[ Conference ]  OPCDE 2018 大会议题材料已公开： https://github.com/comaeio/OPCDE/tree/master/2018

[ Crypto ]  Hash 签名算法详解： https://blog.cryptographyengineering.com/2018/04/07/hash-based-signatures-an-illustrated-primer/

[ Debug ]   C++ 调试相关优秀资源收集： https://github.com/MattPD/cpplinks/blob/master/debugging.md

[ Industry News ]   Mirai 变种将目标锁定金融部门： https://threatpost.com/mirai-variant-targets-financial-sector-with-iot-ddos-attacks/131056/

[ iOS ]   Intel/iPhone 蜂窝基带漏洞的详细分析（CVE-2018-4148）： https://comsecuris.com/blog/posts/theres_life_in_the_old_dog_yet_tearing_new_holes_into_inteliphone_cellular_modems/

[ macOS ]  macOS necp_client_action 系统调用中的堆溢出漏洞分析与利用： https://blog.grimm-co.com/post/heap-overflow-in-the-necp_client_action-syscall/

[ Others ]  Vulnerability Modeling with Binary Ninja： https://blog.trailofbits.com/2018/04/04/vulnerability-modeling-with-binary-ninja/

[ Others ]  cookies-over-http-bad，通过 HTTP 传输 cookie 的隐患： https://github.com/mikewest/cookies-over-http-bad

[ Popular Software ]  安全研究人员发现 Spring Framework 存在 RCE 漏洞： https://securityaffairs.co/wordpress/71117/hacking/spring-framework-hack.html

[ Tools ]  Diggy - 从 Apk 文件中提取 URLs 的工具： https://github.com/UltimateHackers/Diggy

[ Tools ]  Mimikatz 的 DCShadow 使用方法介绍： http://www.labofapenetrationtester.com/2018/04/dcshadow.html

[ WirelessSecurity ]  借助 Gattacker 来 Hackjing 蓝牙低功耗（Bluetooth Low Energy）： https://blog.attify.com/hacking-bluetooth-low-energy/