Hi๐Ÿ‘‹๐Ÿผ Iโ€™m HAHWUL.

Offensive Security Engineer, Rubyist/Crystalist/Gopher and H4cker

Posts - Page 68 of 86

Bypass XSS filter with back-tick(JS Template Literal String)

  • 1 min read

์˜ค๋žœ๋งŒ์—(?) XSS ์šฐํšŒ๊ธฐ๋ฒ• ์ •๋ฆฌ ์ฐจ ํฌ์ŠคํŒ… ์ž‘์„ฑํ•ฉ๋‹ˆ๋‹ค. ์˜ค๋Š˜์€ Template literal String์ธ back-tick๊ณผ ์ด๋ฅผ ์ด์šฉํ•œ XSS์— ๋Œ€ํ•ด ์ด์•ผ๊ธฐํ• ๊นŒ ํ•ฉ๋‹ˆ๋‹ค. ์ž ๊ทธ๋Ÿผ ์‹œ์ž‘ํ•˜๋„๋ก ํ•˜์ฃ .

Read More

[WEB HACKING] SWF Debugging with ffdec(jpexs)

  • 1 min read

์ €๋Š” swf ๋ถ„์„์—์„  ffdec๋ฅผ ์‚ฌ์šฉํ•ฉ๋‹ˆ๋‹ค. ๋‹ค๋งŒ ์ตœ๊ทผ์— ์ฒ˜์Œ ์•ˆ ์‚ฌ์‹ค์ด.. jpexs๋ž‘ ffdec๋ฅผ ๊ฐ™์€๊ฑฐ๋”๊ตฐ์š”.(๊ด€์‹ฌ์ด ์—†์—ˆ..)

Read More

[WEB HACKING] SWF(Flash) Vulnerability Analysis Techniques

  • 5 min read

์˜ค๋Š˜์€ SWF๋‚ด ์ทจ์•ฝ์  ๋ถ„์„์— ๋Œ€ํ•œ ์ด์•ผ๊ธฐ๋ฅผ ํ• ๊นŒํ•ฉ๋‹ˆ๋‹ค. SWF๊ฐ€ ๋งŽ์ด ์ ์šฉ๋œ ํ™˜๊ฒฝ์€ ๊ฐ€๋”์‹ ๋ณด๋Š”์ง€๋ผ.. ์˜ค๋žœ๋งŒ์— ๋ถ„์„ํ•˜๋ คํ•˜๋ฉด ๊นŒ๋จน๊ณ  ๊ธฐ์–ต ์•ˆ๋‚˜๋Š” ๊ฒƒ๋“ค์ด ์žˆ์Šต๋‹ˆ๋‹ค. ๋‘๊ณ ๋‘๊ณ  ๋ณผ ๊ฒธ ํฌ์ŠคํŒ…์œผ๋กœ ์ž‘์„ฑํ•ฉ๋‹ˆ๋‹ค.

Read More

[METASPLOIT] msfconsole ๋‚ด Prompt ์„ค์ •ํ•˜๊ธฐ

  • ~1 min read

msf ์‚ฌ์šฉ ์ค‘ ๊ฐ„๋‹จํ•œ ํŽธ์˜ ๊ธฐ๋Šฅ์— ๋Œ€ํ•œ ์ด์•ผ๊ธฐ๋ฅผ ํ• ๊นŒํ•ฉ๋‹ˆ๋‹ค. ๋ฐ”๋กœ Prompt ๋ถ€๋ถ„์— ๋Œ€ํ•ด ์„ค์ •ํ•˜๋Š” ๋ฐฉ๋ฒ•์ธ๋ฐ์š”. ์ดˆ๊ธฐ ์ €๋Š” ์ด ๋ฐฉ๋ฒ•์ด ์žˆ์„๊ฑฐ๋ž€ ์ƒ๊ฐ๋„ ์•ˆํ•˜๊ณ  ์ฝ”๋“œ์—์„œ ์ง์ ‘ ๋ฐ”๊ฟ”์„œ ์ผ์—ˆ๋˜ ๊ธฐ์–ต์ด ๋‚˜๋„ค์š”. (๋ฌผ๋ก  ๊ทธ๊ฒƒ๋„ ๋‚˜๋ฆ„์˜ ์žฅ์ ์ด!)

Read More

OOXML XXE Vulnerability (Exploiting XXE In file upload Function!)

  • 3 min read

์˜ค๋Š˜์€ BlackHat USA 2015์—์„œ ๊ณต๊ฐœ๋œ OOXML XXE ๊ธฐ๋ฒ•์— ๋Œ€ํ•ด ์ •๋ฆฌํ• ๊นŒ ํ•ฉ๋‹ˆ๋‹ค. ๋‚˜์˜จ์ง€ ์กฐ๊ธˆ๋ฌ์ง€๋งŒ.. ์•„์ง๋„ ์ž˜์“ฐ์ด๊ธฐ์— ํ•œ๋ฒˆ์ฏค ์ •๋ฆฌํ•˜๋ฉด ์ข‹์„๊ฑฐ๋ผ ์ƒ๊ฐํ–ˆ์—ˆ์ฃ .

Read More

[DEBIAN] Thunder Bird์—์„œ Anigmail, GnuPG(gpg)๋ฅผ ํ†ตํ•œ ์ด๋ฉ”์ผ ์•”ํ˜ธํ™”

  • 3 min read

์˜ค๋Š˜์€ ์•”ํ˜ธํ™”๋œ ๋ฉ”์ผ ํ†ต์‹ ์„ ์œ„ํ•ด GPG๋ฅผ ์ด์šฉํ•œ ํ‚ค์ƒ์„ฑ๊ณผ Thunder Bird์— ์—ฐ๋™ํ•˜๋Š” ๊ณผ์ •์„ ์ด์•ผ๊ธฐํ• ๊นŒ ํ•ฉ๋‹ˆ๋‹ค. ์ผ๋ฐ˜์ ์œผ๋กœ ์“ฐ๋Š” ๋ฉ”์ผ ์„œ๋น„์Šค๋“ค์ด ์•”ํ˜ธํ™”๋˜์–ด ์•ˆ์ „ํ•˜๊ฒŒ ์ „์†ก๋œ๋‹ค๊ณ ๋Š” ํ•˜์ง€๋งŒ ์šฐ๋ฆฌ๋Š” ์‹ ๋ขฐํ•  ์ˆ˜ ์—†๊ธฐ ๋•Œ๋ฌธ์— ์ข…๋‹จ ๊ฐ„ ์•”ํ˜ธํ™”๋กœ ๋” ํŠผํŠผํ•œ ์ด๋ฉ”์ผ์„ ์‚ฌ์šฉํ•˜์ฃ .

Read More

Parameter Padding for Attack a JSON CSRF

  • 1 min read

์ข€ ์˜ค๋ž˜๋œ ์šฐํšŒ๊ธฐ๋ฒ•(?)์ด๊ธด ํ•˜๋‚˜ ํ•œ๋ฒˆ ์ •๋ฆฌํ•ด๋‘๋ฉด ์ข‹์„ ๊ฒƒ ๊ฐ™์•„ ํฌ์ŠคํŒ…ํ•ฉ๋‹ˆ๋‹ค. ์˜ค๋Š˜์€ CSRF ๊ทธ์ค‘์—์„œ๋„ JSON ํ˜•ํƒœ์˜ ์š”์ฒญ์„ ์ฒ˜๋ฆฌํ•˜๋Š”๋ฐ ์‚ฌ์šฉํ•  ์ˆ˜ ์žˆ๋Š” ๋ฐฉ๋ฒ•์ด์ฃ .

Read More

[HACKING] Eternalblue vulnerability&exploit and msf code

  • 5 min read

์ง€๋‚œ์ฃผ ์ฏค์ธ๊ฐ€์š”..? Shadow Brokers ๊ฐ€ ๊ณต๊ฐœํ•œ Eternal ์‹œ๋ฆฌ์ฆˆ์˜ ์ทจ์•ฝ์ ์„ ์ฃผ์ œ๋กœ ํฌ์ŠคํŒ…์„ ํ• ๊นŒ ํ–ˆ์Šต๋‹ˆ๋‹ค๋งŒ..

Read More

[EXPLOIT] Linux Kernel - Packet Socket Local root Privilege Escalation(CVE-2017-7308,out-of-bound) ๋ถ„์„

  • 12 min read

์ •๋ง ์˜ค๋žœ๋งŒ์— ํฌ์ŠคํŒ…์„ ํ•˜๋„ค์š”. ์ตœ๊ทผ์— ๊ณต๊ฐœ๋œ Linux kenel ์ทจ์•ฝ์ ์— ๋Œ€ํ•œ ๋ถ„์„ ๋‚ด์šฉ์œผ๋กœ ์ค€๋น„ํ•˜์˜€์Šต๋‹ˆ๋‹ค. (์˜ˆ์ „์— Kernel OOB ์ทจ์•ฝ์  ์จ๋‘”๊ฑด ์–ด๋””๊ฐ”๋Š”์ง€ ๋ชจ๋ฅด๊ฒ ๋„ค์š”.. ์„ค๋งˆ ์ง€์šด๊ฑด๊ฐ€? =_=)

Read More

[DEBIAN] terminator๋ฅผ ์ด์šฉํ•œ ์ฐฝ ๋ถ„ํ•  ํ„ฐ๋ฏธ๋„ ์‚ฌ์šฉํ•˜๊ธฐ

  • ~1 min read

์˜ค๋Š˜์€ ์•„์ฃผ ๋งค๋ ฅ์ ์ธ terminal program์— ๋Œ€ํ•ด ์†Œ๊ฐœํ•ด๋“œ๋ฆด๊นŒ ํ•ฉ๋‹ˆ๋‹ค. ์ฐฝ ๋ถ„ํ• ์ด ์ปจ์…‰์ธ ํ„ฐ๋ฏธ๋„ ํ”„๋กœ๊ทธ๋žจ์ด์ฃ . ์ €๋Š” ์ฃผ๋กœ tilda์™€ gnome-terminal ์‚ฌ์šฉํ–ˆ๋Š”๋ฐ, terminator๋ฅผ ๋ณด๊ณ  gnome-terminal์„ ๋นผ๋ฒ„๋ฆฌ๊ฒŒ ๋˜์—ˆ๋„ค์š”.

Read More