Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥

脆弱性を作ってみた

Avatar for Sota Sugiura Sota Sugiura
December 22, 2016
Technology
1
560

 脆弱性を作ってみた

雑兵MeetUp #8@21cafe

Avatar for Sota Sugiura

Sota Sugiura

December 22, 2016
Tweet

More Decks by Sota Sugiura

See All by Sota Sugiura
内製したSlack Appで頑張るIncident Response@Waroom Meetup #1 / Incident Response with Slack App in 10X
Avatar for Sota Sugiura sota1235
0
1.8k
20220926_セキュリティチームの今_for_Drs._Prime_公開用.pdf
Avatar for Sota Sugiura sota1235
0
170
再発防止策を考える技術 / #phpconsen
Avatar for Sota Sugiura sota1235
10
4k
How to choose the best npm module for your team?
Avatar for Sota Sugiura sota1235
9
630
Realtime Database for high traffic production application
Avatar for Sota Sugiura sota1235
7
4.2k
Road to migrate JP Web as a microservice
Avatar for Sota Sugiura sota1235
4
1.7k
インターフェース再入門 / Think Interface again
Avatar for Sota Sugiura sota1235
6
11k
再発防止策を考える技術 #phpconfuk_rej
Avatar for Sota Sugiura sota1235
1
1.3k
Update around Firebase #io18
Avatar for Sota Sugiura sota1235
3
4.4k

Other Decks in Technology

See All in Technology
Building Serverless AI Memory with Mastra × AWS
Avatar for vvatanabe vvatanabe
0
560
NIKKEI Tech Talk #41: セキュア・バイ・デザインからクラウド管理を考える
Avatar for Ryosuke Sekido sekido
PRO
0
210
AWSの新機能をフル活用した「re:Inventエージェント」開発秘話
Avatar for みのるん minorun365
2
450
Authlete で実装する MCP OAuth 認可サーバー #CIMD の実装を添えて
Avatar for watahani watahani
0
180
アラフォーおじさん、はじめてre:Inventに行く / A 40-Something Guy’s First re:Invent Adventure
Avatar for 株式会社カミナシ kaminashi
0
150
Bedrock AgentCore Memoryの新機能 (Episode) を試してみた / try Bedrock AgentCore Memory Episodic functionarity
Avatar for hoshi7_n hoshi7_n
2
1.9k
MariaDB Connector/C のcaching_sha2_passwordプラグインの仕様について
Avatar for kubo ayumu boro1234
0
1k
AWSに革命を起こすかもしれない新サービス・アップデートについてのお話
Avatar for Yuuki Yamashita yama3133
0
500
Oracle Database@Azure:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
2
200
まだ間に合う! Agentic AI on AWSの現在地をやさしく一挙おさらい
Avatar for みのるん minorun365
17
2.8k
MySQLとPostgreSQLのコレーション / Collation of MySQL and PostgreSQL
Avatar for とみたまさひろ tmtms
1
1.2k
AWS re:Invent 2025~初参加の成果と学び~
Avatar for Kubo kubomasataka
0
190

Featured

See All Featured
Chasing Engaging Ingredients in Design
Avatar for Sebastian Deterding codingconduct
0
84
Information Architects: The Missing Link in Design Systems
Avatar for Michelle Chin soysaucechin
0
720
The SEO Collaboration Effect
Avatar for Kristina Bergwall kristinabergwall1
0
310
The Hidden Cost of Media on the Web [PixelPalooza 2025]
Avatar for Tammy Everts tammyeverts
2
120
Groundhog Day: Seeking Process in Gaming for Health
Avatar for Sebastian Deterding codingconduct
0
65
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
Avatar for Tomoya Matsuura tomoyanonymous
0
300
Context Engineering - Making Every Token Count
Avatar for Addy Osmani addyosmani
9
550
Odyssey Design
Avatar for Ryan Kendrick rkendrick25
PRO
0
440
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
Avatar for Aki / @LoveIdahoBurger aki_iinuma
128
55k
Scaling GitHub
Avatar for Zach Holman holman
464
140k
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
Avatar for Sophie Logan marketingsoph
0
45
Testing 201, or: Great Expectations
Avatar for Joseph Mastey jmmastey
46
7.8k

Transcript

  1. ੬ऑੑΛ࡞ͬͯΈͨ !TPUB͖ΓΜ ࡶฌ.FFU6Q

  2. ࣗݾ঺հ w ͖ΓΜͰ͢ w !TPUB w ໌೔͔Βࢮͷ೔͕ؒ࢝·Γ· ͕͢Έͳ͞ΜਐḿͲ͏Ͱ͔͢

  3. ੬ऑੑΛ࡞ͬͪΌͬͨͰ͸ͳ͘ ࡞ͬͯΈͨ࿩Ͱ͢ ̃䯡ՙ☭岩ՙՊլՖ㈕ՙՊլ

  4. ߈ܸຊೳͷ࿩ w ਓ͸ਐԽ͢Δલ͸Ԑͩͬͨ w ՐΛ࢖͍ɺಓ۩Λ࢖͍ɺङΓΛߦ͏͜ͱͰੜ͖ Ԇͼ͖ͯͨ w ߈ܸ͢Δ͜ͱͱ͸ੜ͖Δ͜ͱͦͷ΋ͷ

  5. ਓੜJT Ԑͷ࿭੕γϦʔζΑΓ

  6. ϓϩάϥϚʹ͓͚Δ߈ܸຊೳ w ϓϩάϥϚ΋ਓؒ w ౰વɺ߈ܸຊೳΛඋ͍͑ͯΔ w ࣮͸ϓϩάϥϚͱ߈ܸੑ͸ີ઀ʹؔ܎ͯ͠Δͱ ݴΘΕ͍ͯΔ

  7. ·͊ӕͳΜͰ͚͢Ͳ IUUQKJHPLVOPDPNFJE@IUNM

  8. ·͊ӕͳΜͰ͚͢Ͳ Ͱ΋෺૽ͳਓ͕ଟ͍ؾ͸͠·͢ΑͶ IUUQKJHPLVOPDPNFJE@IUNM

  9. ݱ࣮͸ݫ͍͠ IUUQTUXJUUFSDPNIULC@TUBUVT

  10. ݱ࣮͸ݫ͍͠ IUUQTUXJUUFSDPNIULC@TUBUVT

  11. ఘΊΔ͔͠ແ͍ͷ͔ w ߹๏తʹ߈ܸຊೳΛຬͨ͢ํ๏͕ʜ w ͋Γ·͊ SZ

  12. $BQUVSF 5IF 'MBH

  13. $BQUVSF5IF'MBH w ضऔΓ߹ઓ w αʔόʹ৵ೖͨ͠ΓηΩϡϦςΟʹ·ͭΘΔ໰ ୊Λղ͍ͯضΛऔΔ w 4&$$0/ͱ͔༗໊Ͱ͢ΑͶ

  14. ຊ୊ w ઌ೔ɺ਎಺޲͚ʹ$5'Λ΍ͬͨ w ඍົʹܦݧ͕͋ͬͨͷͰ໰୊࡞Γͱ͔΍ͬͨ

  15. ༷ࢠ

  16. ༷ࢠ

  17. ग़୊δϟϯϧΛܾΊΔ w $5'ͷकඋൣғ͸ΊͪΌͪ͘Ό๲େ w ҉߸ ϑΝΠϧղੳ ωοτϫʔΫ 8FC  'PSFOTJDT

    QXO FUD w ࠓճ͸8FCͷਓ͕ଟ͔ͬͨͷͰ8FCଟΊʹͨ͠

  18. ໰୊Λߟ͑Δ w ͱ͍ͬͯ΋ࢲ΋ॳ৺ऀͳͷͰաڈ໰ͱ͔੬ऑੑ Λௐ΂ͳ͕Βߟ͑Δ w ͓΋͠Ζ͔ͬͨΓֶͼʹͳΓͦ͏ͳ΋ͷ͕͋Ε ͹࠾༻͍ͯ͘͠

  19. ໰୊Λߟ͑Δ

  20. γφϦΦΛҙࣝ͢Δ w ͜Μͳ੬ऑੑ͕͋ͬͨΒ͜Μͳ͜ͱ͕Ͱ͖ͪΌ ͏ΑͶɺΈ͍ͨͳͷΛߟ͑Δ

  21. Կݸ͔঺հ

  22. ྫ͑͹ψϧόΠτ߈ܸ w /6--จࣈΛจࣈྻͷऴ୺จࣈͱͯ͠ೝࣝ͢Δ ͜ͱΛར༻ͨ͠߈ܸ w ࠓճ͸1)1Ͱ࣮૷ͨ͠

  23. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename);

  24. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename); // /index.php?filename=/etc/passwd //

    Ͱ΋.png͕अຐͦ͏…

  25. ψϧόΠτ߈ܸ w ͓΋ΉΖʹJOEFYQIQ pMFOBNFUD QBTTXEʹΞΫηε͢Δ w ͢ΔͱpMF@HFU@DPOUFOUT͸Λऴ୺จࣈͱ ͯ͠ೝࣝ͢ΔͷͰQOH͕ࣺͯΒΕΔ

  26. ψϧόΠτ߈ܸ <?php $filename = $_GET['filename'].'png'; echo file_get_contents($filename); // /index.php?filename=/etc/passwd%00 //

    ϢʔβҰཡൈ͚Δͧʂ

  27. ྫ͑͹/P42-*OKFDUJPO w υΩϡϝϯτ%#Ͱى͖͏Δ੬ऑੑ w 1)1 NPOHP%#Ͱ࣮૷Ͱ͖Δ

  28. /P42-ΠϯδΣΫγϣϯ <?php $name = $_GET['name']; return $db->find(['name' => $name]); //

    /index.php?name=kirin

  29. /P42-ΠϯδΣΫγϣϯ <?php $name = $_GET['name']; return $db->find(['name' => $name]); //

    /index.php?name[$ne]=xͬͯ΍Δͱ…

  30. ྫ͑͹/P42-*OKFDUJPO w 1)1Ͱ͸(&5ΫΤϦετϦϯάΛ࿈૝഑ྻͰड ͚औΕΔ w OBNF<OF>Yͬͯ΍ΔͱҎԼͷΑ͏ͳ஋͕ ౉ͬͯ͘Δ

  31. ྫ͑͹/P42-*OKFDUJPO w ͜ͷΫΤϦ͕ͦͷ··NPOHPʹ౉Δͱ42-Ͱ ݴ͏ͱ͜Ζͷ8)&3&OBNFbY`ͱ͍͏৚݅ ͕੒ཱͯ͠͠·͏

  32. ͳΜͰ1)1͹͔ͬΓ͔ͬͯʁ w ؾ෇͍ͯ͠·ͬͨਓ͸ফ͞ΕΔͷͰؾ͔ͮͳ͍ ϑϦΛ͠·͠ΐ͏Ͷ ?Т?  w 1)1Yd࢖͓͏ɺܑ͓͞Μͱͷ໿ଋͩ ?Т?

  33. ଞʹ΋ʜ w ύεϫʔυ͖ͭ;*1ղੳ w %JHFTU#BTJDBVUIFOUJDBUJPO w 944 w ҉߸ղੳ 305ͱ͔୯Ұ׵ࣈࣜͱ͔

  34. ਅ໘໨ͳ࿩ w ࡞໰͢Δʹ͸ͭͷࢹ఺͕ඞཁ w ߈ܸऀࢹ఺ w ։ൃऀࢹ఺ w ʮప໌͚ʹ։ൃͯͨ͠ΒΪϦΪϦ͋Γ͏ΔʯΈ ͍ͨͳ΍ͭΛ࡞Δͷ͸ָ͍͠͠ษڧʹͳΔΑ

  35. ·ͱΊɿ$5'͠Α͏ w ߹๏తʹ߈ܸຊೳΛຬͨͤΔͷͰΦεεϝ w 8FCʹݶΒͣ෯޿͍஌ࣝΛٻΊΒΕΔͷͰษڧ ʹͳΔ w ৗறܕ$5'΋͋ΔͷͰڵຯ͕͋Δํ͸ͥͻ