Skip to content

Latest commit

 

History

History
92 lines (73 loc) · 6.84 KB

tech_info_20210105.md

File metadata and controls

92 lines (73 loc) · 6.84 KB
Raw

互联网安全 推荐

ts title url

玄武实验室 推荐

ts title url
20210105 Tying It All Together - Pwning To Own on LG phones https://douevenknow.us/post/639414006930702336/tying-it-all-together-pwning-to-own-on-lg-phones
20210105 三星手机 RKP(Real-time Kernel Protection)内核防护技术深度剖析 https://blog.longterm.io/samsung_rkp.html
20210105 Stopping Serial Killer: Catching the Next Strike https://research.checkpoint.com/2021/stopping-serial-killer-catching-the-next-strike/
20210105 Windows Defender Application Control (WDAC) in 20H2 https://mattifestation.medium.com/windows-defender-application-control-wdac-updates-in-20h2-and-building-a-simple-secure-4fd4ee86de4
20210105 Insecure Deserialization - 在 PHP 中找到 Gadget Chain http://blog.redteam-pentesting.de/2021/deserialization-gadget-chain/
20210105 R.I.P ROP: CET Internals in Windows 20H1 http://windows-internals.com/cet-on-windows/
20210105 Cache Poisoning DoS Vulnerability https://iustin24.github.io/Cache-Key-Normalization-Denial-of-Service/?cb=1
20210105 研究员 Alisa Esage 公开了两个之前会议演讲的视频 https://www.youtube.com/channel/UC-a8hBNKa-n0O5bjRu-_Khw
20210105 研究员 Anant Shrivastava 关于 Android Security 培训的资料 https://github.com/anantshri/Android_Security
20210105 XNU 内核 socket UAF 漏洞分析 https://sec.today/pulses/7fbac7bc-3db1-4d5b-b0c5-0169e841b79f/
20210105 XNU 内核 socket UAF 漏洞分析 https://blog.pangu.io/?p=230
20210105 针对网络钓鱼利用假期节日发送恶意邮件分析。 https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/phishing-the-holiday-season/

安全维基 推荐

ts title url
20210105 记一次景安虚拟主机提权案例 https://mp.weixin.qq.com/s/YDWbd0HCDVA6Y5wZMdH9NQ
20210105 记一次域渗透实战案例思路分享 https://mp.weixin.qq.com/s/1QZwwB2SxY0UT6x-CxqErg
20210105 一次性通过CISSP考试之旅 https://blog.csdn.net/bloodzero_new/article/details/112240136
20210105 Kubernetes中使用Helm2的安全风险 http://rui0.cn/archives/1573

CVE Github 推荐

ts cve_id title url cve_detail

klee on Github 推荐

ts title url stars forks
20210105T21:59:01Z KLEE Symbolic Execution Engine https://github.com/klee/klee 1591 478
20210105T02:56:21Z Create CFGs and compute complexity metrics for Python, C++, and Java code. https://github.com/hmc-alpaqa/metrinome 5 0

s2e on Github 推荐

ts title url stars forks
20210105T10:03:08Z S2E: A platform for multi-path program analysis with selective symbolic execution. https://github.com/S2E/s2e 87 22

exploit on Github 推荐

ts title url stars forks
20210105T23:51:33Z Null https://github.com/exploitlib/ExploitLibrary.github.io 0 0
20210105T23:10:16Z A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python https://github.com/VainlyStrain/Vailyn 78 2
20210105T22:44:41Z An attack/exploit Detector that utilizes Polymorphism and Diversity https://github.com/polyverse/zerotect 21 1
20210105T22:13:25Z ZetaSploit Framework is a powerful exploitation framework that contains a lot of modules for attacking targets, interacting with targets, exploiting common vulnerabilities and etc. https://github.com/EntySec/ZetaSploit 8 4
20210105T21:58:47Z A Roblox exploit https://github.com/Dlunhappy226/Roblox-hack 0 0
20210105T21:12:39Z Notes of Exploit Education Challenges https://github.com/Insecurities/ExploitEducation 0 0
20210105T20:52:46Z out-of-tree kernel {module, exploit} development tool https://github.com/jollheef/out-of-tree 178 27
20210105T20:49:51Z Metatable Api made to simplify Roblox exploiting https://github.com/KikoTheDon/MT-Api-v2 0 0
20210105T20:49:17Z This Repository contains the stuff related to windows Active directory environment exploitation https://github.com/incredibleindishell/Windows-AD-environment-related 98 26
20210105T20:35:13Z This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more. https://github.com/The-Art-of-Hacking/h4cker 8853 1401

backdoor on Github 推荐

ts title url stars forks
20210105T23:58:13Z TrojanZoo provides a universal pytorch platform to conduct security researches (especially backdoor attacks/defenses) of image classification in deep learning. https://github.com/ain-soph/trojanzoo 24 4
20210105T16:32:24Z Null https://github.com/mpandya18/Image_Permutator_For_Backdoor_Generation 0 0
20210105T16:27:28Z A curated list of backdoor learning resources https://github.com/THUYimingLi/backdoor-learning-resources 139 20
20210105T15:39:21Z A free tool to scan php files and analyze your project to find any malicious code inside it. https://github.com/marcocesarato/PHP-Antimalware-Scanner 160 29
20210105T08:14:29Z PCI Express DIY hacking toolkit for Xilinx SP605 https://github.com/Cr4sh/s6_pcie_microblaze 293 76
20210105T06:14:08Z Null https://github.com/anonymous-guy/multi_agent_rl_backdoor_videos 0 0

fuzz on Github 推荐

ts title url stars forks
20210105T23:40:11Z Fuzz testing for go. https://github.com/google/gofuzz 944 91
20210105T23:09:42Z A no-fuzz note taking app built with Flask https://github.com/pedroivo000/notavel 0 0
20210105T22:52:59Z Just a basic example of an application fuzzer to test for Buffer Overflows https://github.com/jforte1495/fuzzer 0 0
20210105T22:46:57Z Repository for Fuzzy Miner Web application. https://github.com/fnc11/FuzzyMiner 5 0
20210105T22:43:33Z Personal website of Laurence Hughes https://github.com/fuzzylogicxx/fuzzylogic 4 1
20210105T22:41:22Z Fuzzy logic notes https://github.com/foreverloop/fuzz 0 0
20210105T22:40:41Z A self-hosted Fuzzing-As-A-Service platform https://github.com/microsoft/onefuzz 2241 113
20210105T21:46:26Z Null https://github.com/k-matti/fuzzy-couscous 0 1
20210105T21:45:18Z Basic fuzzer for own purposes. https://github.com/envysec/Astrea 0 0
20210105T21:08:39Z VMI Kernel Fuzzer for Xen Project - VM forking, VMI & AFL integration demo https://github.com/intel/kernel-fuzzer-for-xen-project 220 35

日更新程序