安全工具 Security Tools Adama – 威胁检索和安全分析工具 https://github.com/randomuserid/Adama Subdomain3 – 用于发现子域的新一代工具 https://www.kitploit.com/2019/11/subdomain3-new-generation-of-tool-for.html Attack Monitor – 端点检测和恶意软件分析软件 https://www.kitploit.com/2019/11/attack-monitor-endpoint-detection-and.html TSAnalyser – 对DVB数字电视中的MPEG-2传输流进行深入分析的免费软件 https://www.promaxelectronics.com/ing/products/educational-trainers/TSAnalyser/free-software-for-transport-stream-analysis/ 安全资讯 Security Information 2019年至2025年互联网安全审计市场的新兴趋势和技术 https://www.marketwatch.com/press-release/internet-security-audit-market-emerging-trends-and-technology-2019-to-2025-2019-11-29 安全研究 Security Research 关于发布攻击性安全工具的探讨 https://medium.com/@QW5kcmV3/misconceptions-unrestricted-release-of-offensive-security-tools-789299c72afe 如何防止恶意的第三方DLL注入到进程 https://www.freebuf.com/articles/system/219198.html Java反序列化工具Gadgetinspector初探 https://medium.com/@knownsec404team/java-deserialization-tool-gadgetinspector-first-glimpse-74e99e493649 使用ntdsutil实用程序进行NTDS.dit转储的取证痕迹 https://blog.menasec.net/2019/11/forensics-traces-of-ntdsdit-dumping.html 恶意软件 Malware 使用白色字体隐藏恶意代码 https://blog.rapid7.com/2019/11/14/we-dont-want-white-font-office-macros-evasion-and-malicious-self-reference/ 安全报告 Security Report Fullz House网络钓鱼活动分析 https://www.riskiq.com/blog/labs/fullz-house/ Ginp木马：借用Anubis的恶意代码拼凑而成 https://www.threatfabric.com/blogs/ginp_a_malware_patchwork_borrowing_from_anubis.html ENDTRADE行动：寻找TICK的多阶段后门 https://blog.trendmicro.com/trendlabs-security-intelligence/operation-endtrade-finding-multi-stage-backdoors-that-tick/