Top 10 web hacking techniques of 2021 - PortSwigger https://portswigger.net/polls/top-10-web-hacking-techniques-2021
从内部攻击 RDP:我们如何滥用命名管道进行智能卡劫持、未经授权的文件系统 https://www.cyberark.com/resources/threat-research-blog/attacking-rdp-from-inside
关于我们如何破坏 CI/CD 管道的 10 个真实故事 https://research.nccgroup.com/2022/01/13/10-real-world-stories-of-how-weve-compromised-ci-cd-pipelines/
iOS 设备本地授权中的漏洞和威胁 - 保护 https://www.securing.pl/en/vulnerabilities-and-threats-in-local-authorization-on-ios-devices
