資安年會:
1.GIAC 全球互聯網架構大會
威脅情報:
1.從MONGODB “贖金事件” 看安全問題 by 陳皓
2.DragonOK Updates Toolset and Targets Multiple Geographic Regions by Josh Grunzweig
PT姿勢:
1.IP, DNS & Domain Enumeration Cheatsheet by Binni Shah
2.如何繞過殺毒軟件運行Mimikatz by Carrie Roberts;翻譯:MottoIN
3.使用Golang繞過殺毒軟件 by Stephen Haywood;翻譯:MottoIN
釣魚姿勢:
1.EXPERTS WARN OF NOVEL PDF-BASED PHISHING SCAM by Tom Spring
漏洞分析:
1.GitHub Enterprise SQL Injection by Orange
2.How we broke into your house by boredhackerblog
3.Android Vulnerabilities: Attacking Nexus 6 and 6P Custom Boot Modes by Roee Hay
4.Android: Race condition in max86902 driver sysfs interfaces by laginimaineb
5.Android: Kernel information disclosure in "maxdsm_read" by laginimaineb
6.mach portal漏洞利用的一些細節 by windknown
基礎概念教學:
1.Android簽名機制簡介 by JW
工具:
1.Snuck - Automatic XSS filter bypass by Lydecker Black
2.FirePhisha - full-fledged phishing framework to manage all phishing engagements by Chris King
3.BurpSuite插件開發Tips:請求響應參數的AES加解密 by bit4
沒有留言:
張貼留言