漏洞 Vulnerability D-Link DSL-2640B相关漏洞分析 https://raelize.com/posts/d-link-dsl-2640b-security-advisories/#cve-2020-9276—-d-link-dsl-2640b—do_cgi-buffer-overflow Liferay Portal Json Web Service 反序列化漏洞(CVE-2020-7961) https://paper.seebug.org/1162/ CVE-2020-0796 – Windows SMBv3 LPE exploit #SMBGhost 提权Exp https://github.com/danigargu/CVE-2020-0796 漏洞分析视角下的CVE-2020-0796漏洞 https://mp.weixin.qq.com/s/-lQ7yP4Gjh_eLw1hHs_1RA 安全研究 Security Research 分享渗透测试的一些小技巧 https://github.com/G123N1NJ4/c2hack 利用一次点击使explorer.exe进程崩溃 https://isc.sans.edu/diary/Crashing+explorer.exe+with%28out%29+a+click/25966 通过将JavaScript隐藏在PNG图片中，绕过CSP https://www.secjuice.com/hiding-javascript-in-png-csp-bypass/ 思科密码破解和解密指南 https://www.infosecmatter.com/cisco-password-cracking-and-decrypting-guide/ SMB2会话中可预测SessionID带来的安全性分析 https://www.rumble.run/2020/03/smb2-session-prediction-consequences/ Blue Frost Security eko2019.exe： Win10 x64下绕过DEP和ASLR的一道题目分析 https://connormcgarr.github.io/eko2019-exe/ 在qemu中实现与模拟iOS系统的通信 https://alephsecurity.com/2020/03/29/xnu-qemu-tcp-tunnel/ LIFERAY CVE-2020-7961漏洞的利用编写教程 https://www.synacktiv.com/posts/pentest/how-to-exploit-liferay-cve-2020-7961-quick-journey-to-poc.html WiFi安全与攻击案例分析 https://mp.weixin.qq.com/s/oBQ4VFwmqgl5ZvQBUUAkWA 安全报告 Security Report 腾讯科恩实验室：雷克萨斯汽车安全研究综述报告 https://keenlab.tencent.com/zh/2020/03/30/Tencent-Keen-Security-Lab-Experimental-Security-Assessment-on-Lexus-Cars/ 安全工具 Security Tools gdb插件：用于跟踪Linux 内核中SLUB分配 https://github.com/PaoloMonti42/salt Panther：利用日志数据检测威胁，改善云安全状况，一种云原生SIEM https://github.com/panther-labs/panther Nautilus 2.0：基于覆盖率指导和语法的fuzzer https://github.com/nautilus-fuzz/nautilus Octopus：基于python和powershell的pre-operation C2服务器 https://github.com/mhaskar/Octopus