Kuhlala kujabulisa ukwabelana ngolwazi oluwusizo nomphakathi. Sicele abasebenzi bethu ukuthi batuse izinsiza abazivakashela bona ngokwabo ukuze bahlale bazi ngezehlakalo emhlabeni wokuphepha kolwazi. Ukukhetha kwaba kukhulu, ngakho kwadingeka ngihlukanise izingxenye ezimbili. Ingxenye yokuqala.
I-NCC Group Infosec ibhulogi yezobuchwepheshe yenkampani enkulu yokuvikela ulwazi ehlala ikhipha ucwaningo lwayo, amathuluzi/ama-plugin weBurp.Gynvael Coldwind - Umcwaningi wezokuphepha, umsunguli weqembu eliphezulu le-ctf Dragon Sector.I-Null Byte - ama-tweets mayelana nokugebenga kanye nehadiwe.UHackSmith - Umthuthukisi we-SDR nomcwaningi emkhakheni wezokuphepha kwe-RF ne-IoT, ama-tweets/retweets, okuhlanganisa nokugetshengwa kwehadiwe.I-DirectoryRanger — mayelana nokuvikeleka kwe-Active Directory kanye ne-Windows.Binni Shah - ubhala ikakhulukazi mayelana nehadiwe, uthumela kabusha okuthunyelwe ngezihloko ezahlukahlukene zokuphepha kolwazi.
yocingo
[MIS]ter & [MIS]sis Team - IB ngeso le-RedTeam. Izinto eziningi zekhwalithi ekuhlaselweni kwe-Active Directory.Quote uphawu - isiteshi esijwayelekile mayelana nezimbungulu zewebhu kubalandeli beziphazamisi zewebhu. Ezikhathini eziningi, kugcizelelwa ekuhlaziyeni ukuthi ungasebenzisa kanjani ubungozi obujwayelekile nezeluleko zokusebenzisa isofthiwe ngempumelelo, izici ezaziwa kancane kodwa eziwusizo.I-Cyberfuck — umzila omayelana nobuchwepheshe nokuphepha kolwazi.Ukuputshuka kolwazi - ukugaywa kokuvuza kwedatha.Admin ngencwadi — umzila omayelana nokuphatha uhlelo. Akukhona ngqo ukuphepha kolwazi, kodwa kuwusizo.linkmeup iyisiteshi se-podcast se-linkmeup lapho abathanda bebelokhu bexoxa ngamanethiwekhi, ubuchwepheshe kanye nokuphepha kolwazi kusukela ngo-2011. Sincoma futhi ukuthi ubhekeiwebhusayithi .I-Life-Hack [Life-Hack]/Hacking — okuthunyelwe mayelana nokugebenga nokuvikela ngolimi olucacile (olungcono kakhulu kwabaqalayo).I-r0 Crew (Isiteshi) - inhlabamkhosi yezinto eziwusizo ikakhulukazi ku-RE, xhaphaza i-dev kanye nokuhlaziywa kwe-malware.
Indawo yokubeka uGithub
kabachook/k8s-ukuphepha - amanothi kubernetes security.U-Alexis Ahmed/umdubuli101 - iqoqo lezifundo zevidiyo ngokuvikeleka kwewebhu, ukuhlaziya ubungozi, imisebenzi engokoqobo.Hack-with-Github/Awesome-Hacking - iqoqo lamakhosombe ngezihloko zabaduni, ama-pentester nabacwaningi bezokuphepha. Kudingeka sijule.EdOverflow/bugbounty-cheatsheet infosecn1nja/AD-Attack-Defense
Blogs
I-Project Zero - ngokuvamile azidingi isingeniso, kodwa uma ungakaze uzwe ngazo: leli yiqembu lochwepheshe abapholile abafuna ubungozi "ekuqashweni kwejele okukude kwe-iOS ephezulu ngaphandle kokusebenzisana nabasebenzisi", hhayi ngenxa imali, kodwa ngenxa yokuphepha kwawo wonke umuntu.PortSwigger Blog — ibhulogi evela kubathuthukisi beBurp Suite, esibe indinganiso ye-de facto yokuphepha kwewebhu. Kunikezelwe, kunjalo, ekuvikelekeni kohlelo lokusebenza lwewebhu.I-Firmware Security Ukuphepha Kwemibhalo Esebenzayo Black Hills Ulwazi Security - babhale izinsiza/imibhalo eminingi ewusizo kakhulu ekucwaningeni; ngaphezu kwebhulogi, babelana ngolwazi lwabo ngentshiseko kumaphodikasti abo.Sjoerd Langkemper. Ukuphepha kohlelo lokusebenza lwewebhu I-Pentester Land - masonto onke inhlabamkhosi enamavidiyo nezindatshana ezikhuluma ngepentesting ishicilelwa lapha.
Youtube
Ama-Blogger
GynvaelEN — ukubhalwa kwevidiyo, okuhlanganisa okuvela kuGynvael Coldwind owaziwayo wethimba lezokuphepha le-Google kanye nomsunguli weqembu eliphezulu le-CTF i-Dragon Sector, lapho etshela khona izinto eziningi ezithakazelisayo ngobunjiniyela obuhlanekezelwe, ukuhlela, ukuxazulula imisebenzi ye-CTF kanye nokuhlolwa kwekhodi .I-LiveOverflow - isiteshi esinokuqukethwe kwekhwalithi ephezulu kakhulu - ngolimi olulula mayelana nezindlela ezipholile zokuxhaphaza. Kukhona nokuhlaziywa kwemibiko ethokozisayo ku-BugBounty.STÖK — isiteshi esigcizelela kakhulu i-BugBounty, izeluleko ezibalulekile kanye nezingxoxo nama-bughunter aphezulu wenkundla ye-HackerOne.I-IppSec - izimoto ezidlulayo Hack the box.I-CQURE Academy yinkampani egxile ekuhloleni ingqalasizinda ye-Windows. Amavidiyo amaningi awusizo mayelana nezici ezahlukahlukene zezinhlelo zeWindows.
Izinkomfa
ZeroNights Isigqoko esimnyama I-DEFCON I-Security Fest I-RUXCON I-OffensiveCon THOLA KABUSHA I-SyScan TROOPERScon I-Shakacon LLC Ngena Ingqungquthela ye-DEFCON CCC Hack In The Box Security Conference Microsoft BlueHat I-H2HC Ingqungquthela yezokuphepha ye-EkoParty I-BugCrowd OwaspGlobal
Izinkomfa zezemfundo
I-NDSS Symposium I-IEEE Symposium on Security and Privacy I-FOSDEM USENIX USENIX Enigma Conference I-International Symposium on Research in Attacks, Intrusions and Defenses (RAID)
Izingqungquthela zezimboni
I-Systematization of Knowledge (SoK)
Lolu hlobo lomsebenzi wezemfundo lungaba usizo kakhulu ekuqaleni kokungena esihlokweni esisha noma lapho uhlela ulwazi. Ukuthola umsebenzi onjalo akunzima, nazi izibonelo:
I-SoK: (Isimo) Ubuciko Bempi: Amasu Ahlaselayo Ekuhlaziyweni Kanambambili I-SoK: Impi Yaphakade Esikhumbuzweni I-SoK: Yenza i-JIT-Spray ibe Yinhle Futhi I-SoK: Ukuvumelana Ngenkathi Ye-Blockchains I-SoK: Ukukhanya Okukhanyayo Kuzitaki Zethunzi I-SoK: Ukuhlanza Ukuphepha I-SoK: I-Automated Software Diversity I-SoK: Ukubuyekezwa Okuhlelekile Kokutholwa Kobugebengu Bokweba imininingwane ebucayi kuwebhu I-SoK: Ukusebenzisa Ukufunda Ngomshini Kwezokuphepha - Ucwaningo I-SoK: Ukuphepha Kokungena Okukodwa
Sithemba ukuthi uthole okuthile okusha kwakho. Engxenyeni elandelayo, sizokutshela ukuthi yini okufanele uyifunde uma unentshisekelo, ngokwesibonelo, enkingeni yokwaneliseka kwamafomula emicabangweni nokufunda ngomshini emkhakheni wezokuphepha, futhi sizokutshela ukuthi imibiko kabani mayelana ne-iOS ye-jailbreak kube usizo.
Sizojabula uma wabelana ngokutholile noma ibhulogi yombhali wakho kumazwana.
Source: www.habr.com