技术类:
利用基于VM代码混淆的动态调度
http://www.lancaster.ac.uk/staff/wangz3/publications/trustcom.pdf
使用Duo认证API提供USB设备的连接验证
https://github.com/uber/usb2fac
fibratus:跟踪windows内核活动的开源工具
https://github.com/rabbitstack/fibratus
Suricata 3.1 版发行
https://suricata-ids.org/download/
反向工程人员常用的13个反混淆工具
https://hackerlists.com/deobfuscation-tools/#.V3xMDXZGVPU.twitter
比特梵德警告用户:新的后门允许完全的控制你的MAC系统
https://labs.bitdefender.com/2016/07/new-mac-backdoor-nukes-os-x-systems/
windows 10 x86/wow64 用户层堆
https://www.corelan.be/index.php/2016/07/05/windows-10-x86wow64-userland-heap/?utm_medium=twitter&utm_source=twitterfeed
使用nmap 发现SQL SERVER实例
https://seniordba.wordpress.com/2016/07/05/using-nmap-to-find-sql-server-instances/
iphone隐私配置教程(在旅游中)
https://blog.filippo.io/securing-a-travel-iphone/
Hacking Crypto For Fun and Profit
https://www.notsosecure.com/hacking-crypto-fun-profit/
apple safari svg本地XXE漏洞
https://www.wearesegment.com/research/Apple-Safari-for-Mac-OS-X-SVG-local-XXE
CSRF蠕虫
https://c0nradsc0rner.wordpress.com/2016/07/04/csrf-worm/
debugging Node.js应用
https://blog.risingstack.com/node-hero-node-js-debugging-tutorial/
Firefox – 同源策略绕过 (CVE-2015-7188)
http://blog.bentkowski.info/2016/07/firefox-same-origin-policy-bypass-cve.html
资讯类:
黑客发现英国国防网关漏洞,可泄露军队数据
http://securityaffairs.co/wordpress/49052/hacking/uk-defence-gateway.html
加密绕过可影响过半的android设备
https://threatpost.com/encryption-bypass-vulnerability-impacts-half-of-android-devices/119039/
谷歌CEO Sundar Pichai 的帐号被黑
https://www.hotforsecurity.com/blog/googles-ceo-sundar-pichai-hit-by-hackers-14191.html
新的android恶意软件已经影响了1000万设备
https://www.yahoo.com/news/android-malware-already-infected-10-million-devices-worldwide-233054009.html?ref=gs
美国上诉法院:反黑客法适用于密码共享情况
http://www.zdnet.com/article/u-s-appeals-court-anti-hacking-law-applies-to-password-sharing-case/#ftag=RSSbaffb68
数据泄露消息:
iMesh的2012年被黑的数据泄露