Save 37% off PRO during our Black Friday Sale! »

Goなどで作る脆弱性対策ゲーム / go-bigbridge

2cf373725ded741824c50fd571eda6e1?s=47 KONDO Uchio
June 14, 2018
Technology
1
690

Goなどで作る脆弱性対策ゲーム / go-bigbridge

@Fukuoka.go #11

https://fukuokago.connpass.com/event/87684/

2cf373725ded741824c50fd571eda6e1?s=128

KONDO Uchio

June 14, 2018
Tweet

More Decks by KONDO Uchio

See All by KONDO Uchio
2cf373725ded741824c50fd571eda6e1?s=48 udzura
0
54
2cf373725ded741824c50fd571eda6e1?s=48 udzura
0
110
2cf373725ded741824c50fd571eda6e1?s=48 udzura
1
200
2cf373725ded741824c50fd571eda6e1?s=48 udzura
0
220
2cf373725ded741824c50fd571eda6e1?s=48 udzura
0
180
2cf373725ded741824c50fd571eda6e1?s=48 udzura
11
4.3k
2cf373725ded741824c50fd571eda6e1?s=48 udzura
0
26
2cf373725ded741824c50fd571eda6e1?s=48 udzura
8
2.7k
2cf373725ded741824c50fd571eda6e1?s=48 udzura
1
550

Other Decks in Technology

See All in Technology
C825832c4fc71ffdfd44905729281fb0?s=48 puhitaku
0
2.7k
3716cf98e52588e91ba25e54b3f61255?s=48 tamagawaconan
1
100
7602f2751868682b296171f58589c851?s=48 lyrixx
3
230
57e80b356ed7005ee31e3494cdbfd02c?s=48 biatunky
1
170
950776c7623253d1ccd37e3cd32fa58f?s=48 indigolain
2
850
1e6cfe94614ed96ac769e93f2e0c63f0?s=48 kavisha
0
230
74cec195bfb6cb5165256d88cb7fcf0f?s=48 miu_crescent
2
160
7a29c02251394fc05ebd88c631c562dc?s=48 takufujii
0
160
3a6803b69376453b5eb56a4e6f2e8eb7?s=48 junkisagawa
0
130
6271a2c3d1c1f6d23f0d758bdf47626c?s=48 sunaotabata
0
290
5afa0b3a91d287fdf8b248a118a3975d?s=48 y503unavailable
0
120
73c9d1065e0075a9da6e404e08fe77fb?s=48 siroitori0413
0
140

Featured

See All Featured
32de0bd2ba869609d26fd052a4622778?s=48 cromwellryan
107
6.6k
A9179349dd2bdc67f377719f56d85656?s=48 garrettdimon
294
110k
1f74b13f1e5c6c69cb5d7fbaabb1e2cb?s=48 sferik
612
56k
79acae287842acf29084005533a7fb3b?s=48 hursman
111
9.5k
D47656e20ff5e42f125fc5ea0fd636c6?s=48 tmm1
64
10k
24fc194843a71f10949be18d5a692682?s=48 gr2m
86
11k
9128d500301ae51524e887bb680f471d?s=48 caitiem20
314
18k
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
122
16k
39488f9d172ab92fd352f2cd7b73258d?s=48 mza
82
4.4k
7cbd3f5f922d798cc312eaf596de7ae6?s=48 iamctodd
33
3.1k
Ef32e0b1ac5082450dc8c1fca3a26b5c?s=48 cherdarchuk
78
280k
Aebc2d07a50011e2a30d38435fde564a?s=48 jrom
120
7.5k

Transcript

  1. 6DIJP,POEP 'VLVPLBHP (PͳͲͰ࡞Δ੬ऑੑରࡦήʔϜ

  2. (.0ϖύϘγχΞϓϦϯγύϧ ۙ౻͏͓ͪ!VE[VSB 044ϓϩμΫτ w NSVCZͷίϯςφϥϯλΠϜ)BDPOJXB w 3VCZͷ ZFU"OPUIFS 0QFO4UBDLDMJFOU:BP 3VCZ͸೥΄Ͳɺ(P͸೥͙Β͍ʁ

    ޷͖ͳϥΠϒϥϦIBTIJDPSQIDM ར༻ϒΩϓϥΠϜγϡʔλʔίϥϘ ηΩϡϦςΟ͸ษڧ࢝͠Ίͨ͹͔ΓͰ͢

  3. "MTPB3VCZJTU

  4. 13

  5. 'VLVPLBSC ! ԙϖύες

  6. 8FCΞϓϦέʔγϣϯͷ ੬ऑੑ

  7. 944

  8. $43'

  9. 42- *OKFDUJPO

  10. ߈ܸ͞Εͨ͜ͱ ͋Γ·͔͢ʁ

  11. ߈ܸΛ஌Γ͍ͨ ๷ޚ͍ͨ͠

  12. ࿅शʢʁʣ͠Α͏

  13. DG%78" w%BNO7VMOFSBCMF8FC"QQMJDBUJPO w͋͑ͯ੬ऑͳ࡞Γʹͨ͠΢ΣϒΞϓϦέʔγϣϯ w༷ʑͳ߈ܸΛ࣮ࡍʹߦ͏͜ͱͰɺ߈ܸଆͷؾ࣋ͪʹͳΓ
 ͦΕ͕։ൃʹ͓͍ͯ΋໾ʹཱͭ wΞϓϦέʔγϣϯͷ੬ऑ౓߹͍ΛઃఆͰ͖ͯศརʢʁʣ IUUQXXXEWXBDPVL

  14. ߈ܸΛͯ͠ΈΔͱ

  15. None

  16. ͜ΕΛࣗಈԽ͢Δͱ

  17. ๷ޚଆͷ ࿅शʹ΋࢖͑ΔͷͰ͸ʁ

  18. CJHCSJEHFϓϩδΣΫτʢԾʣ wೋͭͷίϯςφΛ࡞Δ߈ܸଆɺ๷ޚଆ w߈ܸଆ͸όΠφϦͰϒϥοΫϘοΫεͷϓϩάϥϜ w๷ޚଆ͸"QBDIF NPE@QIQͳ੬ऑͳΞϓϦέʔγϣϯ
 TTIͰௐࠪՄೳͳΑ͏ɺγεςϜίϯςφʹͳ͍ͬͯΔ

  19. CJHCSJEHF IUUQTDTLZVTIVVBDKQFOQJUQSP

  20. ߏ੒ Binary Apache MySQL App (PHP) SSHD Attacker Defender

  21. ๷ޚଆ͔ΒৄࡉΛɻ wTPWFSMBZͱ͍͏ɺ%PDLFS΍ίϯςφʹಛԽͨ͠γϯϓϧͳJOJUͷ࢓ ૊ΈΛ࢖ͬͯγεςϜίϯςφΛ࡞Δɻ wTTIE ϩάͷͨΊSTZTMPH ɺBQBDIFɺ.Z42-Λࣂ͍ͬͯΔ wPDUPQBTTͰTTIϩάΠϯपΓΛ؆୯ʹ IUUQTHJUIVCDPNKVTUDPOUBJOFSTTPWFSMBZ

  22. ߈ܸଆɻ wṖͷόΠφϦ͕͋Δ wઃఆʹ͸ɺ߈ܸઌͷΞυϨεͳͲͷ৘ใ͔͠౉ͤͳ͘ɺͲ͏͍͏߈ܸ Λ͍ͯ͠Δ͔͸Θ͔Βͳ͍ wىಈ͢Δͱɺର৅΁ͷ߈ܸͷ੒ޭࣦഊ͚͕ͩΘ͔Δ wˠ๷ޚଆͷϩάͳͲΛ֬ೝ͠ɺΞϓϦΛվमͯ͠

  23. ߈ܸϕϯνϚʔΫͷྲྀΕ w߈ܸଆͰόΠφϦىಈˠ๷ޚଆͰϩάͳͲΛ֬ೝ wˠ๷ޚଆͷઃఆΛมߋͨ͠ΓɺΞϓϦΛվम wˠ࠶౓߈ܸΛ͠ɺࣦഊͨ͠Β๷Ӵ੒ޭʂʂʂ̍

  24. ṖͷόΠφϦ

  25. ͦ͜ͰɺΛ࢖͏

  26. ࣮૷ͷྫ

  27. ໾ʹཱͭ΋ͷ wIFBE[PPTVSG wঢ়ଶΛอͭ͜ͱ͕Ͱ͖Δ΢ΣϒεΫϨΠύʔϥΠϒϥϦ IUUQTHJUIVCDPNIFBE[PPTVSG

  28. EFNP wʢतۀͰ࢖͏ͱ͍͏͜ͱͰɺৄࡉ͸·ͩφΠγϣʣ

  29. ࠓޙ΍Γ͍ͨ͜ͱ w߈ܸͷόϦΤʔγϣϯΛ૿΍͢ w؆୯ͳରࡦͰ͋ͬͨΒ߈ܸଆͰݟൈ͔Εͯ͢Γൈ͚Δ΍ͭͱ͔ w߈ܸόΠφϦΛ΋ͬͱ೉ಡԽ͢Δ w๷ޚଆɺ1)1Ҏ֎ͷݴޠϑϨʔϜϫʔΫΛ૿΍͢

  30. จࣈྻΛӅ͍ͨ͠ w(Pݴޠ੡ͷόΠφϦͰ΋ɺ΋ͪΖΜTUSJOHT  ͳͲͰ߈ܸख๏ʹؔ ܎͢Δจࣈྻ͸ݟ͑ͯ͠·͏ɻ wจࣈσʔλΛ·ͱΊͯ֎෦͔Βఏڙͭͭɺ҉߸Խ͞ΕͨܗͰόΠφϦ ؚΉΑ͏ͳπʔϧΛ࡞ΕΔͱྑͦ͞͏ʁ wʢ΋ͪΖΜɺҰൠతͳ࿩ͰόΠφϦ಺ͷจࣈྻΛ҉߸Խͯ͠΋
 ɹͦΜͳʹηΩϡϦςΟରࡦʹ͸ͳΒͳ͍ɻΫΠζͷ೉қ౓తͳ࿩Ͱʣ

  31. None

  32. PT&YJU