Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
地雷探しに脆弱性を使うのは間違っているだろうか Hack a Minesweeper
Search
Mr.Rabbit
December 07, 2017
0
190
地雷探しに脆弱性を使うのは間違っているだろうか Hack a Minesweeper
2017年6月3日(土) AKIBASECで発表さてもらったLT資料です。
Mr.Rabbit
December 07, 2017
Tweet
Share
More Decks by Mr.Rabbit
See All by Mr.Rabbit
BOCCHI
01rabbit
0
10
KaliPAKU
01rabbit
0
10
Babbly
01rabbit
0
57
P.A.K.U.R.I SECCON2019 Akihabara YOROZU
01rabbit
1
110
P.A.K.U.R.I AVTOKYO HIVE
01rabbit
0
65
The Empire Strikes Back ~MR.RABBIT 帝国の逆襲~
01rabbit
0
230
あの日学んだ攻撃の方法を僕達はまだ知らない。
01rabbit
0
180
MR.RABBIT 聞いた事はあるけど、実際には見た事がないハッキングガジェット
01rabbit
2
7.3k
Featured
See All Featured
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
161
15k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
107
19k
[RailsConf 2023] Rails as a piece of cake
palkan
55
5.6k
The Art of Programming - Codeland 2020
erikaheidi
54
13k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
44
2.4k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
357
30k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
Practical Orchestrator
shlominoach
188
11k
Code Review Best Practice
trishagee
69
18k
Fantastic passwords and where to find them - at NoRuKo
philnash
51
3.3k
GraphQLとの向き合い方2022年版
quramy
49
14k
Agile that works and the tools we love
rasmusluckow
329
21k
Transcript
BLJCBTFD ͏͗͞ !SBJU
ࣗݾհ ͏͗͞ w झຯͰϖωτϨʔγϣϯςετΛͯ͠Δ w झຯͰ߈ܸݕূΛ͍ͯ͠Δ w ݱࡏɺઈࢍෆൃதX ͏͞ϒϩ ɹIUUQSBJUCMPHIBUFCMPKQ
5XJUUFS ɹ!SBJU
–ͱ͋Δຐज़ͷېॻ lຐज़ͱɺ࠽ೳͷແ͍ਓ͕ؒͦΕͰ࠽ೳ͋Δ ਓؒͱରʹͳΔҝͷٕज़z
ಥવͰ͕࣭͢Ͱ͢ʂ ϚΠϯεΠʔύͬͯͬͯ·͔͢ʁ ɹϚΠϯεΠʔύʢ.JOFTXFFQFSʣ ʹൃ໌͞ΕͨɺҰਓ༻ͷίϯϐϡʔλήʔϜͰ͋ ΔɻήʔϜͷతཕݪ͔ΒཕΛऔΓআ͘͜ ͱͰ͋Δɻ 8JLJQFEJBΑΓ
;ͱࢥͬͨɾɾɾ
্ڃΛΫϦΞ͍ͨ͠ʂ ˞্ڃͷੈքهඵɹ8JLJQFEJBΑΓ
ͨͱ͑ ͲΜͳखஈΛͬͯͰʂʂ
ඪͱ͢Δ͜ͱ w ϚΠϯεΠʔύ͕ಈ͍͍ͯΔ8JOEPXTͷ੬ऑੑΛ ಥ͍ͯϋοΫ͢Δ w 8JOEPXTΛϋοΫͨ͠ޙɺϚΠϯεΠʔύΛϋο Ϋͯ͠Έͯཪٕ͕ແ͍͔୳ͯ͠ݟΔ
ڥ 8JOEPXT91 ,BMJ-JOVY
खॱ /NBQΛͬͯ8JOEPXT91Λௐࠪ͢Δ .FUBTQMPJUΛ༻ͯ͠৵ೖ͢Δ ৵ೖͨ͠Β.FUFSQSFUFSΛۦͯ͠.JOFTXFFQFS ΛϋοΫ͢ΔXɹʢ࣮ԋʣ
ϙʔτεΩϟϯͯ͠Έͨ ͕ɺ։͍͍ͯΔͱ͍͏͜ͱɾɾɾ /4"ͷΞϨ͕ɾɾɾ
&UFSOBM#MVF .4 ͷ֬ೝ %PVCMF1VMTBSΛࠐΊΔʂʂ ੬ऑੑൃݟʂʂ
&YQMPJU͢Δ ৵ೖྃʂ
.FUFSQSFUFS͔Β .JNJLBU[ΛಡΈࠐΉ ಡΈࠐΉ͜ͱͰʮNJNJLBU[@DPNNBOEʯ͕͑ ΔΑ͏ʹͳΔ ˞NJNJLBU[ͱ 8JOEPXTͷύεϫʔυΛΫϥοΫ͢Δπʔϧ
NJNJLBU[@DPNNBOEͷ࣮ߦ ͜͜ͰʮNJNJLBU[@DPNNBOEGXJONJOFJOGPTʯ ͱೖྗ͢Δͱɾɾɾ
͋Εʁ͑ݟ͑ͯΔX ,BMJ-JOVY 8JOEPXT91
͋Εʁ͑ݟ͑ͯΔX ,BMJ-JOVY 8JOEPXT91
͜ΕͰ্ڃΫϦΞͰ͖Δ ??
൱
NJNJLBU[@DPNNBOEʹ ͬͱੌ͍͕͋Δ ͜͜ͰʮNJNJLBU[@DPNNBOEGXJONJOFDIFBUʯ ͱೖྗ͢Δͱɾɾɾ
͑ʂʁ DIFBUίϚϯυΛૹͬͨޙʹɺ൫໘ͷۭ͖εϖʔεΛΫϦοΫ ͢ΔͱΫϦΞʂʂॴཁ࣌ؒ ̍ඵʂʂ
࣮ԋ
·ͱΊ w ੬ऑੑͷΔ8JOEPXT্ͷϚΠϯεΠʔύɺҶ ͮΔࣜʹήʔϜΛ߈ུ͞Εͯ͠·͏ w ཁ͢Δʹେਓؾͳ͍ϋοΧʔ͕ɺϜΩʹͳΔͱϚΠ ϯεΠʔύΛ̍ඵͰΫϦΞ͢Δ w ࣄΛଟ֯తʹݟΔͱ໘ന͍ൃݟ͋Δ
ऴΘΓ