红日攻防实验室

红日攻防实验室



专注Web及移动安全[红日安全68期]

20181011202924.jpg

渗透测试,web安全动态


-安全文章

-安全漏洞

-Web安全

-代码审计


标签:安全动态 Web安全 渗透测试 安全工具 代码审计

安全动态

[Security_week] 12月重大安全事件

https://mp.weixin.qq.com/s/iOg-fzV3mC-5utiUAVyoHQ

[Security_week] 安全研究者的自我修养

https://mp.weixin.qq.com/s/dzaa0ufAocst-2ct1RxtSg

[Security_week] 安全建设之平台搭建

https://mp.weixin.qq.com/s/dmeH9-2H9vwRzBrrmNutSw

[Security_week] 你为企业提出的安全问题都复现了吗

https://mp.weixin.qq.com/s/PodeY7A5Xvy--HVHubd_dw

[Security_week] 轻松理解什么是模糊测试

https://mp.weixin.qq.com/s/GEi2Atz53N315_xB5JGZCg

[Security_week] 黑客清除攻击痕迹

https://mp.weixin.qq.com/s/R4Izd9nmjrmTYoZ335OI1g

[Security_week] PE 文件格式详解

https://mp.weixin.qq.com/s/idKwlAJr1PEB64JOwFYIiw

[Security_week] 企业安全体系建设之路之系统安全篇

https://mp.weixin.qq.com/s/Ksz8OmoATue3WR_G6iV6wA

[Security_week] APT攻防学习资料

https://mp.weixin.qq.com/s/hwFXOdGS7O0-UudNRbWFkg

[Security_week] 黑客免杀思路浅析

https://mp.weixin.qq.com/s/zT91PXi9iOyeZOOpF4wwlw

[Security_week] 十种常见数据泄露攻击技术

https://mp.weixin.qq.com/s/oveRI4-tpmUQ6AxDWAgJzA

[Security_week] ThinkPHP 5.0.* 远程命令执行漏洞预警

https://mp.weixin.qq.com/s/hTlsrC9Zz22CquuWzKLFTQ

[Security_week] 信息安全漏洞周报(2019年第1期)

https://mp.weixin.qq.com/s/iTdj84Cr94QM-NHg0WM-Ow

[Security_week] 漏洞威胁周报 (2018/12/30-2019/1/6)

https://mp.weixin.qq.com/s/vOIzRiYRDwbuhv5XVz6V3g

[Security_week] 漏洞威胁周报 (2018/12/24-2018/12/30)

https://mp.weixin.qq.com/s/pJkBPPcVnvFhPv3azrzhtg



Web安全

[Web_Security] 轻松理解网络端口是什么

https://mp.weixin.qq.com/s/8npxl9_EJSvT0Ylu7EhpBg

[Web_Security] MongoDB操作&&注入漏洞&&未授权访问漏洞

https://mp.weixin.qq.com/s/izpkRMPYFZbjfP13r_rLWg

[Web_Security] 企业安全体系建设之路之Web安全篇

https://mp.weixin.qq.com/s/92FEIKQxYi3WMh8DtjrARA

[Web_Security] Struts2-005远程代码执行漏洞分析

https://mp.weixin.qq.com/s/OikBB91NexGUjK6odhHqBA

[Web_Security] 漏洞挖掘与防范

https://mp.weixin.qq.com/s/Prb5NGlFo8de3zybYFLQ3A

[Web_Security] 企业安全体系建设之路之网络安全篇

https://mp.weixin.qq.com/s/cvpwzfaCnCAZRUDj6EDpTA

[Web_Security] Fckeditor上传各版本绕过

https://mp.weixin.qq.com/s/pSNsiCYBzjLYKdAGhr4zKw

[Web_Security] github_dis,一款精简版github信息泄露搜集工具

https://mp.weixin.qq.com/s/h9wdczuN-v0pZKBDd0h_Rg

[Web_Security] 看我如何突破某主机卫士搞定asp站点

https://mp.weixin.qq.com/s/aQSTTXbaLClhdA4zSHAmfg

[Web_Security] 小心 !跨站点websocket劫持!

https://mp.weixin.qq.com/s/xMdvZEEPPdbMFrqRpKZDTA

[Web_Security] 社工实验:邮件钓鱼

https://mp.weixin.qq.com/s/hJoUNmdynR3IRyIfcdN3Ig

[Web_Security] WAF Bypass数据库特性(Mysql探索篇)

https://mp.weixin.qq.com/s/qG_m7YXvEw2PwFXQDj6_qw

[Web_Security] Metinfo6.0.0-6.1.2前台注入漏洞生命线

https://mp.weixin.qq.com/s/xF3SmPdd07cBy-aNjbDAtA



渗透测试

[Penetration_test] 记一次破解shift后门

https://mp.weixin.qq.com/s/ekEoRmYzo_QRpVb86uXmjQ

[Penetration_test] Windows中net session的利用

https://mp.weixin.qq.com/s/3xWrv1W05PuBowGX5cFCww

[Penetration_test] 高级持续渗透-第六季关于后门

https://mp.weixin.qq.com/s/0p3re4QovW8kLmlePX1KGg

[Penetration_test] 域内信息搜集实战

https://mp.weixin.qq.com/s/kIsCpK_su5RoIPkJ05vgGA

[Penetration_test] 某idc的vnc管理系统渗透过程

https://mp.weixin.qq.com/s/WomKv1ehgcfBvSF610mJ_A

[Penetration_test] 靶机渗透之Typhoon实战

https://mp.weixin.qq.com/s/5Vb4jAsTlGKORYsi7vA7Sg

[Penetration_test] Redis匿名访问漏洞

https://mp.weixin.qq.com/s/m-qOt0O5ICsJdlrRb7VX5A

[Penetration_test] 某企业官网的一次渗透

https://mp.weixin.qq.com/s/Zqufqox9_XF3fyT88qeVYQ

[Penetration_test] 高级渗透测试第八季-demo即是远控

https://mp.weixin.qq.com/s/9Qrd3CC-lDwVq-5B9YqDRA

[Penetration_test] Armitage 简单入侵

https://mp.weixin.qq.com/s/WY_avf9hczaMkkZnFQ8TSA

[Penetration_test] 安全渗透

https://mp.weixin.qq.com/s/AiDBtRpQMhy9lsPMPRUEIA

[Penetration_test] 大型互联网公司如何防止黑客入侵(上)

https://mp.weixin.qq.com/s/eq80WSnDCAvhEqauZ9eq_g

[Penetration_test] 大型互联网公司如何防止黑客入侵(下)

https://mp.weixin.qq.com/s/F7oFiZqh6xPn_5upNW7Hug



安全工具

[Security_tools] Wireshark - 安全工具

https://mp.weixin.qq.com/s/2ChoNvlaYL_hcWYjOm5IRw

[Security_tools] Kracker - 破解FTP密码的免费工具

https://mp.weixin.qq.com/s/yzTXnP2LsF_XoQqMU7Mc3g

[Security_tools] 社工神器之Maltego

https://mp.weixin.qq.com/s/UwKnSaOFlTboH29Mspw8xw

[Security_tools] R3Con1Z3R:一款功能强大的轻量级Web信息收集工具

https://mp.weixin.qq.com/s/EA8G6sfFjhvMoMq0tuduzQ

[Security_tools] Hash Decrypt - 一个破解哈希的Android工具

https://mp.weixin.qq.com/s/ErqI6GrAwKvXe9ynlHOwqw

[Security_tools] Fing - 网络工具(Android App)

https://mp.weixin.qq.com/s/_FBXFGja2lDZcOvlkaUpTg

[Security_tools] Burpsuite Collaborato模块详解

https://mp.weixin.qq.com/s/MKqh2hPv1uWNJcqlyBVKQg

[Security_tools] winhex在ctf中简单的使用

https://mp.weixin.qq.com/s/a2qQhqEM6eVhToYHlTU3FQ

[Security_tools] 适用于Windows,Linux和Mac的12款最佳黑客工具

https://mp.weixin.qq.com/s/nrsh6pico4gvTkUXFH66-w

[Security_tools] Pacu工具牛刀小试之基础篇

https://mp.weixin.qq.com/s/Yu3EAqW3pIbIbQRnTXpp8g



代码审计

[Code_audit] 代码审计之 UsualToolCMS

https://mp.weixin.qq.com/s/r8HaX6Yp3ZD3X7lz-o4UUQ

 标签: none

作者  :  ba91ing



关于我

about me

ba91ing

联系我