http://p6.qhimg.com/t017313015b51e6034e.png


热点概要:挖掘andorid的秘密(解码android app资源)、Burp Suite 官方文档中文版、oledump.py/iOS Process Explorer 工具更新


国内热词(以下内容部分摘自http://www.solidot.org/):

勒索软件用解密密钥鼓励受害者传播勒索软件

你的隐私有多容易泄露:300元能买多年开房记录

Windows 10新版14986已完成对高DPI屏幕的优化

黑客使用新工具偷走无钥匙进入汽车

资讯类:

勒索软件扩散新套路:受害者扩散勒索软件,将有机会获得解密密钥

https://www.bleepingcomputer.com/news/security/new-scheme-spread-popcorn-time-ransomware-get-chance-of-free-decryption-key/

技术类:

Burp Suite 官方文档中文版

https://yw9381.gitbooks.io/burp_suite_doc_zh_cn/content/

discovRE的演示视频:文档在https://www.internetsociety.org/sites/default/files/blogs-media/discovre-efficient-cross-architecture-identification-bugs-binary-code.pdf

https://woumn.wordpress.com/2016/12/02/presentation-of-discovre/

对EDR,threat hunting软件的一些想法

http://www.hexacorn.com/blog/2016/12/12/a-few-ideas-to-mess-around-with-threat-hunting-and-edr-software-anti-threat-huntinganti-edr/

airchat:使用AirDrop接口进行通信的开源项目

https://github.com/chendo/airchat

oledump.py 工具更新到 0.0.26 版

https://blog.didierstevens.com/2016/12/12/updateoledump-py-version-0-0-26/

Hackfest 2016 安全会议2天概要

https://codingjames.ca/2016/12/11/hackfest-2016-infinity-edition-summary/

vane:wordpress安全评估开源软件,类似WPScan

https://github.com/delvelabs/vane

#MacOS/#iOS Process Explorer 更新

http://newosxbook.com/tools/procexp.html

挖掘andorid的秘密(解码android app资源)

http://pen-testing.sans.org/blog/2016/12/10/mining-android-secrets-decoding-android-app-resources

Authority Server Selection of DNS Caching Resolvers

http://irl.cs.ucla.edu/~yingdi/web/pub/yingdi_ccr12apr.pdf

The Ransomware in our Dependencies

https://blog.sourceclear.com/ransomware-in-deps/

高级JavaScript学习教程

http://ejohn.org/apps/learn/

文章原文链接:https://www.anquanke.com/post/id/85096