一些不错的技术文章 2015-04-03

  • A+
所属分类:WooYun-Zone

report

Open Crypto Audit Project TrueCrypt LINK

Android Security 2014 Year in Review LINK

web:

The story of a pentester recruitment LINK

Scriptless attacks via CSS LINK

hacking wordpress LINK

Critical vulnerabilities in JSON Web Token libraries LINK

Website Malware – The SWF iFrame Injector Evolves LINK

二进制:

SQLite prepared statement use-after-free – [A local PHP exploit] LINK

Research Spotlight: FreeSentry Mitigating use-after-free Vulnerabilities LINK

advanced pdf tricks LINK

Finding Holes LINK

移动:

Pawn Storm: Malware on iOS devices? LINK

Instrumenting Android Applications with Frida LINK

A timeline of mobile botnets LINK

other

Using the docker command to root the host LINK

PS: 利用docker特性获取权限

How to own any windows network with group policy hijacking attacks LINK

PS: 内网相关,这家实验室的都是干货。

THE SAD STATE OF SMTP ENCRYPTION LINK

PS: 加密

Recovering deleted records from an SQLite database (updated) LINK

PS: 从sqlite中恢复数据

poweliks command line confusion LINK

Detection, analysis and display of attacks using Honeypots LINK

PS: 基于蜜罐的数据分析

Optical Delusions: A Study of Malicious QR Codes in the Wild LINK

PS: 恶意二维码

Enough With the Salts: Updates on Secure Password Schemes LINK

PS: 加密

会议

SyScan 2015

Hacking With Pictures LINK

Modern Binary Exploitation LINK

PS:大量二进制干货

  1. 1#

    Anymous (ด้้้้้็็็็็้้้้้็็็็็้้้ส็็็็็็็็็็็็็็็็็็็็็็็ด้้้้้็็็็็้้้้้็็็็็้้้‮)ส้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้้ด้้้้้็็็็็้้้้้็็็็็้้้)) | 2015-04-03 22:00

    2014

  2. 2#

    园长 (喵~) | 2015-04-04 09:45

    撸爷,你穿越了吧?2014

  3. 3#

    孤独行者 (一位孤独的路人) | 2015-04-04 09:58

    lz。。。2014。。。穿越了么??还是过糊涂了?

  4. 4#
    感谢(3)

    杀戮 (有事请 at 大号园长) | 2015-04-04 11:55

    意外。。。。。

  5. 5#

    乌帽子 (业精于勤而荒于嬉,行成于思而毁于随。) | 2015-04-06 20:05

    thx

  6. 6#

    _Evil (科普是一种公益行为) | 2015-04-09 16:02

    坚持下去 1024