- 博客(45)
- 资源 (2)
- 收藏
- 关注
转载 SSI —— 开源的人类行为分析解决方案
http://www.oschina.net/translate/ssi-an-open-source-platform-for-social-signal-interpretationhttp://hcm-lab.de/
2015-01-28 13:17:10 1911
转载 GitHub 给安全行业的四大启示
来源:http://www.oschina.net/news/59179/github-security直到今天,安全行业才逐渐开始意识到开源社区已信奉多年的天条:协作才是创新的关键所在。即使你不是软件开发人员,你也可能听说过全球最大的代码托管服务GitHub的大名,如今有800万用户使用GitHub进行社会化协作开发,事实上GitHub已经改变了软件开发的游戏规则,甚至非开发
2015-01-28 13:16:09 1312
转载 Apache James Server 2.3.2 - Remote Command Execution
#!/usr/bin/python## Exploit Title: Apache James Server 2.3.2 Authenticated User Remote Command Execution# Date: 16\10\2014# Exploit Author: Jakub Palaczynski, Marcin Woloszyn, Maciej Grabiec# Ven
2015-01-26 23:55:03 3853
转载 varnish cli exploit
http://www.exploit-db.com/exploits/35581/https://www.varnish-cache.org/trac/wiki/CLI
2015-01-26 23:52:27 1188
原创 网易公开课机器学习
https://www.google.com/?gws_rd=ssl#q=%E7%BD%91%E6%98%93+%E6%9C%BA%E5%99%A8%E5%AD%A6%E4%B9%A0
2015-01-26 23:00:29 2730
转载 Weka 3: Data Mining Software in Java
http://www.cs.waikato.ac.nz/ml/weka/
2015-01-26 22:50:29 1225
转载 LRU和LFU的区别
LRU和LFU是不同的!LRU是最近最少使用页面置换算法(Least Recently Used),也就是首先淘汰最长时间未被使用的页面!LFU是最近最不常用页面置换算法(Least Frequently Used),也就是淘汰一定时期内被访问次数最少的页!比如,第二种方法的时期T为10分钟,如果每分钟进行一次调页,主存块为3,若所需页面走向为2 1 2 1 2 3 4
2015-01-26 20:16:45 3916
转载 An Analysis of Facebook Photo Caching
An Analysis of Facebook Photo Cachinghttps://www.google.com/?gws_rd=ssl#q=An+Analysis+of+Facebook+Photo+Caching
2015-01-26 19:06:40 1287
转载 Squid服务日志分析
转载自: http://my.oschina.net/chenguang/blog/371275 Apache 和 Squid 是两种著名的代理缓存软件,但Squid 较 Apache 而言是专门的代理缓存服务器软件,其代理缓存的功能强大,支持 HTTP/1.1 协议,其缓存对象也较多;并且 Squid 的缓存管理模块和访问控制模块功能很强大。它们有一定的相似之处,所以
2015-01-25 17:17:41 1821
原创 开源物联网相关
开源硬件:https://github.com/phodal/collection-iot/tree/master/hardwarehttp://bbs.yeelink.net/forum.phphttp://get.jobdeer.com/843.get
2015-01-25 17:13:37 1071
原创 安全会议视频更新
从今年开始,持续更新安全视频包括blackhat asia 2015 ,blackhat usa 2015等全部视频,敬请期待!一. 2015年1月BSides Columbus 2015 16个视频https://www.youtube.com/playlist?list=PLNhlcxQZJSm-L0fEgmLzf3Rmyt45M5qw0Shmoocon FireTal
2015-01-25 16:39:04 8932 1
转载 Minion security project and 分布式nmap
https://wiki.mozilla.org/Security/Projects/Minion
2015-01-25 15:34:32 1473
原创 域控渗透技巧
1. psloggedon.exe sysinternals.com2.netsess.exe www.joeware.net/freetools/利用技术:https://msdn.microsoft.com/en-us/library/windows/desktop/bb525382(v=vs.85).aspx3.pvefindaduser.exehttps://
2015-01-25 15:32:50 3472
转载 PlagueScanner: An Open Source Multiple AV Scanner
https://www.youtube.com/watch?v=UehRMI6XTXI&list=PLNhlcxQZJSm9ubSqHcg1hWqZFx3oUybAq&index=3
2015-01-25 14:56:58 1196
转载 Userland Persistence on Mac OS X "It Just Works" (January 16, 2015)
https://archive.org/details/joshpitts_shmoocon2015
2015-01-25 14:06:10 1102
原创 OSSAMS - Open Source Security Assessment Management System
http://www.ossams.com/http://www.securitytube.net/video/12231
2015-01-25 13:20:23 1050
转载 盘点互联网巨头奉献的十大开源安全工具
原文链接:http://www.aqniu.com/tools/security-tools/5732.htmlFacebook等大型互联网公司推动的服务器与数据中心、大数据工具的开源化项目类似,当大型互联网公司们在超大规模基础设施运营方面面临的挑战超出技术厂商的能力时,这些巨头就选择反客为主,成为创新技术的推动者和提供者。同样的情况也在信息安全领域中发生着。不少大型互联网公司经常会将自己
2015-01-23 19:59:36 1878
转载 KBEngine v0.4.0 发布,分布式游戏服务端引擎
http://www.oschina.net/news/59041/kbengine-0-4-0
2015-01-23 19:31:17 1083
原创 malware analysis
References Yara http://code.google.com/p/yara‐project/ Fuzzy Hashing – Jesse Kornblum http://dfrws.org/2006/proceedings/12‐Kornblum‐pres.pdf Fuzzy Clarity – Digital Ninja http://digit
2015-01-22 23:54:41 926
转载 11 open source security tools catching fire on GitHub
http://www.infoworld.com/article/2606779/security/163151-11-open-source-security-tools-catching-fire-on-GitHub.html
2015-01-22 22:46:11 847
转载 Bash data exfiltration through DNS (using bash builtin functions)
https://forsec.nl/2015/01/bash-data-exfiltration-through-dns-using-bash-builtin-functions/After gaining ‘blind’ command execution access to a compromised Linux host, data exfiltration can be dif
2015-01-22 22:31:09 860
原创 Predicting Malicious Behavior: Tools and Techniques for Ensuring Global Security
http://www.wiley.com/WileyCDA/WileyTitle/productCd-1118896696.html
2015-01-22 21:47:20 768
原创 dubbo中文参考文档
http://alibaba.github.io/dubbo-doc-static/User+Guide-zh.htm
2015-01-19 23:07:05 30813 5
转载 libpcap 编程入门资源
最近在学习libpcap编程,找到几个非常好的libpcap编程入门资源。第一个当然是官网www.tcpdump.org/ 的document:《Programming with pcap 》《Programming with Libpcap - Sniffing the network from our own application》 (pdf,非常漂亮,文章写得又好)还有一篇
2015-01-19 21:49:43 3136
转载 Designing an Adaptive Security Architecture to Protect Against Advanced Threats
https://www.brighttalk.com/webcast/574/105115
2015-01-17 11:20:24 1304
转载 流行的开源分布式文件系统比较
我现在有海量的数据文件(1000万个文件)需要存储,需要让其他计算机可以很容易地访问,数据无价,我还希望这个文件系统带冗余功能。我首先注意到的是Ubuntu Enterprise Cloud的提供者:Eucalyptus。它提供了和AWS(Amazon Web Service)几乎完全兼容的云计算接口。看起来似乎是个云存储的靠谱解决方案。Eucalyptus模仿Amazon
2015-01-12 23:07:45 7232
转载 OSSEC Log Management with Elasticsearch
http://vichargrave.com/ossec-log-management-with-elasticsearch/http://skizzlesec.com/2014/06/08/security-analysts-discuss-siems-elasticsearchlogstashkibana-vs-arcsight-splunk-and-more/
2015-01-11 22:16:43 806
转载 Security Onion Searching DNS Traffic using Bro and ELSA
https://github.com/search?utf8=%E2%9C%93&q=ELSAhttps://www.youtube.com/watch?v=33HZyIxbg6chttps://www.youtube.com/watch?v=mazSRVFYmLQ
2015-01-11 21:49:41 1588
转载 Easy way to determine virtualization technology
http://www.brendangregg.com/blog/2014-05-09/xen-feature-detection.htmlhttp://www.dmo.ca/blog/detecting-virtualization-on-linux/http://unix.stackexchange.com/questions/89714/easy-way-to-determine
2015-01-11 00:30:23 906
原创 fakenet
https://www.dropbox.com/s/8r35kdtnghe5jmz/FakeNet2.0_beta.zip?dl=0http://practicalmalwareanalysis.com/fakenet/
2015-01-10 00:52:37 1047
原创 owasp dc 2015 facebook大牛的演讲
http://www.slideshare.net/chrisgates/lascon-2014-devooopshttps://www.youtube.com/channel/UCQWPSfuH7K6YGPfHUbJcShA
2015-01-08 22:34:18 864
转载 cdn内部结构
转载自:http://caiguangguang.blog.51cto.com/1652935/1371949之前在设计自建cdn的内部结构时写的一些文字,简单贴下。内部节点方案。大部分公司的做法都是lvs+keepalived几个厂商的不同作法:1.pptv keepalived+nginx+squid+ts 节点灵活性比较高,小节点多机房,30左右节
2015-01-07 20:39:58 1819
空空如也
TA创建的收藏夹 TA关注的收藏夹
TA关注的人