Ngicela ungitshele ukuthi ufunde ini. Ingxenye 1

Kuhlala kujabulisa ukwabelana ngolwazi oluwusizo nomphakathi. Sicele abasebenzi bethu ukuthi batuse izinsiza abazivakashela bona ngokwabo ukuze bahlale bazi ngezehlakalo emhlabeni wokuphepha kolwazi. Ukukhetha kwaba kukhulu, ngakho kwadingeka ngihlukanise izingxenye ezimbili. Ingxenye yokuqala.

Twitter

• I-NCC Group Infosec ibhulogi yezobuchwepheshe yenkampani enkulu yokuvikela ulwazi ehlala ikhipha ucwaningo lwayo, amathuluzi/ama-plugin weBurp.
• Gynvael Coldwind - Umcwaningi wezokuphepha, umsunguli weqembu eliphezulu le-ctf Dragon Sector.
• I-Null Byte - ama-tweets mayelana nokugebenga kanye nehadiwe.
• UHackSmith - Umthuthukisi we-SDR nomcwaningi emkhakheni wezokuphepha kwe-RF ne-IoT, ama-tweets/retweets, okuhlanganisa nokugetshengwa kwehadiwe.
• I-DirectoryRanger — mayelana nokuvikeleka kwe-Active Directory kanye ne-Windows.
• Binni Shah - ubhala ikakhulukazi mayelana nehadiwe, uthumela kabusha okuthunyelwe ngezihloko ezahlukahlukene zokuphepha kolwazi.

yocingo

• [MIS]ter & [MIS]sis Team - IB ngeso le-RedTeam. Izinto eziningi zekhwalithi ekuhlaselweni kwe-Active Directory.
• Quote uphawu - isiteshi esijwayelekile mayelana nezimbungulu zewebhu kubalandeli beziphazamisi zewebhu. Ezikhathini eziningi, kugcizelelwa ekuhlaziyeni ukuthi ungasebenzisa kanjani ubungozi obujwayelekile nezeluleko zokusebenzisa isofthiwe ngempumelelo, izici ezaziwa kancane kodwa eziwusizo.
• I-Cyberfuck — umzila omayelana nobuchwepheshe nokuphepha kolwazi.
• Ukuputshuka kolwazi - ukugaywa kokuvuza kwedatha.
• Admin ngencwadi — umzila omayelana nokuphatha uhlelo. Akukhona ngqo ukuphepha kolwazi, kodwa kuwusizo.
• linkmeup iyisiteshi se-podcast se-linkmeup lapho abathanda bebelokhu bexoxa ngamanethiwekhi, ubuchwepheshe kanye nokuphepha kolwazi kusukela ngo-2011. Sincoma futhi ukuthi ubheke iwebhusayithi.
• I-Life-Hack [Life-Hack]/Hacking — okuthunyelwe mayelana nokugebenga nokuvikela ngolimi olucacile (olungcono kakhulu kwabaqalayo).
• I-r0 Crew (Isiteshi) - inhlabamkhosi yezinto eziwusizo ikakhulukazi ku-RE, xhaphaza i-dev kanye nokuhlaziywa kwe-malware.

Indawo yokubeka uGithub

• kabachook/k8s-ukuphepha - amanothi kubernetes security.
• U-Alexis Ahmed/umdubuli101 - iqoqo lezifundo zevidiyo ngokuvikeleka kwewebhu, ukuhlaziya ubungozi, imisebenzi engokoqobo.
• Hack-with-Github/Awesome-Hacking - iqoqo lamakhosombe ngezihloko zabaduni, ama-pentester nabacwaningi bezokuphepha. Kudingeka sijule.
• EdOverflow/bugbounty-cheatsheet
• infosecn1nja/AD-Attack-Defense

Blogs

• I-Project Zero - ngokuvamile azidingi isingeniso, kodwa uma ungakaze uzwe ngazo: leli yiqembu lochwepheshe abapholile abafuna ubungozi "ekuqashweni kwejele okukude kwe-iOS ephezulu ngaphandle kokusebenzisana nabasebenzisi", hhayi ngenxa imali, kodwa ngenxa yokuphepha kwawo wonke umuntu.
• PortSwigger Blog — ibhulogi evela kubathuthukisi beBurp Suite, esibe indinganiso ye-de facto yokuphepha kwewebhu. Kunikezelwe, kunjalo, ekuvikelekeni kohlelo lokusebenza lwewebhu.
• I-Firmware Security
• Ukuphepha Kwemibhalo Esebenzayo
• Black Hills Ulwazi Security - babhale izinsiza/imibhalo eminingi ewusizo kakhulu ekucwaningeni; ngaphezu kwebhulogi, babelana ngolwazi lwabo ngentshiseko kumaphodikasti abo.
• Sjoerd Langkemper. Ukuphepha kohlelo lokusebenza lwewebhu
• I-Pentester Land - masonto onke inhlabamkhosi enamavidiyo nezindatshana ezikhuluma ngepentesting ishicilelwa lapha.

Youtube

Ama-Blogger

• GynvaelEN — ukubhalwa kwevidiyo, okuhlanganisa okuvela kuGynvael Coldwind owaziwayo wethimba lezokuphepha le-Google kanye nomsunguli weqembu eliphezulu le-CTF i-Dragon Sector, lapho etshela khona izinto eziningi ezithakazelisayo ngobunjiniyela obuhlanekezelwe, ukuhlela, ukuxazulula imisebenzi ye-CTF kanye nokuhlolwa kwekhodi .
• I-LiveOverflow - isiteshi esinokuqukethwe kwekhwalithi ephezulu kakhulu - ngolimi olulula mayelana nezindlela ezipholile zokuxhaphaza. Kukhona nokuhlaziywa kwemibiko ethokozisayo ku-BugBounty.
• STÖK — isiteshi esigcizelela kakhulu i-BugBounty, izeluleko ezibalulekile kanye nezingxoxo nama-bughunter aphezulu wenkundla ye-HackerOne.
• I-IppSec - izimoto ezidlulayo Hack the box.
• I-CQURE Academy yinkampani egxile ekuhloleni ingqalasizinda ye-Windows. Amavidiyo amaningi awusizo mayelana nezici ezahlukahlukene zezinhlelo zeWindows.

Izinkomfa

• ZeroNights
• Isigqoko esimnyama
• I-DEFCON
• I-Security Fest
• I-RUXCON
• I-OffensiveCon
• THOLA KABUSHA
• I-SyScan
• TROOPERScon
• I-Shakacon LLC
• Ngena
• Ingqungquthela ye-DEFCON
• CCC
• Hack In The Box Security Conference
• Microsoft BlueHat
• I-H2HC
• Ingqungquthela yezokuphepha ye-EkoParty
• I-BugCrowd
• OwaspGlobal

Izinkomfa zezemfundo

• I-NDSS Symposium
• I-IEEE Symposium on Security and Privacy
• I-FOSDEM
• USENIX
• USENIX Enigma Conference
• I-International Symposium on Research in Attacks, Intrusions and Defenses (RAID)

Izingqungquthela zezimboni

• Isisekelo se-Linux
• LLVM

I-Systematization of Knowledge (SoK)

Lolu hlobo lomsebenzi wezemfundo lungaba usizo kakhulu ekuqaleni kokungena esihlokweni esisha noma lapho uhlela ulwazi. Ukuthola umsebenzi onjalo akunzima, nazi izibonelo:

• I-SoK: (Isimo) Ubuciko Bempi: Amasu Ahlaselayo Ekuhlaziyweni Kanambambili
• I-SoK: Impi Yaphakade Esikhumbuzweni
• I-SoK: Yenza i-JIT-Spray ibe Yinhle Futhi
• I-SoK: Ukuvumelana Ngenkathi Ye-Blockchains
• I-SoK: Ukukhanya Okukhanyayo Kuzitaki Zethunzi
• I-SoK: Ukuhlanza Ukuphepha
• I-SoK: I-Automated Software Diversity
• I-SoK: Ukubuyekezwa Okuhlelekile Kokutholwa Kobugebengu Bokweba imininingwane ebucayi kuwebhu
• I-SoK: Ukusebenzisa Ukufunda Ngomshini Kwezokuphepha - Ucwaningo
• I-SoK: Ukuphepha Kokungena Okukodwa

umthombo wangempela

Sithemba ukuthi uthole okuthile okusha kwakho. Engxenyeni elandelayo, sizokutshela ukuthi yini okufanele uyifunde uma unentshisekelo, ngokwesibonelo, enkingeni yokwaneliseka kwamafomula emicabangweni nokufunda ngomshini emkhakheni wezokuphepha, futhi sizokutshela ukuthi imibiko kabani mayelana ne-iOS ye-jailbreak kube usizo.

Sizojabula uma wabelana ngokutholile noma ibhulogi yombhali wakho kumazwana.

Source: www.habr.com