Hi๐Ÿ‘‹๐Ÿผ Iโ€™m HAHWUL.

Offensive Security Engineer, Rubyist/Crystalist/Gopher and H4cker

Posts - Page 32 of 86

How to solv โ€œargument list too long: grepโ€ error using grep

  • 1 min read

There was an unusual phenomenon in which grep did not work in a particular directory. The directory was a result of testing multiple url with a meg, and I thought it was a phenomenon that was caused by a large number of subfiles and directories, but the funny thing is that the grep works normally in the parent directory of that directory. ํŠน์ • ๋””๋ ‰ํ† ๋ฆฌ์—์„œ grep์ด ๋™์ž‘ํ•˜์ง€ ์•Š๋Š” ํŠน์ดํ•œ ํ˜„์ƒ์ด ์žˆ์—ˆ์Šต๋‹ˆ๋‹ค. ํ•ด๋‹น ๋””๋ ‰ํ† ๋ฆฌ๋Š” meg๋กœ ๋‹ค์ˆ˜์˜ url์„ ํ…Œ์ŠคํŒ…ํ•œ ๊ฒฐ๊ณผ์˜€๊ณ , ํ•˜์œ„ ํŒŒ์ผ๊ณผ ๋””๋ ‰ํ† ๋ฆฌ๊ฐ€ ๋งŽ์•„์„œ ๋ฐœ์ƒํ•˜๋Š” ํ˜„์ƒ์œผ๋กœ ์ƒ๊ฐํ–ˆ์—ˆ๋Š”๋ฐ, ์›ƒ๊ธด๊ฒŒ ํ•ด๋‹น ๋””๋ ‰ํ† ๋ฆฌ์˜ ์ƒ์œ„ ๋””๋ ‰ํ† ๋ฆฌ์—์„œ grep์€ ์ •์ƒ ๋™์ž‘ํ•ฉ๋‹ˆ๋‹ค.

Read More

MacOS ์™ธ๋ถ€๋ชจ๋‹ˆํ„ฐ ์—ฐ๊ฒฐ ์‹œ ์ƒ‰์ƒ ๋ฌธ์ œ(๋ณด๋ผ์ƒ‰ํ™”๋ฉด?) ํ•ด๊ฒฐ๋ฐฉ๋ฒ• / Display Profile RGB ๋ชจ๋“œ ๊ฐ•์ œ ์„ค์ •

  • 2 min read

์ตœ๊ทผ์— ๋ชจ๋‹ˆํ„ฐ๋ฅผ ๋ฐ”๊ฟจ์Šต๋‹ˆ๋‹ค ๐Ÿ˜ ๋‹ค๋งŒ ์‚ฌ์šฉํ•˜๋˜ ์ค‘ ํŠน์ • ๋งฅ๋ถ์—์„œ ์—ฐ๊ฒฐ ์‹œ ํ™”๋ฉด์ด ๋ฌด์กฐ๊ฑด ๋ณด๋ผ์ƒ‰์œผ๋กœ ๋ณด์ด๋Š” ํ˜„์ƒ์ด ์žˆ์—ˆ๊ณ , ๊ตฌ๊ธ€๋งํ•ด์„œ ์–ป์€ ์ •๋ณด ํ† ๋Œ€๋กœ ๊ณ ์ณค๋˜ ๋‚ด์šฉ ๊ฐ„๋žตํ•˜๊ฒŒ ์ •๋ฆฌํ•ฉ๋‹ˆ๋‹ค. (๋‚˜์ค‘์— ๋˜ ์ด๋Ÿด์ˆ˜๋„ ์žˆ์œผ๋‹ˆ)

Read More

Ways to XSS without parentheses

  • 1 min read

Introduction

๊ฐ„๋งŒ์— @garethheyes ๊ฐ€ ๊ต‰์žฅํžˆ ์“ธ๋งŒํ•œ ํ…Œํฌ๋‹‰์„ ํ•˜๋‚˜ ๊ณต์œ ํ–ˆ์Šต๋‹ˆ๋‹ค. DOMMatrix ๋ฅผ ์ด์šฉํ•ด์„œ ๊ด„ํ˜ธ ๊ฒ€์ฆ์„ ๋‚˜๊ฐ€๋Š” ๋ฐฉ๋ฒ•์ด๊ณ , ๊ธฐ์กด์— ์‚ฌ์šฉํ•˜๋˜ ๋ฐฉ๋ฒ•๋“ค์— ์–ด๋ ค์›€์ด ์žˆ์„ ๋•Œ ์ฐธ๊ณ ํ•ด๋ณผ๋งŒํ•œ ๊ธฐ๋ฒ•์ž…๋‹ˆ๋‹ค. ๊ผญ ํ•œ๋ฒˆ ์ฝ์–ด๋ณด์„ธ์š”.!

Read More

Find S3 bucket takeover , S3 Misconfiguration using pipelining(s3reverse/meg/gf/s3scanner)

  • 1 min read

Hi hackers! Today, iโ€™m going to talk about easy-to-find methods using S3 Bucket takeover and Misconfiguration (Write/Readโ€ฆ). ์˜ค๋žœ๋งŒ์— ๊ธ€์„ ์“ฐ๋Š” ๊ฒƒ ๊ฐ™๋„ค์š”. ์š”์ฆ˜ ์ฝ”๋กœ๋‚˜19๋กœ ์ธํ•ด ์žฌํƒ๊ทผ๋ฌด๋ฅผ ํ•œ๋‹ฌ๋„˜์ง“ ํ•œ ๊ฒƒ ๊ฐ™์€๋ฐ, ํ‰์†Œ๋ณด๋‹ค ์ผ์„ ๋” ๋งŽ์ดํ•˜๊ฒŒ ๋˜๋Š” ๊ฒƒ ๊ฐ™์Šต๋‹ˆ๋‹ค. ๋•๋ถ„์— ๋ธ”๋กœ๊ทธ์— ์•ฝ๊ฐ„ ์†Œํ˜ํ–ˆ๋˜ ๊ฒƒ ๊ฐ™์€๋ฐ์š”, ๋‹ค์‹œ ๊ฐ€๋‹ค์žก๊ณ  ๊ธ€ ์ž‘์„ฑํ•ด๋ด…๋‹ˆ๋‹ค. ์˜ค๋Š˜์€ S3 Bucket takeover์™€ Misconfiguration(Write/Read, etc..) pipelining์„ ์ด์šฉํ•˜์—ฌ ์‰ฝ๊ฒŒ ์ฐพ๋Š” ๋ฐฉ๋ฒ•๋“ค์— ๋Œ€ํ•ด ์ด์•ผ๊ธฐํ•˜๋ ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค.

Read More

Recon with waybackmachine. For BugBounty!

  • 2 min read

Iโ€™m busy with work these days, so I think Iโ€™m writing in two weeks. (Actually, I couldnโ€™t write it because I was tired. LOL) Today Iโ€™m going to share a tip that I used a lot on bugbounty. ์š”์ฆ˜ ์ผ๋กœ ์ธํ•ด ๋ฐ”๋น ์„œ ๊ฑฐ์˜ 2์ฃผ๋งŒ์— ๊ธ€์„ ์“ฐ๋Š” ๊ฒƒ ๊ฐ™์Šต๋‹ˆ๋‹ค. (์‚ฌ์‹ค ํ”ผ๊ณคํ•ด์„œ ๋ชป์ผ์–ด์š”..ใ…‹ใ…‹) ์˜ค๋Š˜์€ ๋‚ด๊ฐ€ ๋ฒ„๊ทธ๋ฐ”์šดํ‹ฐ์—์„œ ์ž์ฃผ ์‚ฌ์šฉํ•˜๋˜ ํŒ ํ•˜๋‚˜๋ฅผ ๊ณต์œ ํ•˜๋ ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค.

Read More

Using the Flat Darcula theme(dark mode) in ZAP!!

  • ~1 min read

ํŠธ์œ„ํ„ฐ๋ฅผ ๋ณด๋˜ ์ค‘ ์‚ฌ์ด๋จผ์˜ ์–ด๋งˆ์–ด๋งˆํ•œ ํŠธ์œ—์„ ๋ณด๊ฒŒ๋˜์—ˆ์Šต๋‹ˆ๋‹ค. ๋ฐ”๋กœ ZAP์˜ Dark ๋ชจ๋“œ ์ง€์›์— ๋Œ€ํ•œ ์ด์•ผ๊ธฐ์˜€๋Š”๋ฐ์š”. ๊ฐ€๋ณ๊ฒŒ ๋ฆฌํŠธ์œ—ํ–ˆ๋”๋‹ˆ ์ด๋ฏธ commit ๋œ ๋‚ด์šฉ์ด๊ณ  ๋ฐ”๋กœ ์‚ฌ์šฉํ•ด ๋ณผ ์ˆ˜ ์žˆ๋‹ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค. ๊ทธ๋ž˜์„œ ์•„์ง Weekly ๋ฒ„์ „์—๋„ ๋ฐ˜์˜๋˜์ง€ ์•Š์•˜์ง€๋งŒ, ๋ฏธ๋ฆฌ ์ฒดํ—˜ํ•ด๋ณด๊ธฐ๋กœ ํ•˜๊ฒ ์Šต๋‹ˆ๋‹ค.

Read More

Find testing point using tomnomnomโ€™s tool, for bugbounty!

  • 3 min read

I recently watched a video that looked for inspection points in a unique way from Stokโ€™s video(interviewed tomnomnom) So, today, Iโ€™m going to introduce you to some of the tools and techniques introduced in that video. ์ตœ๊ทผ์— Stok ์˜์ƒ ์ค‘ tomnomnom ๋ฅผ ์ธํ„ฐ๋ทฐํ•œ๊ฒŒ ์žˆ์–ด์„œ ๋ณด๋˜ ์ค‘ ํŠน์ดํ•œ ๋ฐฉ์‹์œผ๋กœ ์ ๊ฒ€ ํฌ์ธํŠธ๋ฅผ ์ฐพ๋Š” ์˜์ƒ์„ ๋ณด๊ฒŒ๋˜์—ˆ์Šต๋‹ˆ๋‹ค. ๊ทธ๋ž˜์„œ, ์˜ค๋Š˜์€ ํ•ด๋‹น ์˜์ƒ์—์„œ ์†Œ๊ฐœ๋œ ํˆด๊ณผ ๊ธฐ๋ฒ•๋“ค ์ค‘ ์ผ๋ถ€๋ฅผ ๊ฐ€๋ณ๊ฒŒ ์†Œ๊ฐœํ•˜๋ ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค. (์ €๋„ ์ •๋ฆฌ๊ฐ€ ํ•„์š”ํ•ด์„œ๋ฆฌ..)

Read More

First new XSS Payload of 2020(svg animate, onpointerrawupdate)

  • ~1 min read

Hi hackers and bugbounty hunter! Recently, two previously unknown XSS Payloads were disclosure one after another. Itโ€™s not a payload thatโ€™s very difficult to understand, so Iโ€™ll share it briefly! ์ตœ๊ทผ ๊ธฐ์กด์— ์•Œ๋ ค์ง€์ง€ ์•Š์€ XSS Payload 2๊ฐœ๊ฐ€ ์—ฐ๋‹ฌ์•„ ๊ณต๊ฐœ๋ฌ์Šต๋‹ˆ๋‹ค. ์ดํ•ด์— ํฐ ์–ด๋ ค์›€์ด ์žˆ๋Š” ํŽ˜์ด๋กœ๋“œ๋Š” ์•„๋‹ˆ๋‹ˆ, ๊ฐ„๋žตํ•˜๊ฒŒ๋งŒ ๋‚ด์šฉ ๊ณต์œ ํ• ๊ฒŒ์š”!

Read More

BurpSuite 2020.01 Release Review, Change HTTP Message Editor!

  • 1 min read

The first release of Burp 2020.01 was released recently. I think end of last year, the Navigation Embedded Browser in the 2.1.05 release may not be a big change because of its impact, but it has improved a lot in usability because this update. ์ตœ๊ทผ์— Burp 2020.01 ์ฒซ ๋ฆด๋ฆฌ์ฆˆ๊ฐ€ ๋‚˜์™”์Šต๋‹ˆ๋‹ค. ์‚ฌ์‹ค ์ž‘๋…„ ๋ง์ฏค์— 2.1.05 ๋ฆด๋ฆฌ์ฆˆ์—์„œ์˜ Navigation Embedded Browser๊ฐ€ ์›Œ๋‚™ ์ž„ํŒฉํŠธ๊ฐ€ ์žˆ์–ด์„œ ํฐ ๋ณ€ํ™”๋ผ๊ณ ๋Š” ๋ชป๋Š๋ผ๊ฒ ์ง€๋งŒ, ๊ทธ๋ž˜๋„ ์‚ฌ์šฉ์„ฑ์— ์žˆ์–ด์„œ ๊ต‰์žฅํžˆ ๋งŽ์€ ๋ถ€๋ถ„๋“ค์ด ๊ฐœ์„ ๋˜์—ˆ์Šต๋‹ˆ๋‹ค.

Read More