3月12日安全热点 – VK Messenger//URI Handler 命令执行漏洞

 

资讯类

2017年我国联网智能设备安全情况报告

https://mp.weixin.qq.com/s/3t8-Wc-0Z0ROB66A36jZ4w

 

可疑的证书销售商只需花费几千美元即可给恶意程序一个有效签名

https://www.theregister.co.uk/2018/03/12/susicious_digital_cetificate_sales/

 

如何保护你的密码免受黑客,盗窃和意外

https://hackernoon.com/how-to-protect-your-crypto-from-hacks-theft-and-the-unexpected-b6c6b27398f5

 

关于SQL注入漏洞的4个误解

https://hackernoon.com/4-misconceptions-about-sql-injection-vulnerabilities-8f4a5be4df69

 

揭秘:美国政府囤积了多少比特币?

https://www.secrss.com/articles/1341

 

技术类

Web日志安全分析系统实践

https://xianzhi.aliyun.com/forum/topic/2136

 

VK Messenger //URI Handler 命令执行漏洞

https://blogs.securiteam.com/index.php/archives/3674

 

模糊ELF二进制文件中的任意函数

https://blahcat.github.io/2018/03/11/fuzzing-arbitrary-functions-in-elf-binaries/

 

黑客的Docker

https://www.pentestpartners.com/security-blog/docker-for-hackers-a-pen-testers-guide/

 

Imagination by kratorius

https://secrary.com/CrackMe/ImaginationCrackme/

 

DockerAttack

https://github.com/ZephrFish/DockerAttack

(完)