今日文章进度：

1.《晚熟的人》读书笔记 未写完

2.最新Bin2Code框架CodeCMR解读 明天发布

漏洞挖掘学习

1.AWS IPS接管子域名

https://www.kitploit.com/2020/10/taken-takeover-aws-ips-and-have-working.html?utm_source=dlvr.it&utm_medium=twitter

2.bugcrowd 出品的2020深入黑客报告

https://www.itspmagazine.com/their-stories/2020-inside-the-mind-of-a-hacker-report-unique-histories-shared-destiny-a-bugcrowd-story

3.k8s安全

https://www.youtube.com/watch?v=n-SJe2PXF_E

漏洞挖掘工具

1.Trident-自动密码喷涂工具

https://www.kitploit.com/2020/11/trident-automated-password-spraying-tool.html

2.Directory Fuzzing

https://medium.com/bugbountywriteup/directory-fuzzing-24265834552b

3.UEFI Fuzz

https://labs.sentinelone.com/moving-from-dynamic-emulation-of-uefi-modules-to-coverage-guided-fuzzing-of-uefi-firmware/

4.利用WebLogic漏洞进行漏洞搜寻以快速赚钱（CVE-2020–14882）

https://www.imperva.com/blog/bug-hunting-for-a-quick-buck-using-weblogic-vulnerability-cve-2020-14882/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Imperviews+%28Imperva+Cyber+Security+Blog%29

5.HTTP检查器 （Rust编写）

https://github.com/Edu4rdSHL/fhc

AI安全

1.AI在网络安全的作用

https://autome.me/the-role-of-artificial-intelligence-ai-in-cybersecurity/

2.警察如果用AI来跟踪和识别你

https://thegradient.pub/how-the-police-use-ai-to-track-and-identify-you/

3.对指纹识别的出勤设备进行渗透测试

https://pentestmag.com/pentesting-an-iot-based-biometric-attendance-device/