Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
地雷探しに脆弱性を使うのは間違っているだろうか Hack a Minesweeper
Search
Mr.Rabbit
December 07, 2017
0
200
地雷探しに脆弱性を使うのは間違っているだろうか Hack a Minesweeper
2017年6月3日(土) AKIBASECで発表さてもらったLT資料です。
Mr.Rabbit
December 07, 2017
Tweet
Share
More Decks by Mr.Rabbit
See All by Mr.Rabbit
BOCCHI
01rabbit
0
17
KaliPAKU
01rabbit
0
17
Babbly
01rabbit
0
59
P.A.K.U.R.I SECCON2019 Akihabara YOROZU
01rabbit
1
110
P.A.K.U.R.I AVTOKYO HIVE
01rabbit
0
71
The Empire Strikes Back ~MR.RABBIT 帝国の逆襲~
01rabbit
0
230
あの日学んだ攻撃の方法を僕達はまだ知らない。
01rabbit
0
180
MR.RABBIT 聞いた事はあるけど、実際には見た事がないハッキングガジェット
01rabbit
2
7.3k
Featured
See All Featured
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
33
2.4k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
44
2.5k
The Language of Interfaces
destraynor
161
25k
Why You Should Never Use an ORM
jnunemaker
PRO
59
9.5k
Statistics for Hackers
jakevdp
799
220k
The Cost Of JavaScript in 2023
addyosmani
53
8.9k
Embracing the Ebb and Flow
colly
87
4.8k
How to Think Like a Performance Engineer
csswizardry
26
1.9k
Testing 201, or: Great Expectations
jmmastey
45
7.7k
Unsuck your backbone
ammeep
671
58k
Facilitating Awesome Meetings
lara
55
6.5k
Thoughts on Productivity
jonyablonski
70
4.8k
Transcript
BLJCBTFD ͏͗͞ !SBJU
ࣗݾհ ͏͗͞ w झຯͰϖωτϨʔγϣϯςετΛͯ͠Δ w झຯͰ߈ܸݕূΛ͍ͯ͠Δ w ݱࡏɺઈࢍෆൃதX ͏͞ϒϩ ɹIUUQSBJUCMPHIBUFCMPKQ
5XJUUFS ɹ!SBJU
–ͱ͋Δຐज़ͷېॻ lຐज़ͱɺ࠽ೳͷແ͍ਓ͕ؒͦΕͰ࠽ೳ͋Δ ਓؒͱରʹͳΔҝͷٕज़z
ಥવͰ͕࣭͢Ͱ͢ʂ ϚΠϯεΠʔύͬͯͬͯ·͔͢ʁ ɹϚΠϯεΠʔύʢ.JOFTXFFQFSʣ ʹൃ໌͞ΕͨɺҰਓ༻ͷίϯϐϡʔλήʔϜͰ͋ ΔɻήʔϜͷతཕݪ͔ΒཕΛऔΓআ͘͜ ͱͰ͋Δɻ 8JLJQFEJBΑΓ
;ͱࢥͬͨɾɾɾ
্ڃΛΫϦΞ͍ͨ͠ʂ ˞্ڃͷੈքهඵɹ8JLJQFEJBΑΓ
ͨͱ͑ ͲΜͳखஈΛͬͯͰʂʂ
ඪͱ͢Δ͜ͱ w ϚΠϯεΠʔύ͕ಈ͍͍ͯΔ8JOEPXTͷ੬ऑੑΛ ಥ͍ͯϋοΫ͢Δ w 8JOEPXTΛϋοΫͨ͠ޙɺϚΠϯεΠʔύΛϋο Ϋͯ͠Έͯཪٕ͕ແ͍͔୳ͯ͠ݟΔ
ڥ 8JOEPXT91 ,BMJ-JOVY
खॱ /NBQΛͬͯ8JOEPXT91Λௐࠪ͢Δ .FUBTQMPJUΛ༻ͯ͠৵ೖ͢Δ ৵ೖͨ͠Β.FUFSQSFUFSΛۦͯ͠.JOFTXFFQFS ΛϋοΫ͢ΔXɹʢ࣮ԋʣ
ϙʔτεΩϟϯͯ͠Έͨ ͕ɺ։͍͍ͯΔͱ͍͏͜ͱɾɾɾ /4"ͷΞϨ͕ɾɾɾ
&UFSOBM#MVF .4 ͷ֬ೝ %PVCMF1VMTBSΛࠐΊΔʂʂ ੬ऑੑൃݟʂʂ
&YQMPJU͢Δ ৵ೖྃʂ
.FUFSQSFUFS͔Β .JNJLBU[ΛಡΈࠐΉ ಡΈࠐΉ͜ͱͰʮNJNJLBU[@DPNNBOEʯ͕͑ ΔΑ͏ʹͳΔ ˞NJNJLBU[ͱ 8JOEPXTͷύεϫʔυΛΫϥοΫ͢Δπʔϧ
NJNJLBU[@DPNNBOEͷ࣮ߦ ͜͜ͰʮNJNJLBU[@DPNNBOEGXJONJOFJOGPTʯ ͱೖྗ͢Δͱɾɾɾ
͋Εʁ͑ݟ͑ͯΔX ,BMJ-JOVY 8JOEPXT91
͋Εʁ͑ݟ͑ͯΔX ,BMJ-JOVY 8JOEPXT91
͜ΕͰ্ڃΫϦΞͰ͖Δ ??
൱
NJNJLBU[@DPNNBOEʹ ͬͱੌ͍͕͋Δ ͜͜ͰʮNJNJLBU[@DPNNBOEGXJONJOFDIFBUʯ ͱೖྗ͢Δͱɾɾɾ
͑ʂʁ DIFBUίϚϯυΛૹͬͨޙʹɺ൫໘ͷۭ͖εϖʔεΛΫϦοΫ ͢ΔͱΫϦΞʂʂॴཁ࣌ؒ ̍ඵʂʂ
࣮ԋ
·ͱΊ w ੬ऑੑͷΔ8JOEPXT্ͷϚΠϯεΠʔύɺҶ ͮΔࣜʹήʔϜΛ߈ུ͞Εͯ͠·͏ w ཁ͢Δʹେਓؾͳ͍ϋοΧʔ͕ɺϜΩʹͳΔͱϚΠ ϯεΠʔύΛ̍ඵͰΫϦΞ͢Δ w ࣄΛଟ֯తʹݟΔͱ໘ന͍ൃݟ͋Δ
ऴΘΓ