每周蓝军技术推送（2022.11.26-12.2）

https://medium.com/sse-blog/subdomain-enumeration-with-dnssec-9911459ee7b6

https://mp.weixin.qq.com/s/o7iD0u90ezyOyFb7DQwiUg

https://tttang.com/archive/1837

https://paper.seebug.org/2026/

https://xz.aliyun.com/t/11902

https://paper.seebug.org/2028

https://learn.microsoft.com/en-us/windows-server/identity/laps/laps-concepts

https://assume-breach.medium.com/home-grown-red-team-from-workstation-to-domain-controller-with-havoc-c2-and-microsoft-edr-6b17018e32f6

https://alwanwijayaxd.medium.com/hide-c2-server-with-http-forwarders-6e7fb7ca451

https://github.com/CodeXTF2/ScreenshotBOF

https://github.com/struppigel/hedgehog-tools/blob/main/nighthawk_str_decoder.py

https://techcommunity.microsoft.com/t5/windows-kernel-internals-blog/multi-key-total-memory-encryption-on-windows-11-22h2/ba-p/3683043

https://github.com/CoolerVoid/heap_detective

https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html

https://www.qualys.com/2022/11/30/cve-2022-3328/advisory-snap.txt

https://www.freebsd.org/security/advisories/FreeBSD-SA-22:15.ping.asc

https://pushsecurity.com/blog/maintaining-persistent-access-in-a-saas-first-world/

https://sysdig.com/blog/analysis-of-supply-chain-attacks-through-public-docker-images/

https://www.synacktiv.com/en/publications/a-dive-into-microsoft-defender-for-identity.html

https://securityaffairs.co/wordpress/139045/hacking/amazon-web-services-flaw.html

https://mp.weixin.qq.com/s/tiniAQ5AhCXm2_mqj_j7iA

https://www.freebuf.com/articles/network/350781.html