Secwiki weekly (277)

Safety information

[point of view] current situation and strategic analysis of listed network security companies https://mp.weixin.qq.com/s/3mfchyt7r4rn07thg q8na

[regulations] regulations on network security vulnerability management (Draft for comments) http://www.miit.gov.cn/n1146285/n1146352/n3054355/n3057724/n3057728/c7005976/content.html

[news] SSH adds the function of resisting edge channel attack https://www.solidot.org/story? Sid = 61080

[news] Argentina national blackout https://mp.weixin.qq.com/s/0p qlspjugsc3iaqb2nmmw

Safety technology

[programming technology] CVE vulnerability information crawling https://github.com/hungryfoolou/vulnerabilitymining/tree/master/crawl

[programming technology] Python craftsman https://github.com/piglei/one-python-craftsman

[web security] details of setting up intranet penetration environment https://www.freebuf.com/articles/network/204769.html

[device security] actual battle of badusb attack based on attiny 85 development board https://laucyun.com/d2faa91d255786348f1399d40229ee68.html

[web security] cobaltstrike + Metasploit actual combat linkage https://mp.weixin.qq.com/s/x0txdb7tmeig1w4v_zk7tg

[book] osint tools and resources handbookhttps://www.i-intelligence.eu/wp-content/uploads/2018/06/osint_handbook_june-2018_final.pdf

[web security] self service security scanning and code audit system architecture practice https://mp.weixin.qq.com/s/3n3ejztamwbznl_aofojnq

[data mining] analysis report of safety and other protection projects in Hainan Province in 2019 http://www.zhaobianeican.com/mobile/analysisdetails? Id = 95d414b2cff40648378a672cad4e910

[operation and maintenance security] IDC security: distributed HIDS cluster architecture design https://tech.meituan.com/2019/01/17/distributed-hids-cluster-architecture-design.html

[web security] f-nascan-plus security service asset collection https://github.com/pingxcpost/f-nascan-plus

[device security] D-Link router hnap protocol series vulnerability disclosure https://mp.weixin.qq.com/s/jfttojwruahy1crtxn2aow

[forensic analysis] gscan: automatic and comprehensive detection of checklist on the host side of Linux https://github.com/grayddq/gscan

[web security] guess of social engineering case based on attack and defense drill https://zhanglan.zhihu.com/p/67953724

[view] details of Gartner's top ten security projects in 2019 https://mp.weixin.qq.com/s/dbw z9onotruqnvtkf1l w

[web security] subdomain takeover via ngrok service https://blog.pareshparmar.com/subdomain-takeover-ngrok/

[forensic analysis] record the strange events found in an emergency https://www.freebuf.com/geek/205497.html

[magazine] sec wiki weekly (issue 276) https://www.sec-wiki.com/weekly/276

[malicious analysis] a remote access tool using slack as a C2 channelhttps://www.coalfire.com/the-coalfire-blog/june-2019/introducing-slack

[malicious analysis] getting started with ATT & CK: detection and analyticshttps://medium.com/mitre-attack/getting-started-with-attack-detection-a8e49e4960d0

[forensic analysis] evolving Sysmon DNS monitoringhttps://blog.xpnsec.com/evaluating-sysmon-dns-monitoring/

[vulnerability analysis] WhatsApp buffer overflow vulnerability analysis https://www.anquanke.com/post/id/180459

[forensic analysis] an OSI NT investigation based on the GAO report on tracking bitcoin gun sales on the dark net https://www.4hou.com/technology/18621.html

Original address: secwiki weekly (277)