Upgrade to Pro — share decks privately, control downloads, hide ads and more …

HITCON 2017 Zeroday 發表會

Avatar for Inndy Inndy
August 26, 2017
Technology
0
1.3k

HITCON 2017 Zeroday 發表會

https://zeroday.hitcon.org/vulnerability/ZD-2016-00306
Avatar for Inndy

Inndy

August 26, 2017
Tweet

More Decks by Inndy

See All by Inndy
工程師一定要懂的 Text Encoding
Avatar for Inndy inndy
1
670
資訊安全:麻瓜的黑魔法防禦術
Avatar for Inndy inndy
3
2.9k
HackmeCTF 平台背後的心酸血淚史
Avatar for Inndy inndy
2
820
COSCUP 2018 Lightning Talk - 審稿好難,所以我們來寫程式吧
Avatar for Inndy inndy
0
430
逆向工程:從入門到放棄
Avatar for Inndy inndy
7
3.5k
No More Crypto Fails
Avatar for Inndy inndy
33
8.1k
你再共用密碼啊
Avatar for Inndy inndy
1
750
CTF From Zero To One
Avatar for Inndy inndy
5
5.1k
逆向工程基礎
Avatar for Inndy inndy
4
1.4k

Other Decks in Technology

See All in Technology
Devin(Deep) Wiki/Searchの活用で変わる開発の世界観/devin-wiki-search-impact
Avatar for tomoki10 tomoki10
0
310
In Praise of "Normal" Engineers (LDX3)
Avatar for Charity Majors charity
2
840
2025/6/21 日本学術会議公開シンポジウム発表資料
Avatar for Keisuke Fujii keisuke198619
0
210
QAはソフトウェアエンジニアリングを学んで実践するのが大事なの
Avatar for ymty ymty
1
380
Securing your Lambda 101
Avatar for Ilia chillzprezi
0
260
評価の納得感を2段階高める「構造化フィードバック」
Avatar for あろえ aloerina
1
160
原則から考える保守しやすいComposable関数設計
Avatar for Mori Atsushi moriatsushi
2
280
SFTPコンテナからファイルをダウンロードする
Avatar for ディップ株式会社 dip
0
160
TODAY 看世界(?) 是我們在看扣啦!
Avatar for LINE Developers Taiwan line_developers_tw
PRO
0
160
(新URLに移行しました)FASTと向き合うことで見えた、大規模アジャイルの難しさと楽しさ
Avatar for Kyosuke Awata wooootack
0
690
研究開発部メンバーの働き⽅ / Sansan R&D Profile
Avatar for Sansan, Inc. sansan33
PRO
3
17k
Tenstorrent HW/SW 概要説明
Avatar for Tenstorrent Japan tenstorrent_japan
0
390

Featured

See All Featured
Adopting Sorbet at Scale
Avatar for Ufuk Kayserilioglu ufuk
77
9.4k
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
52
7.6k
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
39
1.8k
It's Worth the Effort
Avatar for 3n 3n
184
28k
Navigating Team Friction
Avatar for Lara Hogan lara
186
15k
The Power of CSS Pseudo Elements
Avatar for Geoffrey Crofte geoffreycrofte
77
5.8k
For a Future-Friendly Web
Avatar for Brad Frost brad_frost
179
9.8k
The Cult of Friendly URLs
Avatar for Andy Hume andyhume
79
6.4k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
26
2.8k
The Pragmatic Product Professional
Avatar for Laura Van Doore lauravandoore
35
6.7k
Writing Fast Ruby
Avatar for Erik Berlin sferik
628
61k
YesSQL, Process and Tooling at Scale
Avatar for Rocio Delgado rocio
172
14k

Transcript

  1. )*5$0/;FSPEBZ 䧮䟝銴⤑㹆涸J1IPOF4&⛓飑暟"QQ䢔呪

  2. )J 䧮僽*OOEZ BLB加啄

  3. ➛㣔䧮銴铞♧⦐ 飑暟"QQ剤㥪㢵䓳럊涸佦✲ @ sཀպ̼ @

  4. ⿡䎃厥♧㣔 䧮罉꠸騈䧮铞 ؇̫٥

  5. 厥飑暟笪畀剤馄⤑㹆ꣳꆀ㉂ㅷ ⿶ⶍ㥪䧮䟝䳖䩛堥 s٥Ī٥A

  6. None

  7. 搭䖕䧮⦛㽠䩧Ꟛ #VSQ4VJUFꟚ㨥溏꣚溏 ง๑•̀@•́ ง

  8. 䧮欽7VFKT㻨✫♧⦐溏匢 ⢵䮋鼇⤑㹆涸㉂ㅷ 齡儘⦬䊨⡲ⶍ㥪㖈欽7VFKT鄄OPEFKT䵆䖤㥪汥蕲 Aİs 

  9. ٧(́◕◞౪◟◕ 

  10. 䱺衽涮植♴鎎㋲涸"1* 须俲剤⸈㺙 ಠ@ಠ

  11. 剤⦐䊨Ⱘ〭⨞KBEY 〳⟃⿾管陼"OESPJE"QQ ҙŐ ұѨѠѽ♧

  12. s̫A _ԍ

  13. s̫A _ԍ

  14. 昸✫䵻⤑㹆涸J1IPOF4& ٧ ԫӟ ظ

  15. 㻨玑䒭䵻飑

  16. 穡卓剤"1*鸠䏞ꣳⵖ 鼩剤♧❉㼭稣眏尝岤䠑ⵌ İ

  17. 穡卓䧮♧⦐鿪尝䵻ⵌ இŐஇ

  18. 㔐곃♧♴ s٥Ī٥A

  19. "&4$#$1,$4 s٥Ī٥A

  20. 1BEEJOH0SBDMF  sİA

  21. 'JYFE,FZ*7  sİA

  22. 䧮ⶍⶍ僽♶僽铞䧮⦛欽 #SVQ4VJUF s٥Ī٥A

  23. 飑暟笪畀䥰鑪剤 44-5-4ゅ s٥Ī٥A

  24.  sİA

  25. 䖕⢵䟝䟝"QQ鿪㻨涸鸏 랃昈✫㥪⫹剤溏ⵌTRMJUF sŐA

  26. @ sཀպ̼ @

  27. 卓搭剤42-*OKFDUJPO @ sཀպ̼ @

  28. ˙08"415PQ.PCJMF3JTLT'JOBM-JTU ˙.8FBL4FSWFS4JEF$POUSPMT ˙.*OTFDVSF%BUB4UPSBHF ˙.*OTVDJFOU5SBOTQPSU-BZFS1SPUFDUJPO ˙.6OJOUFOEFE%BUB-FBLBHF ˙.1PPS"VUIPSJ[BUJPOBOE"VUIFOUJDBUJPO ˙.#SPLFO$SZQUPHSBQIZ ˙.$MJFOU4JEF*OKFDUJPO ˙ 鸏䧮尝剤庠麕

    魨⟨阮㶶贫㶸㖈1SFGFSFODF.BOBHFS酆꬗

  29. 㥶卓䧮僽䟅䠑余乹罏 ̫

  30. 䎙㣔䖕䧮䪾须俲侮椚♧♴ ⚓♳)*5$0/;FSPEBZ

  31. None

  32. ⼿⸔鹎遤醳庠

  33. 恠Ꟁ涸麕玑н sŐA й • 2016/11 送出 • ⽉月底廠商才有回應 • 修到⼀一半請我複測,接著交給其他廠商做檢測

    • 拖了了半年年,2017/05 終於公開了了!⼼心好累

  34. 鸏⚆歲涸怪峯⿶㼱✫♧⦐ sӟA

  35. 昸➊랃剚剤鸏랃㢵怪峯 sŐ

  36. 醳醢顦♳䊨玑䌌 ಠ@ಠ

  37. IUUQTMBVSFOUHJUIVCJPTPJOKFDUJPOT

  38. 䖰㷸绢㻨玑䒭涸儘⦬ 㽠ⴀ✫㉏겗 ⡹涸罉䌌铞♶㹁㽠僽怪峯⢵彂 䠮闒➮雊䧮⦛剤䊨⡲

  39. 䖎㢵剅硃䲿⣘涸眕⢿玑䒭 㽠剤㉏겗 ⡹⿡剅㽷缺1)1涸剅♧㹁䪪涸ⵌ42-*OKFDUJPO

  40. ♧饱㔐㜡怪峯 鍑对剤㉏겗涸➃來肬➮⦛ ؇̫٥