https://info.microsoft.com/rs/157-GQE-382/images/EN-MSFT-SCRTY-CNTNT-eBook-cybersecurity.pdf

微软发布的2016年网络安全趋势报告

http://www.shellntel.com/blog/2016/6/7/weaponizing-nessus

Weaponizing Nessus

http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/

CVE-2016-0728分析

https://randywestergren.com/critical-vulnerability-compromising-verizon-email-accounts/

严重的漏洞可导致入侵Verizon的email账号

https://security.love/CSRF-PoC-Genorator/

在线CSRF POC生成器

http://blog.morphisec.com/less-is-more-dangerous-a-dissection-of-fileless-in-memory-attacks?

少即多,分析无文件内存攻击

https://github.com/apuigsech/seekret

seekret:用go语言编写的通过不同的源来搜索铭感信息的库

https://speakerdeck.com/tophertimzen/toorcamp-2016-reverse-engineering-and-attacking-net-applications

反向工程.net应用程序,来自ToorCamp 2016会议

https://github.com/rapid7/metasploit-framework/pull/6961

Regsvr32.exe应用白名单绕过