https://cxsecurity.com/issue/WLB-2021120101
https://cxsecurity.com/issue/WLB-2021120102
https://cxsecurity.com/issue/WLB-2021120103
AlphaSkins Alpha Controls Package | SQL Injection Vulnerability
https://cxsecurity.com/issue/WLB-2021120105
https://cxsecurity.com/issue/WLB-2021120107
https://cxsecurity.com/issue/WLB-2021120108
https://cxsecurity.com/issue/WLB-2022010009
https://cxsecurity.com/issue/WLB-2021120112
2021年最受欢迎的黑客工具top 20
https://www.kitploit.com/2021/12/top-20-most-popular-hacking-tools-in.html
漏洞猎人的漏洞探测工具列表
https://infosecwriteups.com/bug-bounty-tool-list-32262271f1e4
WMEye:为使用 WMI 和 MSBuild 横向而开发
https://github.com/pwn1sher/WMEye
SourceLeakHacker:一个多线程 Web 目录扫描器
https://github.com/WangYihang/SourceLeakHacker
log4jscanner:用于分析 JAR 文件的 log4j 漏洞文件系统扫描器和 Go 包
https://github.com/google/log4jscanner
黑魔法:JS引擎漏洞
https://www.da.vidbuchanan.co.uk/blog/webos-wampage.html
https://blog.assetnote.io/2021/12/26/chained-ssrf-websphere/
https://www.o2oxy.cn/3972.html
https://bugs.xdavidhu.me/google/2021/12/31/fixing-the-unfixable-story-of-a-google-cloud-ssrf/
https://www.catonetworks.com/blog/how-to-detect-dns-tunneling-in-the-network/
https://blog.willemmelching.nl/carhacking/2022/01/02/vw-part1/
更多详情请查看原文