Hi๐Ÿ‘‹๐Ÿผ Iโ€™m HAHWUL.

Offensive Security Engineer, Rubyist/Crystalist/Gopher and H4cker

Posts - Page 19 of 86

ZAP Automation GUI

  • 1 min read

์ตœ๊ทผ์— ZAP Automation framework๊ฐ€ 0.4 ๋ฒ„์ „์œผ๋กœ ์—…๋ฐ์ดํŠธ ๋ฌ์Šต๋‹ˆ๋‹ค. ์‚ฌ์‹ค ์ œ๊ฐ€ 0.4 ๋ฒ„์ „์„ ๊ธฐ๋‹ค๋ฆฐ ๊ฒƒ์€ ์•„๋ž˜ ๋‚ด์šฉ ๋•Œ๋ฌธ์ธ๋ฐ์š”, StackHawk์—์„œ ์ŠคํŠธ๋ฆฌ๋ฐ์œผ๋กœ ์ง„ํ–‰ํ•œ Automation Framework์— ๋Œ€ํ•œ ์†Œ๊ฐœ ๋‚ด์šฉ ์ค‘ ZAP์—์„œ UI๋กœ Automation Framework๋ฅผ ์ปจํŠธ๋กคํ•˜๋Š” ์žฅ๋ฉด์ด ์žกํ˜”์—ˆ๊ณ , Simon์—๊ฒŒ ๋ฌผ์–ด๋ณด๋‹ˆ 0.4 ๋ฒ„์ „๋Œ€ ๊ธฐ๋Šฅ์ด๋ผ๊ณ  ํ•ฉ๋‹ˆ๋‹ค.

Read More

Html to Markdown in Cli

  • 1 min read

์–ด์ œ Hugo๋กœ ์ด์‚ฌ๋กœ ์ด์‚ฌ๋ฅผ ๋งˆ๋ฌด๋ฆฌํ•˜๋ฉด์„œ ๋ชปํ–ˆ๋˜ ์ž‘์—…์„ ํ•˜๋‚˜ ์ง„ํ–‰ํ•œ๊ฒŒ ์žˆ์Šต๋‹ˆ๋‹ค. ๋ฐ”๋กœ ๊ธฐ์กด jekyll ๋ถ€ํ„ฐ ์œ ์ง€ํ•ด์˜ค๋˜ blogger๋กœ ๋ถ€ํ„ฐ ๋„˜์–ด์˜จ ์ž”ํ•ด, html ํฌ์ŠคํŠธ๋“ค์ธ๋ฐ์š”. ๋ฌผ๋ก  ํŽ˜์ด์ง€ ๋žœ๋”ฉ์—๋Š” ์ „ํ˜€ ์ง€์žฅ์ด ์—†์ง€๋งŒ, html ํŒŒ์ผ ์ž์ฒด๊ฐ€ ์œ ์ง€๋ณด์ˆ˜๊ฐ€ ์–ด๋ ต๋‹ค๋ณด๋‹ˆ ๊ธ€์„ ์ˆ˜์ •ํ•˜๊ธฐ ๊นŒ๋‹ค๋กญ๋‹ค๋Š” ๋‹จ์ ์ด ์žˆ์—ˆ์Šต๋‹ˆ๋‹ค.

Read More

Utterances์—์„œ ๋Œ“๊ธ€ ์ด๋™ํ•˜๊ธฐ

  • ~1 min read

๊ฐ„ํ˜น github page์˜ repo ์ด์ „ ๋“ฑ utterances์˜ ๋Œ“๊ธ€์„ ์ด๋™ํ•ด์•ผํ•  ๊ฒฝ์šฐ๊ฐ€ ์ƒ๊น๋‹ˆ๋‹ค. ์ด๋ฒˆ์— hugo ์ด์ „ํ•˜๋Š” ์ž‘์—…์„ ์ง„ํ–‰ํ•˜๋ฉด์„œ ํ…Œ์ŠคํŠธ ํ•˜๋‹ค๋ณด๋‹ˆ, ๊ฐ„๋‹จํ•œ ํŠธ๋ฆญ์„ ์ด์šฉํ•˜์—ฌ ๋Œ“๊ธ€์„ ์‰ฝ๊ฒŒ ์˜ฎ๊ธธ ์ˆ˜ ์žˆ์–ด ๋‚ด์šฉ์„ ์ •๋ฆฌํ•ด๋ด…๋‹ˆ๋‹ค.

Read More

Jekyll์—์„œ Hugo๋กœ ์ด์‚ฌ๊ฐ€๊ธฐ (Migration log)

  • 7 min read

jekyllโ€ฆ ์ œ๊ฐ€ ์˜ˆ์ „์—๋Š” rubyist(ruby ์‚ฌ์šฉ์ž) ์˜€์Šต๋‹ˆ๋‹ค. ๊ทธ๋Ÿฌ๋‹ค๊ฐ€ 2018~19๋…„ ์ฏค์— gopher(golang ์‚ฌ์šฉ์ž)๊ฐ€ ๋˜์—ˆ๊ณ  ์ดํ›„๋ถ€ํ„ด ๋งŒ๋“ค๊ณ  ์žˆ๋Š” ๋Œ€๋‹ค์ˆ˜์˜ ๋„๊ตฌ๋Š” golang ๊ธฐ๋ฐ˜์œผ๋กœ ๋งŒ๋“ญ๋‹ˆ๋‹ค.

Read More

Golang์˜ nil๊ณผ interface nil์˜ ์žฌ๋ฏธ์žˆ๋Š” ํŠน์ง•

  • 1 min read

Null์€ ์ผ๋ฐ˜์ ์œผ๋กœ ์กด์žฌํ•˜์ง€ ์•Š๋Š” ๊ฐ’ ๋˜๋Š” ๋ฉ”๋ชจ๋ฆฌ ์ฃผ์†Œ๋ฅผ ์˜๋ฏธํ•˜๋ฉฐ ์–ธ์–ด์— ๋”ฐ๋ผ null nil nan none undefined ๋“ฑ ์—ฌ๋Ÿฌ๊ฐ€์ง€ ํ˜•ํƒœ๋กœ ํ‘œํ˜„๋ฉ๋‹ˆ๋‹ค. ๋‹ค๋งŒ null์ด๋ž€ ๊ฐœ๋…์ด ์–ธ์–ด๋งˆ๋‹ค ํŠน์„ฑ๊ณผ ์ฒ ํ•™, ํ‘œํ˜„ํ•˜๋Š” ๋ฐฉ์‹์— ๋”ฐ๋ผ์„œ ๋‹ฌ๋ผ์ง€๊ธฐ๋„ ํ•˜๋Š”๋ฐ์š”. ์˜ค๋Š˜์€ golang์—์„œ์˜ null์ธ nil์˜ ํŠน์„ฑ ํ•˜๋‚˜๋ฅผ ์‚ดํŽด๋ณด๋ ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค.

Read More

ZAP OAST ๋ฆด๋ฆฌ์ฆˆ! ์ด์ œ ZAP์—์„œ Out-Of-Band๊ฐ€ ๋” ์‰ฌ์›Œ์ง‘๋‹ˆ๋‹ค ๐Ÿš€

  • 4 min read

์˜ค๋Š˜ ZAP OAST๊ฐ€ Alpha ๋ฒ„์ „์œผ๋กœ release ๋˜์—ˆ์Šต๋‹ˆ๋‹ค. ์ง€๋‚œ๋ฒˆ์— ์ด์•ผ๊ธฐ๋“œ๋ฆฐ๋Œ€๋กœ OAST๋Š” callback ๊ณผ ๋น„์Šทํ•˜๊ฒŒ Out-Of-Band๋ฅผ ์‹๋ณ„ํ•˜๊ธฐ ์œ„ํ•œ ๋„๊ตฌ๋กœ SSRF, RCE ๋“ฑ์—์„œ ๊ต‰์žฅํžˆ ์œ ์šฉํ•˜๊ฒŒ ์‚ฌ์šฉํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

Read More

25 Keywords in Go

  • 1 min read

Go supports only 25 keywords. Itโ€™s very simple, which has the advantage of a low learning curve. Iโ€™ve never posting it while using Go. Let me summarize the meaning of each keyword today.

Read More

go-jwt์™€ golang-jwt/jwt

  • 1 min read

์ตœ๊ทผ์— golang์œผ๋กœ ๊ฐœ๋ฐœํ•œ ๋„๊ตฌ ์ค‘ jwt ๋ผ์ด๋ธŒ๋Ÿฌ๋ฆฌ๋ฅผ ์‚ฌ์šฉํ•œ ๋Œ€๋‹ค์ˆ˜์˜ ํ”„๋กœ์ ํŠธ์—์„œ ์•„๋ž˜์™€ ๊ฐ™์ด Security dependency alert์ด ๋‚˜ํƒ€๋‚ฌ์Šต๋‹ˆ๋‹ค.

Read More