SecConcept - Vulnerability Management
[toc] Vulnerability Management I. Foreword breaking down complex problems into more manageable repeatable parts: detection, reporting, and remediation. The guide solely focuses on b...
Grace
SecConcept - Secure Coding Review and Analysis
Secure Coding Review and Analysis benefits 5 Tips to a Better Secure Code Review Top 10 Secure Coding Practices Common Techniques Static Analysis ...
SecConcept - Single Tenant vs Multi-Tenant
[toc] ref SaaS: Single Tenant vs Multi-Tenant - What’s the Difference? Saas Single Tenant A single instance of the software and supporting infrastructure serve...
SecConcept - SOA Patterns Service-Oriented Systems
[toc] SOA Patterns SOA, Service-Oriented Systems Business Services: core buniess operation Coarse-grained services that define core business operations. R...
SecConcept -CMMI Capability Maturity Model Integration
[toc] CMM - Capability Maturity Model Integration Capability Maturity Model Integration (CMMI) a process level improvement training and appraisal program. Administered by the CMMI Institut...
SecConcept - Attack Surface Analysis
[toc] Attack Surface Analysis ways of doing Attack Surface Analysis and managing an application’s Attack Surface Attack Surface Analysis: map out what parts of a system need to be reviewed ...
SecConcept - Security Orchestration
[toc] Security Orchestration Security Orchestration integrate a disparate ecosystem of SOC tools into a unified ecosystem dozens of cybersecurity security tools in place to preve...
SecConcept - Security Threat Models
[toc] Security Threat Models five aspects to security threat modeling: security assessment should broadly include two components: Security review: A collaborative process that includes i...
Attack - RCE Multi-stage Squiblydoo variant
[toc] Multi-stage Squiblydoo variant step 1 the .lnk file has a cmd command but it looks encoded/obfuscated. the cmd contains two distinct sections. The first part creates a “RANDOM.inf...
CI/CD - Continuous Integration & Continuous Delivery
CI/CD CI CD AWS Develop Tool Other Tools Action Jenkins 在本地端測試 Node.js 測試 Node.js CircleCI ...
Jupyterbook
Jupyter Overview Jupyter Notebook Jupyter Lab JupyterLite GoogleColab Install install Jupyter in Win install on Mac ...
GitHub
Git basic Git 常用命令速查 版本控制 使用Git进行版本管理 Git 三种状态 Git安装设置 repository ...
GitHub - A successful Git branching model
A successful Git branching model The main branches Supporting branches Feature branches Release branches Hotfix branches ...
GitHub - Git
git add git commit git show 显示各种类型的对象。 git add git add [–verbose -v] [–dry-run -n] [–force -f] [–interactive -i] [–patch -p] ...
Lab - TryHackMe - Entry Walkthrough
[toc] TryHackMe - Entry Walkthrough Hacktivities Goal Starting Out In Cyber Sec path Tutorial how to use and get started w...