安全工具 Security Tools OSSEM-一款评估数据质量的工具 https://www.kitploit.com/2020/05/ossem-tool-to-assess-data-quality.html Sshprank-一款使用Python-Masscan模块开发的ssh综合攻击工具 https://www.kitploit.com/2020/05/sshprank-fast-ssh-mass-scanner-login.html 安全事件 Security Incident 成人实时流媒体网站CAM4泄漏1100万份数据库记录，包括电子邮件、私人聊天记录 https://securityaffairs.co/wordpress/102776/data-breach/cam4-data-leak.html 安全资讯 Security Information Shade/Troldesh勒索软件运营商公布解密工具 https://labs.bitdefender.com/2020/05/shade-troldesh-ransomware-decryption-tool/ 安全研究 Security Research Windows 10 x64堆栈溢出SMEP绕过研究 https://h0mbre.github.io/HEVD_Stackoverflow_SMEP_Bypass_64bit/ Windows 7 x86非页面缓冲池溢出研究 https://h0mbre.github.io/HEVD_Pool_Overflow_32bit/ CVE-2020-12138 AMD ATI atillk64.sys 权限提升漏洞分析 https://h0mbre.github.io/atillk64_exploit/ CVE-2020-0932：使用TYPECONVERTERS在MICROSOFT SHAREPOINT上执行远程代码 https://www.zerodayinitiative.com/blog/2020/4/28/cve-2020-0932-remote-code-execution-on-microsoft-sharepoint-using-typeconverters 分析英特尔无线适配器中的远程执行代码错误的三重奏 https://www.zerodayinitiative.com/blog/2020/5/4/analyzing-a-trio-of-remote-code-execution-bugs-in-intel-wireless-adapters 内容安全策略（CSP）绕过技术 https://medium.com/bugbountywriteup/content-security-policy-csp-bypass-techniques-e3fa475bfe5d 安全报告 Security Report 卡巴斯基：2020年第一季度APT趋势报告 https://securelist.com/apt-trends-report-q1-2020/96826/