国内外安全技术分享（2019年11月13日）

////

1、Cross-site scripting (XSS) cheat sheet

https://portswigger.net/web-security/cross-site-scripting/cheat-sheet

2、Cacti - Complete Network Graphing Solution

https://www.kitploit.com/2019/11/cacti-complete-network-graphing-solution.html

3、MSRC-Security-Research

https://github.com/microsoft/MSRC-Security-Research/tree/master/presentations/2019_09_Ekoparty

4、Cobaltstrike Server持久化 & Cobaltstrike与Metasploit相互派生shell

https://xz.aliyun.com/t/6722#toc-2

5、你用它上網，我用它進你內網! 中華電信數據機遠端代碼執行漏洞

http://blog.orange.tw/2019/11/HiNet-GPON-Modem-RCE.html

-END-