Upgrade to Pro — share decks privately, control downloads, hide ads and more …

脆弱性を作ってみた

Avatar for Sota Sugiura Sota Sugiura
December 22, 2016
Technology
1
560

 脆弱性を作ってみた

雑兵MeetUp #8@21cafe

Avatar for Sota Sugiura

Sota Sugiura

December 22, 2016
Tweet

More Decks by Sota Sugiura

See All by Sota Sugiura
内製したSlack Appで頑張るIncident Response@Waroom Meetup #1 / Incident Response with Slack App in 10X
Avatar for Sota Sugiura sota1235
0
1.8k
20220926_セキュリティチームの今_for_Drs._Prime_公開用.pdf
Avatar for Sota Sugiura sota1235
0
170
再発防止策を考える技術 / #phpconsen
Avatar for Sota Sugiura sota1235
10
4k
How to choose the best npm module for your team?
Avatar for Sota Sugiura sota1235
9
630
Realtime Database for high traffic production application
Avatar for Sota Sugiura sota1235
7
4.2k
Road to migrate JP Web as a microservice
Avatar for Sota Sugiura sota1235
4
1.7k
インターフェース再入門 / Think Interface again
Avatar for Sota Sugiura sota1235
6
11k
再発防止策を考える技術 #phpconfuk_rej
Avatar for Sota Sugiura sota1235
1
1.3k
Update around Firebase #io18
Avatar for Sota Sugiura sota1235
3
4.4k

Other Decks in Technology

See All in Technology
RALGO : AIを組織に組み込む方法 -アルゴリズム中心組織設計- #RSGT2026 / RALGO: How to Integrate AI into an Organization – Algorithm-Centric Organizational Design
Avatar for kyonmm kyonmm
PRO
3
730
202512_AIoT.pdf
Avatar for AIxIoTビジネス共創ラボ iotcomjpadmin
0
180
ハッカソンから社内プロダクトへ AIエージェント ko☆shi 開発で学んだ4つの重要要素
Avatar for Tech Leverages leveragestech
0
560
スクラムを一度諦めたチームにアジャイルコーチが入ってどう変化したか
Avatar for kyamashiro kyamashiro73
0
180
Introduction to Sansan Meishi Maker Development Engineer
Avatar for Sansan, Inc. sansan33
PRO
0
330
「駆動」って言葉、なんかカッコイイ_Mitz
Avatar for comucal comucal
PRO
0
130
Agentic AIが変革するAWSの開発・運用・セキュリティ ~Frontier Agentsを試してみた~ / Agentic AI transforms AWS development, operations, and security I tried Frontier Agents
Avatar for Yuji Oshima yuj1osm
0
210
ソフトウェアエンジニアとAIエンジニアの役割分担についてのある事例
Avatar for KNOWLEDGE WORK / 株式会社ナレッジワーク kworkdev
PRO
1
370
2025-12-27 Claude CodeでPRレビュー対応を効率化する@機械学習社会実装勉強会第54回
Avatar for Naka Masato nakamasato
4
1.4k
「アウトプット脳からユーザー価値脳へ」がそんなに簡単にできたら苦労しない #RSGT2026
Avatar for Aki / @LoveIdahoBurger aki_iinuma
8
3.9k
2025年の医用画像AI/AI×medical_imaging_in_2025_generated_by_AI
Avatar for YoshihiroTodoroki tdys13
0
310
会社紹介資料 / Sansan Company Profile
Avatar for Sansan, Inc. sansan33
PRO
11
390k

Featured

See All Featured
How to Grow Your eCommerce with AI & Automation
Avatar for Katarina Dahlin katarinadahlin
PRO
0
84
Git: the NoSQL Database
Avatar for Brandon Keepers bkeepers
PRO
432
66k
Building a A Zero-Code AI SEO Workflow
Avatar for Ian Lurie portentint
PRO
0
220
Why Mistakes Are the Best Teachers: Turning Failure into a Pathway for Growth
Avatar for Umar Saidu Auna auna
0
34
Site-Speed That Sticks
Avatar for Harry Roberts csswizardry
13
1k
Unsuck your backbone
Avatar for Amy Palamountain ammeep
671
58k
How To Stay Up To Date on Web Technology
Avatar for Chris Coyier chriscoyier
791
250k
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
290
Redefining SEO in the New Era of Traffic Generation
Avatar for Szymon szymonslowik
1
180
Groundhog Day: Seeking Process in Gaming for Health
Avatar for Sebastian Deterding codingconduct
0
72
How to Build an AI Search Optimization Roadmap - Criteria and Steps to Take #SEOIRL
Avatar for Aleyda Solis aleyda
1
1.8k
Collaborative Software Design: How to facilitate domain modelling decisions
Avatar for Kenny Baas-Schwegler baasie
0
110

Transcript

  1. ੬ऑੑΛ࡞ͬͯΈͨ !TPUB͖ΓΜ ࡶฌ.FFU6Q

  2. ࣗݾ঺հ w ͖ΓΜͰ͢ w !TPUB w ໌೔͔Βࢮͷ೔͕ؒ࢝·Γ· ͕͢Έͳ͞ΜਐḿͲ͏Ͱ͔͢

  3. ੬ऑੑΛ࡞ͬͪΌͬͨͰ͸ͳ͘ ࡞ͬͯΈͨ࿩Ͱ͢ ̃䯡ՙ☭岩ՙՊլՖ㈕ՙՊլ

  4. ߈ܸຊೳͷ࿩ w ਓ͸ਐԽ͢Δલ͸Ԑͩͬͨ w ՐΛ࢖͍ɺಓ۩Λ࢖͍ɺङΓΛߦ͏͜ͱͰੜ͖ Ԇͼ͖ͯͨ w ߈ܸ͢Δ͜ͱͱ͸ੜ͖Δ͜ͱͦͷ΋ͷ

  5. ਓੜJT Ԑͷ࿭੕γϦʔζΑΓ

  6. ϓϩάϥϚʹ͓͚Δ߈ܸຊೳ w ϓϩάϥϚ΋ਓؒ w ౰વɺ߈ܸຊೳΛඋ͍͑ͯΔ w ࣮͸ϓϩάϥϚͱ߈ܸੑ͸ີ઀ʹؔ܎ͯ͠Δͱ ݴΘΕ͍ͯΔ

  7. ·͊ӕͳΜͰ͚͢Ͳ IUUQKJHPLVOPDPNFJE@IUNM

  8. ·͊ӕͳΜͰ͚͢Ͳ Ͱ΋෺૽ͳਓ͕ଟ͍ؾ͸͠·͢ΑͶ IUUQKJHPLVOPDPNFJE@IUNM

  9. ݱ࣮͸ݫ͍͠ IUUQTUXJUUFSDPNIULC@TUBUVT

  10. ݱ࣮͸ݫ͍͠ IUUQTUXJUUFSDPNIULC@TUBUVT

  11. ఘΊΔ͔͠ແ͍ͷ͔ w ߹๏తʹ߈ܸຊೳΛຬͨ͢ํ๏͕ʜ w ͋Γ·͊ SZ

  12. $BQUVSF 5IF 'MBH

  13. $BQUVSF5IF'MBH w ضऔΓ߹ઓ w αʔόʹ৵ೖͨ͠ΓηΩϡϦςΟʹ·ͭΘΔ໰ ୊Λղ͍ͯضΛऔΔ w 4&$$0/ͱ͔༗໊Ͱ͢ΑͶ

  14. ຊ୊ w ઌ೔ɺ਎಺޲͚ʹ$5'Λ΍ͬͨ w ඍົʹܦݧ͕͋ͬͨͷͰ໰୊࡞Γͱ͔΍ͬͨ

  15. ༷ࢠ

  16. ༷ࢠ

  17. ग़୊δϟϯϧΛܾΊΔ w $5'ͷकඋൣғ͸ΊͪΌͪ͘Ό๲େ w ҉߸ ϑΝΠϧղੳ ωοτϫʔΫ 8FC  'PSFOTJDT

    QXO FUD w ࠓճ͸8FCͷਓ͕ଟ͔ͬͨͷͰ8FCଟΊʹͨ͠

  18. ໰୊Λߟ͑Δ w ͱ͍ͬͯ΋ࢲ΋ॳ৺ऀͳͷͰաڈ໰ͱ͔੬ऑੑ Λௐ΂ͳ͕Βߟ͑Δ w ͓΋͠Ζ͔ͬͨΓֶͼʹͳΓͦ͏ͳ΋ͷ͕͋Ε ͹࠾༻͍ͯ͘͠

  19. ໰୊Λߟ͑Δ

  20. γφϦΦΛҙࣝ͢Δ w ͜Μͳ੬ऑੑ͕͋ͬͨΒ͜Μͳ͜ͱ͕Ͱ͖ͪΌ ͏ΑͶɺΈ͍ͨͳͷΛߟ͑Δ

  21. Կݸ͔঺հ

  22. ྫ͑͹ψϧόΠτ߈ܸ w /6--จࣈΛจࣈྻͷऴ୺จࣈͱͯ͠ೝࣝ͢Δ ͜ͱΛར༻ͨ͠߈ܸ w ࠓճ͸1)1Ͱ࣮૷ͨ͠

  23. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename);

  24. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename); // /index.php?filename=/etc/passwd //

    Ͱ΋.png͕अຐͦ͏…

  25. ψϧόΠτ߈ܸ w ͓΋ΉΖʹJOEFYQIQ pMFOBNFUD QBTTXEʹΞΫηε͢Δ w ͢ΔͱpMF@HFU@DPOUFOUT͸Λऴ୺จࣈͱ ͯ͠ೝࣝ͢ΔͷͰQOH͕ࣺͯΒΕΔ

  26. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename); // /index.php?filename=/etc/passwd%00 //

    ϢʔβҰཡൈ͚Δͧʂ

  27. ྫ͑͹/P42-*OKFDUJPO w υΩϡϝϯτ%#Ͱى͖͏Δ੬ऑੑ w 1)1 NPOHP%#Ͱ࣮૷Ͱ͖Δ

  28. /P42-ΠϯδΣΫγϣϯ <?php $name = $_GET['name']; return $db->find(['name' => $name]); //

    /index.php?name=kirin

  29. /P42-ΠϯδΣΫγϣϯ <?php $name = $_GET['name']; return $db->find(['name' => $name]); //

    /index.php?name[$ne]=xͬͯ΍Δͱ…

  30. ྫ͑͹/P42-*OKFDUJPO w 1)1Ͱ͸(&5ΫΤϦετϦϯάΛ࿈૝഑ྻͰड ͚औΕΔ w OBNF<OF>Yͬͯ΍ΔͱҎԼͷΑ͏ͳ஋͕ ౉ͬͯ͘Δ

  31. ྫ͑͹/P42-*OKFDUJPO w ͜ͷΫΤϦ͕ͦͷ··NPOHPʹ౉Δͱ42-Ͱ ݴ͏ͱ͜Ζͷ8)&3&OBNFbY`ͱ͍͏৚݅ ͕੒ཱͯ͠͠·͏

  32. ͳΜͰ1)1͹͔ͬΓ͔ͬͯʁ w ؾ෇͍ͯ͠·ͬͨਓ͸ফ͞ΕΔͷͰؾ͔ͮͳ͍ ϑϦΛ͠·͠ΐ͏Ͷ ?Т?  w 1)1Yd࢖͓͏ɺܑ͓͞Μͱͷ໿ଋͩ ?Т?

  33. ଞʹ΋ʜ w ύεϫʔυ͖ͭ;*1ղੳ w %JHFTU#BTJDBVUIFOUJDBUJPO w 944 w ҉߸ղੳ 305ͱ͔୯Ұ׵ࣈࣜͱ͔

  34. ਅ໘໨ͳ࿩ w ࡞໰͢Δʹ͸ͭͷࢹ఺͕ඞཁ w ߈ܸऀࢹ఺ w ։ൃऀࢹ఺ w ʮప໌͚ʹ։ൃͯͨ͠ΒΪϦΪϦ͋Γ͏ΔʯΈ ͍ͨͳ΍ͭΛ࡞Δͷ͸ָ͍͠͠ษڧʹͳΔΑ

  35. ·ͱΊɿ$5'͠Α͏ w ߹๏తʹ߈ܸຊೳΛຬͨͤΔͷͰΦεεϝ w 8FCʹݶΒͣ෯޿͍஌ࣝΛٻΊΒΕΔͷͰษڧ ʹͳΔ w ৗறܕ$5'΋͋ΔͷͰڵຯ͕͋Δํ͸ͥͻ