Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
自作バイナリエディタを用いたバイナリ解析
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
@tkmru
March 05, 2016
Programming
2.5k
3
Share
自作バイナリエディタを用いたバイナリ解析
セキュリティ・キャンプ・フォーラム 2016/03/04
@tkmru
March 05, 2016
More Decks by @tkmru
See All by @tkmru
10分で知るゲームが「チートされる」仕組み/findy202603
tkmru
0
920
リバースエンジニアリング新時代へ! GhidraとClaude DesktopをMCPで繋ぐ/findy202507
tkmru
8
2.6k
Bring Your Own Container: When Containers Turn the Key to EDR Bypass/byoc-avtokyo2024
tkmru
2
1.9k
ipa-medit: Memory search and patch tool for IPA without Jailbreaking/ipa-medit-bh2022-europe
tkmru
0
420
Ipa-medit: Memory modification tool for iOS apps without Jailbreaking/ipa-medit-codeblue2022
tkmru
0
240
趣味と実益のための著名なOSSライブラリ起因の脆弱性の探求/seccamp2021-b5
tkmru
0
5.5k
Ipa-medit: Memory Search and Patch Tool for IPA Without Jailbreaking @Black Hat USA 2021 Arsenal/ipa-medit-bh2021-usa
tkmru
1
4.8k
Learn the essential way of thinking about vulnerabilities through post-exploitation on middlewares (MySQL/PostgreSQL編)/seccamp2020-b8
tkmru
3
980
apk-medit: memory search and patch tool for debuggable APK @CODE BLUE 2020 Bluebox
tkmru
0
250
Other Decks in Programming
See All in Programming
開発体験を左右するライブラリの API 設計 - GraphQL スキーマ構築ライブラリから考える #tskaigi
izumin5210
2
1.4k
CLIであることを活かしたGitHub Copilot CLI活用術 / GitHub Copilot CLI Pro Tips & Tricks
nao_mk2
1
1.2k
Java × distroless で 軽量なコンテナイメージを / Java on Distroless
contour_gara
0
430
SPMマルチモジュールで テストカバレッジを取得する技法
yosshi4486
0
130
ECR拡張スキャンでSBOMを収集して サプライチェーン攻撃の影響調査を 爆速で終わらせてみた
akihisaikeda
2
210
CSC307 Lecture 17
javiergs
PRO
0
290
oxlintはeslint/typescript-eslintを置き換えられるのか
shomafujita
2
290
RailsTokyo 2026#4: AI様があれば、 Hotwireの弱点は消えるか?
naofumi
5
1k
Oxcを導入して開発体験が向上した話
yug1224
4
260
AI駆動開発勉強会 広島支部 第一回勉強会 AI駆動開発概要とワークショップ
hayatoshimiu
0
420
Claspは野良GASの夢をみるか
takter00
0
140
AIとRubyの静的型付け
ukin0k0
0
480
Featured
See All Featured
First, design no harm
axbom
PRO
2
1.2k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
35
3.5k
Leading Effective Engineering Teams in the AI Era
addyosmani
9
2k
How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.
livdayseo
0
130
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
254
22k
Ten Tips & Tricks for a 🌱 transition
stuffmc
0
120
Navigating Weather and Climate Data
rabernat
0
200
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
122
22k
jQuery: Nuts, Bolts and Bling
dougneiner
66
8.5k
Rebuilding a faster, lazier Slack
samanthasiow
85
9.5k
A Guide to Academic Writing Using Generative AI - A Workshop
ks91
PRO
1
310
Navigating the moral maze — ethical principles for Al-driven product design
skipperchong
2
370
Transcript
ࣗ࡞όΠφϦΤσΟλΛ ༻͍ͨόΠφϦղੳ ˏtkmru ͚ͨ·Δ 2016-03-04 Fri Security Camp Forum
୭ʁ • ໊લ: ͚ͨ·Δ (@tkmru) • ॴଐ: େֶ ใཧֶ෦ •
CTFνʔϜ: TomoriNao
༑རಸॹ(SECCON 2015 Intercollege)
None
ຊ༑རಸॹͰͳ͘ ʮࣗ࡞όΠφϦΤσΟλΛ ༻͍ͨόΠφϦղੳʯ
όΠφϦΤσΟλͱ • ͲΜͳϑΝΠϧͰ16ਐͰදࣔ͢Δ • ͍͋͠ϑΝΠϧΛ࠷ॳʹͿͪࠐΉιϑτ
BZ http://www.forest.impress.co.jp/library/img/review/10014/html/bz1.jpg.html
Stirling http://1.bp.blogspot.com/-O5txkaVlhRg/US3i8jFWvjI/AAAAAAAAdTA/uaDiY_RHDMc/s1600/02.png
grep • όΠφϦΤσΟλ্ͰΑ͘ߦΘΕΔղੳٕ๏ • ࢹͰॏཁͦ͏ͳσʔλΛݟ͚ͭΔߦҝ • Ή͔͍ͣ͠
ʮҰൠతʹgrepόΠφϦΤ σΟλʹࡌ͞Ε͍ͯΔϏοτϚο ϓϏϡʔΛۦ͠ɺ ͑ΒΕͨ ؟ྗɺݚ͗·͞Εͨੜͷצ ʹΑͬͯൃش͞ΕΔೳྗͰ͋Γɺ ࿅ͷ߹͍ʹΑͬͯେ͖͘ݸਓ ͕ࠩੜ͡ΔೳྗͰ͋Δɻʯ https://gist.github.com/yoggy/4116843
ϓϩʹ͔͠Ͱ͖ͳ͍
طଘͷόΠφϦΤσΟλͷෆຬ • mac͚ʹσϑΝΫτελϯμʔυͱ͍͑ Δͷ͕ͳ͍ • ϓϩͰͳ͍ਓ͕grep͢Δͱݟམͱ͕͠ൃ ੜ͢Δ → ΫϩεϓϥοτϑΥʔϜͰղੳΛࣗಈԽͯ͠ ͘ΕΔόΠφϦΤσΟλ͕΄͍͠
ͦ͜Ͱࣗ࡞όΠφϦΤσΟλ
biwx(ͼ͎ͬ͘͢)
ࡐྉ • Python • wxPython - C++ͷGUIϥΠϒϥϦ ʮwxWidgetsʯͷϥούʔ binary editor
+ wxPython = biwx
ಛ • ΫϩεϓϥοτϑΥʔϜ • Φʔϓϯιʔε • ϑΝΠϧͷγάωΠνϟΛ৭͚ • ৄࡉใΛදࣔ(γάωΠνϟͷॴɺPDFͷύʔε) •
ࣗಈղੳػೳ
ࣗಈղੳػೳ • Έࠐ·ΕͨϑΝΠϧͷΓग़͠ • όΠφϦͷ୯७ͳΓग़͠ • PDFͷࣗಈύʔε
σϞ1 SECCON CTF 2015 Steganography 1 MrFusion.gpjb
MrFusion.gpjb • Α͔͘Βͳ͍ϑΝΠϧ͕༩͑ΒΕΔ • ͳ͔ʹෳͷը૾ϑΝΠϧ͕Ӆ͞Ε͍ͯΔ • औΓग़ͯ͠ॱ൪ʹಡΊ͕͔͑Δ
flag SECCON{OCT 21 2015 0728}
σϞ2 malicious PDFͷղੳ
malicious PDFͷղੳ • PDFʹJavaScriptίʔυΛຒΊࠐΊΔ • Adobe ReaderͰ JavaScript ࣮ߦݖݶ͕༗ޮ ʹͳ͍ͬͯΕ࣮ߦ͞ΕΔ
ࠓޙͷల • ࣗಈղੳػೳͷ֦ॆ • γΣϧίʔυͷղੳ • ղੳऀ͕Ѫ༻͢Δπʔϧʹҭ͍͖͍ͯͯͨ
͝ਗ਼ௌ͋Γ͕ͱ͏͍͟͝·ͨ͠
SiteGround - Reliable hosting with speed, security, and support you can count on.
tkmru
izumin5210
nao_mk2
contour_gara
yosshi4486
akihisaikeda
javiergs
shomafujita
naofumi
yug1224
hayatoshimiu
takter00
ukin0k0
axbom
rmw
addyosmani
livdayseo
smashingmag
stuffmc
rabernat
panda_program
dougneiner
samanthasiow
ks91
skipperchong
