Upgrade to Pro — share decks privately, control downloads, hide ads and more …

脆弱性を作ってみた

Avatar for Sota Sugiura Sota Sugiura
December 22, 2016
Technology
1
560

 脆弱性を作ってみた

雑兵MeetUp #8@21cafe

Avatar for Sota Sugiura

Sota Sugiura

December 22, 2016
Tweet

More Decks by Sota Sugiura

See All by Sota Sugiura
内製したSlack Appで頑張るIncident Response@Waroom Meetup #1 / Incident Response with Slack App in 10X
Avatar for Sota Sugiura sota1235
0
1.8k
20220926_セキュリティチームの今_for_Drs._Prime_公開用.pdf
Avatar for Sota Sugiura sota1235
0
170
再発防止策を考える技術 / #phpconsen
Avatar for Sota Sugiura sota1235
10
4k
How to choose the best npm module for your team?
Avatar for Sota Sugiura sota1235
9
630
Realtime Database for high traffic production application
Avatar for Sota Sugiura sota1235
7
4.2k
Road to migrate JP Web as a microservice
Avatar for Sota Sugiura sota1235
4
1.7k
インターフェース再入門 / Think Interface again
Avatar for Sota Sugiura sota1235
6
11k
再発防止策を考える技術 #phpconfuk_rej
Avatar for Sota Sugiura sota1235
1
1.3k
Update around Firebase #io18
Avatar for Sota Sugiura sota1235
3
4.4k

Other Decks in Technology

See All in Technology
[PR] はじめてのデジタルアイデンティティという本を書きました
Avatar for ritou ritou
0
760
AI with TiDD
Avatar for Shiraji shiraji
1
340
AI駆動開発ライフサイクル(AI-DLC)の始め方
Avatar for ryansbcho79 ryansbcho79
0
300
Claude Codeを使った情報整理術
Avatar for 西岡 賢一郎 (Kenichiro Nishioka) knishioka
20
12k
国井さんにPurview の話を聞く会
Avatar for Kunii, Suguru sophiakunii
1
330
Node vs Deno vs Bun 〜推しランタイムを見つけよう〜
Avatar for すずとも kamekyame
1
250
Authlete で実装する MCP OAuth 認可サーバー #CIMD の実装を添えて
Avatar for watahani watahani
0
410
BidiAgent と Nova 2 Sonic から​考える音声 AI について
Avatar for Yuuki Yamashita yama3133
2
150
AI との良い付き合い方を僕らは誰も知らない (WSS 2026 静岡版)
Avatar for Asei Sugiyama asei
1
230
re:Invent2025 セッションレポ ~Spec-driven development with Kiro~
Avatar for NRI Netcom nrinetcom
PRO
2
170
「リリースファースト」の実感を届けるには 〜停滞するチームに変化を起こすアプローチ〜 #RSGT2026
Avatar for KintoTech_Dev kintotechdev
0
580
製造業から学んだ「本質を守り現場に合わせるアジャイル実践」
Avatar for yaskamito kamitokusari
0
330

Featured

See All Featured
Unlocking the hidden potential of vector embeddings in international SEO
Avatar for Frank van Dijk frankvandijk
0
140
Art, The Web, and Tiny UX
Avatar for Lynn Fisher lynnandtonic
304
21k
Chasing Engaging Ingredients in Design
Avatar for Sebastian Deterding codingconduct
0
94
Game over? The fight for quality and originality in the time of robots
Avatar for Wayne Barker wayneb77
1
74
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
Avatar for konakalab konakalab
0
330
Why Mistakes Are the Best Teachers: Turning Failure into a Pathway for Growth
Avatar for Umar Saidu Auna auna
0
34
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
74
11k
Building Experiences: Design Systems, User Experience, and Full Site Editing
Avatar for Michelle Schulp Hunt marktimemedia
0
360
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
Avatar for Vitaly Friedman smashingmag
254
22k
Music & Morning Musume
Avatar for Bryan Veloso bryan
46
7k
Reality Check: Gamification 10 Years Later
Avatar for Sebastian Deterding codingconduct
0
2k
How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.
Avatar for Liv Day livdayseo
0
41

Transcript

  1. ੬ऑੑΛ࡞ͬͯΈͨ !TPUB͖ΓΜ ࡶฌ.FFU6Q

  2. ࣗݾ঺հ w ͖ΓΜͰ͢ w !TPUB w ໌೔͔Βࢮͷ೔͕ؒ࢝·Γ· ͕͢Έͳ͞ΜਐḿͲ͏Ͱ͔͢

  3. ੬ऑੑΛ࡞ͬͪΌͬͨͰ͸ͳ͘ ࡞ͬͯΈͨ࿩Ͱ͢ ̃䯡ՙ☭岩ՙՊլՖ㈕ՙՊլ

  4. ߈ܸຊೳͷ࿩ w ਓ͸ਐԽ͢Δલ͸Ԑͩͬͨ w ՐΛ࢖͍ɺಓ۩Λ࢖͍ɺङΓΛߦ͏͜ͱͰੜ͖ Ԇͼ͖ͯͨ w ߈ܸ͢Δ͜ͱͱ͸ੜ͖Δ͜ͱͦͷ΋ͷ

  5. ਓੜJT Ԑͷ࿭੕γϦʔζΑΓ

  6. ϓϩάϥϚʹ͓͚Δ߈ܸຊೳ w ϓϩάϥϚ΋ਓؒ w ౰વɺ߈ܸຊೳΛඋ͍͑ͯΔ w ࣮͸ϓϩάϥϚͱ߈ܸੑ͸ີ઀ʹؔ܎ͯ͠Δͱ ݴΘΕ͍ͯΔ

  7. ·͊ӕͳΜͰ͚͢Ͳ IUUQKJHPLVOPDPNFJE@IUNM

  8. ·͊ӕͳΜͰ͚͢Ͳ Ͱ΋෺૽ͳਓ͕ଟ͍ؾ͸͠·͢ΑͶ IUUQKJHPLVOPDPNFJE@IUNM

  9. ݱ࣮͸ݫ͍͠ IUUQTUXJUUFSDPNIULC@TUBUVT

  10. ݱ࣮͸ݫ͍͠ IUUQTUXJUUFSDPNIULC@TUBUVT

  11. ఘΊΔ͔͠ແ͍ͷ͔ w ߹๏తʹ߈ܸຊೳΛຬͨ͢ํ๏͕ʜ w ͋Γ·͊ SZ

  12. $BQUVSF 5IF 'MBH

  13. $BQUVSF5IF'MBH w ضऔΓ߹ઓ w αʔόʹ৵ೖͨ͠ΓηΩϡϦςΟʹ·ͭΘΔ໰ ୊Λղ͍ͯضΛऔΔ w 4&$$0/ͱ͔༗໊Ͱ͢ΑͶ

  14. ຊ୊ w ઌ೔ɺ਎಺޲͚ʹ$5'Λ΍ͬͨ w ඍົʹܦݧ͕͋ͬͨͷͰ໰୊࡞Γͱ͔΍ͬͨ

  15. ༷ࢠ

  16. ༷ࢠ

  17. ग़୊δϟϯϧΛܾΊΔ w $5'ͷकඋൣғ͸ΊͪΌͪ͘Ό๲େ w ҉߸ ϑΝΠϧղੳ ωοτϫʔΫ 8FC  'PSFOTJDT

    QXO FUD w ࠓճ͸8FCͷਓ͕ଟ͔ͬͨͷͰ8FCଟΊʹͨ͠

  18. ໰୊Λߟ͑Δ w ͱ͍ͬͯ΋ࢲ΋ॳ৺ऀͳͷͰաڈ໰ͱ͔੬ऑੑ Λௐ΂ͳ͕Βߟ͑Δ w ͓΋͠Ζ͔ͬͨΓֶͼʹͳΓͦ͏ͳ΋ͷ͕͋Ε ͹࠾༻͍ͯ͘͠

  19. ໰୊Λߟ͑Δ

  20. γφϦΦΛҙࣝ͢Δ w ͜Μͳ੬ऑੑ͕͋ͬͨΒ͜Μͳ͜ͱ͕Ͱ͖ͪΌ ͏ΑͶɺΈ͍ͨͳͷΛߟ͑Δ

  21. Կݸ͔঺հ

  22. ྫ͑͹ψϧόΠτ߈ܸ w /6--จࣈΛจࣈྻͷऴ୺จࣈͱͯ͠ೝࣝ͢Δ ͜ͱΛར༻ͨ͠߈ܸ w ࠓճ͸1)1Ͱ࣮૷ͨ͠

  23. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename);

  24. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename); // /index.php?filename=/etc/passwd //

    Ͱ΋.png͕अຐͦ͏…

  25. ψϧόΠτ߈ܸ w ͓΋ΉΖʹJOEFYQIQ pMFOBNFUD QBTTXEʹΞΫηε͢Δ w ͢ΔͱpMF@HFU@DPOUFOUT͸Λऴ୺จࣈͱ ͯ͠ೝࣝ͢ΔͷͰQOH͕ࣺͯΒΕΔ

  26. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename); // /index.php?filename=/etc/passwd%00 //

    ϢʔβҰཡൈ͚Δͧʂ

  27. ྫ͑͹/P42-*OKFDUJPO w υΩϡϝϯτ%#Ͱى͖͏Δ੬ऑੑ w 1)1 NPOHP%#Ͱ࣮૷Ͱ͖Δ

  28. /P42-ΠϯδΣΫγϣϯ <?php $name = $_GET['name']; return $db->find(['name' => $name]); //

    /index.php?name=kirin

  29. /P42-ΠϯδΣΫγϣϯ <?php $name = $_GET['name']; return $db->find(['name' => $name]); //

    /index.php?name[$ne]=xͬͯ΍Δͱ…

  30. ྫ͑͹/P42-*OKFDUJPO w 1)1Ͱ͸(&5ΫΤϦετϦϯάΛ࿈૝഑ྻͰड ͚औΕΔ w OBNF<OF>Yͬͯ΍ΔͱҎԼͷΑ͏ͳ஋͕ ౉ͬͯ͘Δ

  31. ྫ͑͹/P42-*OKFDUJPO w ͜ͷΫΤϦ͕ͦͷ··NPOHPʹ౉Δͱ42-Ͱ ݴ͏ͱ͜Ζͷ8)&3&OBNFbY`ͱ͍͏৚݅ ͕੒ཱͯ͠͠·͏

  32. ͳΜͰ1)1͹͔ͬΓ͔ͬͯʁ w ؾ෇͍ͯ͠·ͬͨਓ͸ফ͞ΕΔͷͰؾ͔ͮͳ͍ ϑϦΛ͠·͠ΐ͏Ͷ ?Т?  w 1)1Yd࢖͓͏ɺܑ͓͞Μͱͷ໿ଋͩ ?Т?

  33. ଞʹ΋ʜ w ύεϫʔυ͖ͭ;*1ղੳ w %JHFTU#BTJDBVUIFOUJDBUJPO w 944 w ҉߸ղੳ 305ͱ͔୯Ұ׵ࣈࣜͱ͔

  34. ਅ໘໨ͳ࿩ w ࡞໰͢Δʹ͸ͭͷࢹ఺͕ඞཁ w ߈ܸऀࢹ఺ w ։ൃऀࢹ఺ w ʮప໌͚ʹ։ൃͯͨ͠ΒΪϦΪϦ͋Γ͏ΔʯΈ ͍ͨͳ΍ͭΛ࡞Δͷ͸ָ͍͠͠ษڧʹͳΔΑ

  35. ·ͱΊɿ$5'͠Α͏ w ߹๏తʹ߈ܸຊೳΛຬͨͤΔͷͰΦεεϝ w 8FCʹݶΒͣ෯޿͍஌ࣝΛٻΊΒΕΔͷͰษڧ ʹͳΔ w ৗறܕ$5'΋͋ΔͷͰڵຯ͕͋Δํ͸ͥͻ