSeeker多方式收集目標子域名信息 by Anka9080
2.PenQ - The Security Testing Browser Bundle by QBurst
3.Conpot - ICS/SCADA honeypot by MushMush
4.Suhosin - The PHP security extension by SektionEins GmbH
沒有留言:
張貼留言