├── LICENSE ├── README.md └── articles ├── PHP-Audit.md ├── PHP代码审计学习.md ├── PHP任意文件包含绕过截断新姿势.md ├── TK-Suggestion.jpg ├── Web安全研究人员是如何炼成的.md ├── code-audit-start.md ├── codeaudit-functions.md ├── img ├── 20170906-1.png ├── 20170917-1.jpg ├── 20170921-1.jpg ├── 20170921-2.jpg ├── 20170921-3.jpg ├── 20170921-4.jpg ├── 20171029-1.png ├── 20171029-2.png ├── 20171122-1.png ├── 20171122-10.png ├── 20171122-11.png ├── 20171122-12.png ├── 20171122-2.png ├── 20171122-3.png ├── 20171122-4.png ├── 20171122-5.png ├── 20171122-6.png ├── 20171122-7.png ├── 20171122-8.png ├── 20171122-9.png ├── 20171202-1.png └── PHP-Audit2.svg ├── interview-1.md ├── interview-2.md ├── interview-3.md ├── interview-4.md ├── interview-5.md ├── interview-6.md ├── interview-7.md ├── interview-8.png ├── interview-9.md ├── mysql-injection-in-insert-update-delete.md ├── pentest-learning.md ├── pentest-practice.md ├── pentest-summary.md ├── php-common-vulnerability.pdf ├── tk-answers.md ├── undergraduate-learning-security.md ├── web-secuity-learning-2.md ├── web-secuity-learning-3.md ├── web-secuity-learning.md ├── 代码审计和渗透测试研究方向问题-P神回答.md ├── 做安全研究挖不到洞很迷惘-TK的回答.md ├── 做安全研究挖不到漏洞怎么办-TK回答.md ├── 关注的安全研究人员以及日常的工作状况-P神回答.md ├── 利用思维导图快速读懂框架和理清思路.md ├── 安全之道-云舒.md ├── 安全从业的待遇-P神的回答.md ├── 对AWVS一次简单的分析.md ├── 对安全新人的建议-宝宝树.md ├── 我的白帽学习路线--20170325.pdf └── 研究web安全需要达到什么水平才能去阿里实习.md /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/README.md -------------------------------------------------------------------------------- /articles/PHP-Audit.md: -------------------------------------------------------------------------------- 1 | ![](img/PHP-Audit2.svg) -------------------------------------------------------------------------------- /articles/PHP代码审计学习.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/PHP代码审计学习.md -------------------------------------------------------------------------------- /articles/PHP任意文件包含绕过截断新姿势.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/PHP任意文件包含绕过截断新姿势.md -------------------------------------------------------------------------------- /articles/TK-Suggestion.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/TK-Suggestion.jpg -------------------------------------------------------------------------------- /articles/Web安全研究人员是如何炼成的.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/Web安全研究人员是如何炼成的.md -------------------------------------------------------------------------------- /articles/code-audit-start.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/code-audit-start.md -------------------------------------------------------------------------------- /articles/codeaudit-functions.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/codeaudit-functions.md -------------------------------------------------------------------------------- /articles/img/20170906-1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20170906-1.png -------------------------------------------------------------------------------- /articles/img/20170917-1.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20170917-1.jpg -------------------------------------------------------------------------------- /articles/img/20170921-1.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20170921-1.jpg -------------------------------------------------------------------------------- /articles/img/20170921-2.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20170921-2.jpg -------------------------------------------------------------------------------- /articles/img/20170921-3.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20170921-3.jpg -------------------------------------------------------------------------------- /articles/img/20170921-4.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20170921-4.jpg -------------------------------------------------------------------------------- /articles/img/20171029-1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171029-1.png -------------------------------------------------------------------------------- /articles/img/20171029-2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171029-2.png -------------------------------------------------------------------------------- /articles/img/20171122-1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-1.png -------------------------------------------------------------------------------- /articles/img/20171122-10.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-10.png -------------------------------------------------------------------------------- /articles/img/20171122-11.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-11.png -------------------------------------------------------------------------------- /articles/img/20171122-12.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-12.png -------------------------------------------------------------------------------- /articles/img/20171122-2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-2.png -------------------------------------------------------------------------------- /articles/img/20171122-3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-3.png -------------------------------------------------------------------------------- /articles/img/20171122-4.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-4.png -------------------------------------------------------------------------------- /articles/img/20171122-5.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-5.png -------------------------------------------------------------------------------- /articles/img/20171122-6.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-6.png -------------------------------------------------------------------------------- /articles/img/20171122-7.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-7.png -------------------------------------------------------------------------------- /articles/img/20171122-8.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-8.png -------------------------------------------------------------------------------- /articles/img/20171122-9.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171122-9.png -------------------------------------------------------------------------------- /articles/img/20171202-1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/20171202-1.png -------------------------------------------------------------------------------- /articles/img/PHP-Audit2.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/img/PHP-Audit2.svg -------------------------------------------------------------------------------- /articles/interview-1.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-1.md -------------------------------------------------------------------------------- /articles/interview-2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-2.md -------------------------------------------------------------------------------- /articles/interview-3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-3.md -------------------------------------------------------------------------------- /articles/interview-4.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-4.md -------------------------------------------------------------------------------- /articles/interview-5.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-5.md -------------------------------------------------------------------------------- /articles/interview-6.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-6.md -------------------------------------------------------------------------------- /articles/interview-7.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-7.md -------------------------------------------------------------------------------- /articles/interview-8.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-8.png -------------------------------------------------------------------------------- /articles/interview-9.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/interview-9.md -------------------------------------------------------------------------------- /articles/mysql-injection-in-insert-update-delete.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/mysql-injection-in-insert-update-delete.md -------------------------------------------------------------------------------- /articles/pentest-learning.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/pentest-learning.md -------------------------------------------------------------------------------- /articles/pentest-practice.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/pentest-practice.md -------------------------------------------------------------------------------- /articles/pentest-summary.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/pentest-summary.md -------------------------------------------------------------------------------- /articles/php-common-vulnerability.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/php-common-vulnerability.pdf -------------------------------------------------------------------------------- /articles/tk-answers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/tk-answers.md -------------------------------------------------------------------------------- /articles/undergraduate-learning-security.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/undergraduate-learning-security.md -------------------------------------------------------------------------------- /articles/web-secuity-learning-2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/web-secuity-learning-2.md -------------------------------------------------------------------------------- /articles/web-secuity-learning-3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/web-secuity-learning-3.md -------------------------------------------------------------------------------- /articles/web-secuity-learning.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/web-secuity-learning.md -------------------------------------------------------------------------------- /articles/代码审计和渗透测试研究方向问题-P神回答.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/代码审计和渗透测试研究方向问题-P神回答.md -------------------------------------------------------------------------------- /articles/做安全研究挖不到洞很迷惘-TK的回答.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/做安全研究挖不到洞很迷惘-TK的回答.md -------------------------------------------------------------------------------- /articles/做安全研究挖不到漏洞怎么办-TK回答.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/做安全研究挖不到漏洞怎么办-TK回答.md -------------------------------------------------------------------------------- /articles/关注的安全研究人员以及日常的工作状况-P神回答.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/关注的安全研究人员以及日常的工作状况-P神回答.md -------------------------------------------------------------------------------- /articles/利用思维导图快速读懂框架和理清思路.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/利用思维导图快速读懂框架和理清思路.md -------------------------------------------------------------------------------- /articles/安全之道-云舒.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/安全之道-云舒.md -------------------------------------------------------------------------------- /articles/安全从业的待遇-P神的回答.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/安全从业的待遇-P神的回答.md -------------------------------------------------------------------------------- /articles/对AWVS一次简单的分析.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/对AWVS一次简单的分析.md -------------------------------------------------------------------------------- /articles/对安全新人的建议-宝宝树.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/对安全新人的建议-宝宝树.md -------------------------------------------------------------------------------- /articles/我的白帽学习路线--20170325.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/我的白帽学习路线--20170325.pdf -------------------------------------------------------------------------------- /articles/研究web安全需要达到什么水平才能去阿里实习.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/spoock1024/web-security/HEAD/articles/研究web安全需要达到什么水平才能去阿里实习.md --------------------------------------------------------------------------------