Upgrade to Pro — share decks privately, control downloads, hide ads and more …

地雷探しに脆弱性を使うのは間違っているだろうか Hack a Minesweeper

Avatar for Mr.Rabbit Mr.Rabbit
December 07, 2017
0
210

地雷探しに脆弱性を使うのは間違っているだろうか Hack a Minesweeper

2017年6月3日(土) AKIBASECで発表さてもらったLT資料です。

Avatar for Mr.Rabbit

Mr.Rabbit

December 07, 2017
Tweet

More Decks by Mr.Rabbit

See All by Mr.Rabbit
Azazel Series
Avatar for Mr.Rabbit 01rabbit
0
65
Azazel System for Emergency Shelters
Avatar for Mr.Rabbit 01rabbit
0
160
BOCCHI
Avatar for Mr.Rabbit 01rabbit
0
29
KaliPAKU
Avatar for Mr.Rabbit 01rabbit
0
25
Babbly
Avatar for Mr.Rabbit 01rabbit
0
72
P.A.K.U.R.I SECCON2019 Akihabara YOROZU
Avatar for Mr.Rabbit 01rabbit
1
120
P.A.K.U.R.I AVTOKYO HIVE
Avatar for Mr.Rabbit 01rabbit
0
88
The Empire Strikes Back ~MR.RABBIT 帝国の逆襲~
Avatar for Mr.Rabbit 01rabbit
0
250
あの日学んだ攻撃の方法を僕達はまだ知らない。
Avatar for Mr.Rabbit 01rabbit
0
190

Featured

See All Featured
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
Avatar for Sam Stephenson sstephenson
162
16k
Build The Right Thing And Hit Your Dates
Avatar for Maggie C. maggiecrowley
39
3k
Faster Mobile Websites
Avatar for Dean Hume deanohume
310
31k
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
234
18k
Evolving SEO for Evolving Search Engines
Avatar for Ryan Jones ryanjones
0
140
Learning to Love Humans: Emotional Interface Design
Avatar for Aarron Walter aarron
275
41k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4.2k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
Avatar for Addy Osmani addyosmani
10
1.1k
For a Future-Friendly Web
Avatar for Brad Frost brad_frost
183
10k
Why Mistakes Are the Best Teachers: Turning Failure into a Pathway for Growth
Avatar for Umar Saidu Auna auna
0
68
VelocityConf: Rendering Performance Case Studies
Avatar for Addy Osmani addyosmani
333
24k
Six Lessons from altMBA
Avatar for Skipper Chong Warson skipperchong
29
4.2k

Transcript

  1.  BLJCBTFD ͏͗͞ !SBJU

  2. ࣗݾ঺հ ͏͗͞ w झຯͰϖωτϨʔγϣϯςετΛͯ͠Δ w झຯͰ߈ܸݕূΛ͍ͯ͠Δ w ݱࡏɺઈࢍෆ຾঱ൃ঱தX ͏͞ϒϩ ɹIUUQSBJUCMPHIBUFCMPKQ

    5XJUUFS ɹ!SBJU

  3. –ͱ͋Δຐज़ͷېॻ໨࿥ lຐज़ͱ͸ɺ࠽ೳͷແ͍ਓ͕ؒͦΕͰ΋࠽ೳ͋Δ ਓؒͱର౳ʹͳΔҝͷٕज़z

  4. ಥવͰ͕࣭͢໰Ͱ͢ʂ ϚΠϯεΠʔύͬͯ஌ͬͯ·͔͢ʁ ɹϚΠϯεΠʔύʢ.JOFTXFFQFSʣ͸೥୅ ʹൃ໌͞ΕͨɺҰਓ༻ͷίϯϐϡʔλήʔϜͰ͋ ΔɻήʔϜͷ໨త͸஍ཕݪ͔Β஍ཕΛऔΓআ͘͜ ͱͰ͋Δɻ 8JLJQFEJBΑΓ

  5. ;ͱࢥͬͨɾɾɾ

  6. ্ڃΛΫϦΞ͍ͨ͠ʂ ˞্ڃͷੈքه࿥͸ඵɹ8JLJQFEJBΑΓ

  7. ͨͱ͑ ͲΜͳखஈΛ࢖ͬͯͰ΋ʂʂ

  8. ໨ඪͱ͢Δ͜ͱ w ϚΠϯεΠʔύ͕ಈ͍͍ͯΔ8JOEPXTͷ੬ऑੑΛ ಥ͍ͯϋοΫ͢Δ w 8JOEPXTΛϋοΫͨ͠ޙɺϚΠϯεΠʔύΛϋο Ϋͯ͠Έͯཪٕ͕ແ͍͔୳ͯ͠ݟΔ

  9. ؀ڥ 8JOEPXT91  ,BMJ-JOVY 

  10. खॱ  /NBQΛ࢖ͬͯ8JOEPXT91Λௐࠪ͢Δ  .FUBTQMPJUΛ࢖༻ͯ͠৵ೖ͢Δ  ৵ೖͨ͠Β.FUFSQSFUFSΛۦ࢖ͯ͠.JOFTXFFQFS ΛϋοΫ͢ΔXɹʢ࣮ԋʣ

  11. ϙʔτεΩϟϯͯ͠Έͨ ͕ɺ։͍͍ͯΔͱ͍͏͜ͱ͸ɾɾɾ /4"ͷΞϨ͕ɾɾɾ

  12. &UFSOBM#MVF .4 ͷ֬ೝ %PVCMF1VMTBSΛ࢓ࠐΊΔʂʂ ੬ऑੑൃݟʂʂ

  13. &YQMPJU͢Δ ৵ೖ׬ྃʂ

  14. .FUFSQSFUFS͔Β .JNJLBU[ΛಡΈࠐΉ ಡΈࠐΉ͜ͱͰʮNJNJLBU[@DPNNBOEʯ͕࢖͑ ΔΑ͏ʹͳΔ ˞NJNJLBU[ͱ͸ 8JOEPXTͷύεϫʔυΛΫϥοΫ͢Δπʔϧ

  15. NJNJLBU[@DPNNBOEͷ࣮ߦ ͜͜ͰʮNJNJLBU[@DPNNBOEGXJONJOFJOGPTʯ ͱೖྗ͢Δͱɾɾɾ

  16. ͋Εʁ౴͑ݟ͑ͯΔX ,BMJ-JOVY 8JOEPXT91

  17. ͋Εʁ౴͑ݟ͑ͯΔX ,BMJ-JOVY 8JOEPXT91

  18. ͜ΕͰ্ڃΫϦΞͰ͖Δ ??

  20. NJNJLBU[@DPNNBOEʹ͸ ΋ͬͱੌ͍෺͕͋Δ ͜͜ͰʮNJNJLBU[@DPNNBOEGXJONJOFDIFBUʯ ͱೖྗ͢Δͱɾɾɾ

  21. ͑ʂʁ DIFBUίϚϯυΛૹͬͨޙʹɺ൫໘ͷۭ͖εϖʔεΛΫϦοΫ ͢ΔͱΫϦΞʂʂॴཁ࣌ؒ ̍ඵʂʂ

  22. ࣮ԋ

  23. ·ͱΊ w ੬ऑੑͷ࢒Δ8JOEPXT্ͷϚΠϯεΠʔύ͸ɺҶ ͮΔࣜʹήʔϜΛ߈ུ͞Εͯ͠·͏ w ཁ͢Δʹେਓؾͳ͍ϋοΧʔ͕ɺϜΩʹͳΔͱϚΠ ϯεΠʔύΛ̍ඵͰΫϦΞ͢Δ w ෺ࣄΛଟ֯తʹݟΔͱ໘ന͍ൃݟ΋͋Δ

  24. ऴΘΓ