1.在AMX设备中故意隐藏的后门账号
http://blog.sec-consult.com/2016/01/deliberately-hidden-backdoor-account-in.html
2.ios 9.2.1下的safari 共享cookie存储漏洞在WIFI环境下暴露风险
https://www.skycure.com/blog/shared-cookie-stores-bug-fixed-in-ios-9-2-1/
3.NTP统计目录下的Cronjob脚本导致的 Root 提权漏洞
http://www.halfdog.net/Security/2015/NtpCronjobUserNtpToRootPrivilegeEscalation/
4.isc统计扫描fortinet后门的中国IP(124.160.116.194 和 183.131.19.18)
https://isc.sans.edu/diary/Scanning+for+Fortinet+ssh+backdoor/20635
5.CVE-2016-1722 漏洞分析
https://blog.zimperium.com/analysis-of-ios-os-x-vulnerability-cve-2016-1722/
6.Cuckoo 沙盒2.0发行
https://cuckoosandbox.org/2016-01-21-cuckoo-sandbox-20-rc1.html
7.zizzania:自动Deauth攻击
https://github.com/cyrus-and/zizzania
8.SANS 2015 CDI DFIR挑战[面向取证技术] writeup
http://www.vxsecurity.sg/2016/01/21/walkthrough-sans-2015-cdi-dfir-challenge/
9.突破微软word/excel限制编辑选项
http://geekmemos.com/stop-using-ms-word-excel-document-protection/
10.kali发行2016年的第一个版本【Kali Rolling】
https://www.kali.org/releases/kali-linux-rolling-edition-2016-1/
11.cisco统一计算机管理系统和cisco firepower 9000远程命令执行漏洞
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160120-ucsm
12.deepsec视频:通过案例学习安全应用白名单
http://blog.deepsec.net/deepsec-video-a-case-study-on-the-security-of-application-whitelisting/
13.IntelliDroid:动态分析Android恶意软件
http://www.eecg.toronto.edu/~lie/papers/mwong_ndss2016.pdf
14.介绍debugging x86-64 汇编
http://nickdesaulniers.github.io/blog/2016/01/20/debugging-x86-64-assembly-with-lldb-and-dtrace/
15.使用2轴天线定位跟踪卫星
http://hackaday.com/2016/01/20/track-satellites-with-a-2-axis-antenna-positioner/
16.介绍内核debugger,第一部分
https://www.whitehatters.academy/intro-to-kernel-exploitation-part-1/
17.osquery【一款facebook开源软件】在安全中的应用,第一部分
https://medium.com/@clong/osquery-for-security-b66fffdf2daf#.bou9bi3zm
发表评论
您还未登录,请先登录。
登录