红日攻防实验室

红日攻防实验室



专注Web及移动安全[红日安全32期]

专注Web及移动安全[红日安全32期]

渗透测试,web安全动态

home-bg1_meitu_6.jpg


-安全文章

-安全漏洞

-移动安全

-代码审计


标签:安全动态 安全技能 资源与工具分享

安全动态

[Security_week] 每日攻防资讯汇总(03-27) -- 天融信阿尔法实验室

http://mp.weixin.qq.com/s/l5gAaU8PR_AbClcl2Sk5kQ

[Security_week] 熟悉的Str2-045,不一样的认识

http://mp.weixin.qq.com/s/sMsAagJDgAaLsH_Cd8F6vw

[Security_week] 每周网安十事 第91期 -- 合天智汇

http://mp.weixin.qq.com/s/EVaa-U4XfWa1YwQDwi54Aw

[Security_week] CNNVD最新漏洞(2018-03-27)

http://mp.weixin.qq.com/s/e1UR_F8nnUMkYY1Utf61sw

[Security_week] 20180327-今日网络安全热点 -- 安全字典

http://mp.weixin.qq.com/s/b3C7oduJ9waAuIU9rbTeCQ

[Security_week] 每日安全动态推送(03-27) -- 腾讯玄武实验室

https://mp.weixin.qq.com/s/aTCBK5v31OHRPtcNrFVvqQ

[Security_week] 国内外技术分享-2018.3.27

https://mp.weixin.qq.com/s/chgyHBF_RK6dlaIfGaUXiA

[Security_week] 看我如何发现Facebook密码重置漏洞获得$15000赏金(附POC)

http://mp.weixin.qq.com/s/f6VoOM5fVxQbfFQlmUUZyQ

[Security_week] 看我如何在Jive-n中发现了一个XXE漏洞 (CVE-2018-5758)

http://mp.weixin.qq.com/s/5fAm6rLtNS5DyY0tjjBdFg

[Security_week] Windows远程协助利用的一个严重漏洞(CVE-2018-0878)

http://mp.weixin.qq.com/s/tiiyVM29PcOaqm-R9rEmTg

[Security_week] Ledger硬件钱包漏洞,Red Team Tales 0x01: 从 MSSQL 到 RCE

https://mp.weixin.qq.com/s/boVe7iGzQ2n8ZbXmGS3uwA

[Security_week] Microsoft Excel CSV代码执行/注入方法;构建指挥与控制基础设施:C2K

http://mp.weixin.qq.com/s/mhn00xnY_jfsMKldwwvqqw

[Security_week] 网络安全的9个热门趋势和4个渐冷趋势

http://mp.weixin.qq.com/s/0WFD50NwQJAbm1n904eZLw

[Security_week] 信安之路拓展秘籍

http://mp.weixin.qq.com/s/P820xN7v-vq1Jzqi6VZdUA



安全技能

[Security_technology] Hr-Papers|Nmap 渗透测试脚本指南

http://mp.weixin.qq.com/s/_Q4KWRNGUHfsrxW6Nhhq5Q

[Security_technology] 手把手打造404页面隐藏后门

http://mp.weixin.qq.com/s/Gn8Go9z6anaxniRt1qp4HA

[Security_technology] 由MetInfo 深入理解PHP变量覆盖漏洞

http://mp.weixin.qq.com/s/I7tEDv12e65KI93TCXN8Ug

[Security_technology] 如何在3天内在Facebook上找到3个存储的XSS:俄罗斯gov上的apt攻击手法

https://mp.weixin.qq.com/s/8PeJlvSy4wbphp1AuHghBg

[Security_technology] web狗的硬件研究路(环境搭建篇)

http://mp.weixin.qq.com/s/VgtN9OBJ7lUiIubg00bv7w

[Security_technology] bugkuctf_web_writeup(部分)--上

http://mp.weixin.qq.com/s/636UY_3NgJMfxl7e1EKkJw

[Security_technology] bugkuctf_web_writeup(部分)--下

http://mp.weixin.qq.com/s/l7gHcM1Mxh6Ytfqxc-CTig

[Security_technology] SQL和NoSQL注入原理剖析(上)

http://mp.weixin.qq.com/s/LsqQo_04ROuf2_wLrBRRZQ

[Security_technology] SQL和NoSQL注入原理剖析(下)

http://mp.weixin.qq.com/s/aaLdXIbMu_WVq8E65OAQsQ

[Security_technology] 全局SQL注入防御代码

http://mp.weixin.qq.com/s/TRd20PzlzXpyKMy_zMQL0A

[Security_technology] SecOS渗透过程

http://mp.weixin.qq.com/s/l4rkkvlSxJziJT0aCUBguA

[Security_technology] Toxy - 适用于弹性测试和模拟网络条件的黑客HTTP代理

https://mp.weixin.qq.com/s/JyLWXGLMo4xJ08zCKaUqPA

[Security_technology] burp结合sqlmap进行后台登录框post注入

http://mp.weixin.qq.com/s/_sBvM_piKYFoB7TgBU0wCg

[Security_technology] 小白都能看懂的JSON反序列化远程命令执行

http://mp.weixin.qq.com/s/J0hBzUDtOwaw7WA5dddsHg

[Security_technology] 审计 tinyshop 中风险

http://mp.weixin.qq.com/s/tdyTY_x2AUYQAygHN15olA

[Security_technology] F5做负载均衡时,如何通过修改cookie查找敏感信息

http://mp.weixin.qq.com/s/Bo579kZb9Ec0ILrFfX4zhA

[Security_technology] 如何预防应用程序中的XSS漏洞

http://mp.weixin.qq.com/s/Z4aAbc62l7poeKNZDRtoJQ

[Security_technology] HTTPS:从入门到熟悉

http://mp.weixin.qq.com/s/BArxl3TGwkXf7FqnW7OU2g

[Security_technology] Python+字典,实现 WiFi 破解

http://mp.weixin.qq.com/s/nemT-kAUff1V3v351N7_uA

[Security_technology] CSRF攻击与防御

http://mp.weixin.qq.com/s/_tgs0yN-Tvru1sDOhM_QVg

[Security_technology] 看我如何绕过限制访问到Google内部管理系统(价值$13337)

http://mp.weixin.qq.com/s/S4T-2ssrL0FSb3KrvXMEhQ

[Security_technology] CTF实战:USV-2017全题解

http://mp.weixin.qq.com/s/CLWi98oKBpEmv4S7ekH0Og

[Security_technology] 揭露某些所谓"大佬"不为人知的另一面

http://mp.weixin.qq.com/s/cRSJhhALlDX54stKj_kwoQ

[Security_technology] APT32海莲花组织最新活动:老技术,新后门

http://mp.weixin.qq.com/s/r5AaOOGzWTrI82KH9BqYxQ

[Security_technology] SSH隧道综合指南

http://mp.weixin.qq.com/s/lv0n7KnSlXb0qXkNkAEqrw

[Security_technology] 路由器漏洞 EXP 开发实践

https://mp.weixin.qq.com/s/PcuX4ZpxlRRlmwvA9v42mA

[Security_technology] kali下进行局域网断网攻击

http://mp.weixin.qq.com/s/NRNutHzP5hOkgbyJdT4tgQ

[Security_technology] 渗透技巧——通过SAM数据库获得本地用户hash

http://mp.weixin.qq.com/s/CIRUkIoONmp6MLVIeT1Dww

[Security_technology] 记一次有趣的渗透测试

http://mp.weixin.qq.com/s/0ioymp55ohakUCjCI_lNog



工具与资源

[Security_tools] ARDT - Akamai反射式DDoS工具

http://mp.weixin.qq.com/s/xuy3YjbLGc3x3rlHcPKuqg

[Security_tools] Powershell-RAT:基于Python的后门程序,w3af可扫描反序列化漏洞

http://mp.weixin.qq.com/s/DXH1mv8SkR-AbSJIK02BUw

[Security_tools] InfernalWireless - 自动无线黑客工具

http://mp.weixin.qq.com/s/bBI3LUN0vvoAmljznXfRbw

[Security_tools] windows下提权辅助工具

http://mp.weixin.qq.com/s/P6MuSSeoQhKYWdzN_6E7Ag

[Security_tools] SmarTTY - 带SCP支持的多标签SSH客户端

http://mp.weixin.qq.com/s/WMFwU4shuqbWco_oIPXPAg

[Security_tools] 爬虫代理搭建与批量安装

https://mp.weixin.qq.com/s/ZU7XK2dmUZbHoiV-qg9wtQ

[Security_tools] 在线破解SNMP密码的多种方法

http://mp.weixin.qq.com/s/JIUjw_06nEGUr_SlD41Aaw

[Security_tools] WPHunter:wp漏洞扫描器;Th3inspector:信息收集工具

http://mp.weixin.qq.com/s/HPLLoZEVlvdOHuwFWRGb1g

[Security_tools] Loki - 简单的IOC和事件响应扫描器

http://mp.weixin.qq.com/s/WPBCHBNLNlWZDGNYEc_hAw

[Security_tools] FristiLeaks渗透过程

http://mp.weixin.qq.com/s/0ioymp55ohakUCjCI_lNog

[Security_tools] WPHunter:wp漏洞扫描器;Th3inspector:信息收集工具

http://mp.weixin.qq.com/s/HPLLoZEVlvdOHuwFWRGb1g

[Security_tools] LiME - Linux内存提取器

http://mp.weixin.qq.com/s/QVlHjJmtfXu_fM5EXdSFDA

 标签: none

作者  :  sysyz



关于我

about me

sysyz

联系我