今日重点：

1.HITBCyberWeek 2020 会议的议题 PPT

https://cyberweek.ae/materials/2020/

漏洞挖掘资源

1.Fuzzilli – A JavaScript Engine Fuzzer

https://www.kitploit.com/2020/11/fuzzilli-javascript-engine-fuzzer.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+PentestTools+%28PenTest+Tools%29

2.null Ahmedabad Meet 22 November, 2020 Monthly Meet

3.Exploiting OAuth 2.0 — Authorization Code Grants

https://xploitprotocol.medium.com/exploiting-oauth-2-0-authorization-code-grants-379798888893

4.RPCScan

https://github.com/HACKE-RC/RPCSCAN

5.Tale of 3 vulnerabilities to account takeover!

https://medium.com/@logicbomb_1/tale-of-3-vulnerabilities-to-account-takeover-44ba631a0304

6.BurpSuite_403Bypasser

https://github.com/sting8k/BurpSuite_403Bypasser

7.探索先进自动化漏洞挖掘技术中的不足

https://paper.seebug.org/1404/

8.基于 GraphQL 的安全测试工具 InQL Scanner 发布新版本

https://blog.doyensec.com//2020/11/19/inql-scanner-v3.html