资讯类
2017年我国联网智能设备安全情况报告
https://mp.weixin.qq.com/s/3t8-Wc-0Z0ROB66A36jZ4w
可疑的证书销售商只需花费几千美元即可给恶意程序一个有效签名
https://www.theregister.co.uk/2018/03/12/susicious_digital_cetificate_sales/
如何保护你的密码免受黑客,盗窃和意外
https://hackernoon.com/how-to-protect-your-crypto-from-hacks-theft-and-the-unexpected-b6c6b27398f5
关于SQL注入漏洞的4个误解
https://hackernoon.com/4-misconceptions-about-sql-injection-vulnerabilities-8f4a5be4df69
揭秘:美国政府囤积了多少比特币?
https://www.secrss.com/articles/1341
技术类
Web日志安全分析系统实践
https://xianzhi.aliyun.com/forum/topic/2136
VK Messenger //URI Handler 命令执行漏洞
https://blogs.securiteam.com/index.php/archives/3674
模糊ELF二进制文件中的任意函数
https://blahcat.github.io/2018/03/11/fuzzing-arbitrary-functions-in-elf-binaries/
黑客的Docker
https://www.pentestpartners.com/security-blog/docker-for-hackers-a-pen-testers-guide/
Imagination by kratorius
https://secrary.com/CrackMe/ImaginationCrackme/
DockerAttack