Upgrade to Pro — share decks privately, control downloads, hide ads and more …

HITCON 2017 Zeroday 發表會

Inndy
August 26, 2017
Technology
0
1.2k

HITCON 2017 Zeroday 發表會

https://zeroday.hitcon.org/vulnerability/ZD-2016-00306

Inndy

August 26, 2017
Tweet

More Decks by Inndy

See All by Inndy
工程師一定要懂的 Text Encoding
inndy
1
270
資訊安全:麻瓜的黑魔法防禦術
inndy
3
2.5k
HackmeCTF 平台背後的心酸血淚史
inndy
2
670
COSCUP 2018 Lightning Talk - 審稿好難,所以我們來寫程式吧
inndy
0
310
逆向工程:從入門到放棄
inndy
7
3.2k
No More Crypto Fails
inndy
33
6.9k
你再共用密碼啊
inndy
1
640
CTF From Zero To One
inndy
5
4.1k
逆向工程基礎
inndy
4
1.4k

Other Decks in Technology

See All in Technology
CDK使用歴1年の僕が現場でCDK導入するときに得たTips
miura55
0
390
赤裸々図解!新卒3年目でマネジメントもこなすフルスタックエンジニアになるまで
mizunohiroaki
7
4.5k
Zennを支える Google Cloud の技術
wadayusuke
0
120
PHPの最高機能、配列を捨てよう!! / Throw away all PHP array now!!!
uzulla
8
5.2k
大規模言語モデルで変わるMLシステム開発
hirosatogamo
13
10k
Managing Test Data
eliasnogueira
0
170
AWS CDKで作るCloudWatch Dashboard
harukasakihara
3
720
Autonomous Database Cloud 技術詳細 / adb-s_technical_detail_jp
oracle4engineer
PRO
10
24k
テスト技法を使ったテストケースの表現方法/How to express test cases using test techniques
shimashima35
0
360
ビギナー向け エッジランタイムのすすめ | エッジランタイムを意識した開発をはじめよう
aiji42
1
680
新卒入社から1500人規模のCTOに: エンジニアが圧倒的に成長する3つのコツ / 技育祭2023春
carta_engineering
1
800
Tackle the infodemic of misinformation from LINE
line_developers_tw
PRO
0
170

Featured

See All Featured
The Pragmatic Product Professional
lauravandoore
21
3.6k
Ruby is Unlike a Banana
tanoku
93
9.6k
Scaling GitHub
holman
453
140k
WebSockets: Embracing the real-time Web
robhawkes
58
6.1k
Infographics Made Easy
chrislema
236
17k
4 Signs Your Business is Dying
shpigford
171
20k
GraphQLとの向き合い方2022年版
quramy
22
10k
Streamline your AJAX requests with AmplifyJS and jQuery
dougneiner
128
8.8k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
318
19k
Build The Right Thing And Hit Your Dates
maggiecrowley
22
1.5k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
657
120k
Building a Scalable Design System with Sketch
lauravandoore
451
31k

Transcript

  1. )*5$0/;FSPEBZ
    䧮䟝銴⤑㹆涸J1IPOF4&⛓飑暟"QQ䢔呪

    View Slide

  2. )J 䧮僽*OOEZ
    BLB加啄

    View Slide

  3. ➛㣔䧮銴铞♧⦐
    飑暟"QQ剤㥪㢵䓳럊涸佦✲
    @ sཀպ̼
    @

    View Slide

  4. ⿡䎃厥♧㣔
    䧮罉꠸騈䧮铞
    ؇̫٥

    View Slide

  5. 厥飑暟笪畀剤馄⤑㹆ꣳꆀ㉂ㅷ
    ⿶ⶍ㥪䧮䟝䳖䩛堥
    s٥Ī٥A

    View Slide

  6. View Slide

  7. 搭䖕䧮⦛㽠䩧Ꟛ
    #VSQ4VJUFꟚ㨥溏꣚溏
    ง๑•̀@•́

    View Slide

  8. 䧮欽7VFKT㻨✫♧⦐溏匢
    ⢵䮋鼇⤑㹆涸㉂ㅷ
    齡儘⦬䊨⡲ⶍ㥪㖈欽7VFKT鄄OPEFKT䵆䖤㥪汥蕲
    Aİs

    View Slide

  9. ٧(́◕◞౪◟◕

    View Slide

  10. 䱺衽涮植♴鎎㋲涸"1*
    须俲剤⸈㺙
    ಠ@ಠ

    View Slide

  11. 剤⦐䊨Ⱘ〭⨞KBEY
    〳⟃⿾管陼"OESPJE"QQ
    ҙŐ
    ұѨѠѽ♧

    View Slide

  12. s̫A

    View Slide

  13. s̫A

    View Slide

  14. 昸✫䵻⤑㹆涸J1IPOF4&
    ٧ ԫӟ
    ظ

    View Slide

  15. 㻨玑䒭䵻飑

    View Slide

  16. 穡卓剤"1*鸠䏞ꣳⵖ
    鼩剤♧❉㼭稣眏尝岤䠑ⵌ
    İ



    View Slide

  17. 穡卓䧮♧⦐鿪尝䵻ⵌ
    இŐஇ

    View Slide

  18. 㔐곃♧♴
    s٥Ī٥A

    View Slide

  19. "&4$#$1,$4
    s٥Ī٥A

    View Slide

  20. 1BEEJOH0SBDMF
    sİA

    View Slide

  21. 'JYFE,FZ*7
    sİA

    View Slide

  22. 䧮ⶍⶍ僽♶僽铞䧮⦛欽
    #SVQ4VJUF
    s٥Ī٥A

    View Slide

  23. 飑暟笪畀䥰鑪剤
    44-5-4ゅ
    s٥Ī٥A

    View Slide

  24. sİA

    View Slide

  25. 䖕⢵䟝䟝"QQ鿪㻨涸鸏
    랃昈✫㥪⫹剤溏ⵌTRMJUF
    sŐA

    View Slide

  26. @ sཀպ̼
    @

    View Slide

  27. 卓搭剤42-*OKFDUJPO
    @ sཀպ̼
    @

    View Slide

  28. ˙08"415PQ.PCJMF3JTLT'JOBM-JTU
    ˙.8FBL4FSWFS4JEF$POUSPMT
    ˙.*OTFDVSF%BUB4UPSBHF
    ˙.*OTVDJFOU5SBOTQPSU-BZFS1SPUFDUJPO
    ˙.6OJOUFOEFE%BUB-FBLBHF
    ˙.1PPS"VUIPSJ[BUJPOBOE"VUIFOUJDBUJPO
    ˙.#SPLFO$SZQUPHSBQIZ
    ˙.$MJFOU4JEF*OKFDUJPO
    ˙
    鸏䧮尝剤庠麕
    魨⟨阮㶶贫㶸㖈1SFGFSFODF.BOBHFS酆꬗

    View Slide

  29. 㥶卓䧮僽䟅䠑余乹罏
    ̫

    View Slide

  30. 䎙㣔䖕䧮䪾须俲侮椚♧♴
    ⚓♳)*5$0/;FSPEBZ

    View Slide

  31. View Slide

  32. ⼿⸔鹎遤醳庠

    View Slide

  33. 恠Ꟁ涸麕玑н sŐA
    й
    • 2016/11 送出

    • ⽉月底廠商才有回應

    • 修到⼀一半請我複測,接著交給其他廠商做檢測

    • 拖了了半年年,2017/05 終於公開了了!⼼心好累

    View Slide

  34. 鸏⚆歲涸怪峯⿶㼱✫♧⦐
    sӟA

    View Slide

  35. 昸➊랃剚剤鸏랃㢵怪峯
    sŐ

    View Slide

  36. 醳醢顦♳䊨玑䌌
    ಠ@ಠ

    View Slide

  37. IUUQTMBVSFOUHJUIVCJPTPJOKFDUJPOT

    View Slide

  38. 䖰㷸绢㻨玑䒭涸儘⦬
    㽠ⴀ✫㉏겗
    ⡹涸罉䌌铞♶㹁㽠僽怪峯⢵彂
    䠮闒➮雊䧮⦛剤䊨⡲

    View Slide

  39. 䖎㢵剅硃䲿⣘涸眕⢿玑䒭
    㽠剤㉏겗
    ⡹⿡剅㽷缺1)1涸剅♧㹁䪪涸ⵌ42-*OKFDUJPO

    View Slide

  40. ♧饱㔐㜡怪峯
    鍑对剤㉏겗涸➃來肬➮⦛
    ؇̫٥

    View Slide