๋ณธ๋ฌธ ๋ฐ”๋กœ๊ฐ€๊ธฐ
  • Tried. Failed. Logged.
728x90

์ „์ฒด ๊ธ€720

Hack The Box - Busqueda Writeup SynopsisBusqueda is an Easy Difficulty Linux machineinvolves exploiting a command injection vulnerability present in a python module.By leveraging this vulnerability(์ด ์ทจ์•ฝ์ ์„ ์ด์šฉํ•˜์—ฌ), we gain user-level access to the machine.To escalate privileges to root, we discover credentials within a Git config file, allowing us to log into a local Gitea service.Additionally(์ถ”๊ฐ€์ ์œผ๋กœ), we uncover that a system che.. 2025. 4. 16.
๋””์ง€ํ„ธ ํฌ๋ Œ์‹ - ์œˆ๋„์šฐ ๋ฉ”๋ชจ์žฅ ์ž„์‹œ ํŒŒ์ผ ๊ด€๋ จ ์˜์ƒ ์Šคํฌ๋žฉ https://vt.tiktok.com/ZSr9sLSqm/ TikTok · TCMSecurity ๋‹˜์ข‹์•„์š” 2593๊ฐœ, ๋Œ“๊ธ€ 99๊ฐœ๊ฐ€ ์žˆ์Šต๋‹ˆ๋‹ค. "Is Notepad really safe for sensitive information? Think again! Even if you don’t save it, Notepad can still reveal more than you’d expect. Watch Andrew Prince demonstrate how this simple tool can becomewww.tiktok.com 2025. 4. 13.
ํŒŒ์ด์ฌ - ๐Ÿš€ requests ์†๋„ ์˜ฌ๋ฆฌ๋Š” ๋ฐฉ๋ฒ• (Session) ์„ธ์…˜(Session) ์‚ฌ์šฉํ•˜๊ธฐ๋งค ์š”์ฒญ๋งˆ๋‹ค ์ƒˆ ์—ฐ๊ฒฐ์„ ๋งŒ๋“ค๋ฉด ๋Š๋ฆฝ๋‹ˆ๋‹ค. requests.Session()์„ ์“ฐ๋ฉด ์ปค๋„ฅ์…˜ ํ’€๋ง์œผ๋กœ ํ›จ์”ฌ ๋นจ๋ผ์ง‘๋‹ˆ๋‹ค.import requestssession = requests.Session()for url in urls: r = session.get(url) ์„ฑ๋Šฅ ์ฐจ์ด ๊ฝค ๋‚˜์š”. ๊ผญ ์„ธ์…˜ ์“ฐ๊ธฐ! ์ขŒ: requests๋งŒ ์“ฐ๊ธฐ / ์šฐ: session ์“ฐ๊ธฐ 2025. 4. 10.
์•”ํ˜ธ - SSL/TLS hand shake ์ž‘๋™ ์›๋ฆฌ ํŒŒ์ด์ฌ ๊ตฌํ˜„ ์•ˆ์ „ํ•œ ์„ธ์…˜์ด ์ด๋ฃจ์–ด์ง€๊ธฐ ์œ„ํ•ด์„œ ๋น„๋Œ€์นญ ํ‚ค๋ฅผ ์ด์šฉํ•œ ํ‚ค ๊ตํ™˜์„ ์ด๋ฃจ์–ด์ง€๋Š” ๊ณผ์ •์ธ SSL hand shake๋ฅผ ํŒŒ์ด์ฌ์œผ๋กœ ๊ฐ„๋‹จํžˆ ๊ตฌํ˜„ํ•ด ๋ณด์•˜๋‹ค. ์œ ํšจํ•œ ID์ธ์ง€ ํ™•์ธ, RSA ํ‚ค๊ตํ™˜, ์„ธ์…˜ ํ‚ค(AES) ๊ตํ™˜์ด ์กด์žฌ๋กœ ํ•œ๋‹ค. simple-ssl.py# simple-ssl.py# ๊ฐ„๋‹จํ•œ SSL ํ”„๋กœํ† ์ฝœ ๊ตฌํ˜„import rsa, randomfrom Crypto.Cipher import AESfrom Crypto.Random import get_random_bytesclass Client: def __init__(self): self.CertList = [] # ํด๋ผ์ด์–ธํŠธ๊ฐ€ ๊ฐ€์ง€๊ณ  ์žˆ๋Š” ์ธ์ฆ์„œ ๋ฆฌ์ŠคํŠธ(์‹ ๋ขฐํ•  ์ˆ˜ ์žˆ๋Š” CA์˜ ์ธ์ฆ์„œ) self.CertList.append("www.va.. 2025. 4. 10.
ํŒŒ์ด์ฌ - ์ธํ„ฐํ”„๋ฆฌํ„ฐ์—์„œ ์ปดํŒŒ์ผ๋กœ ์†๋„ ์„ฑ๋Šฅ ํ–ฅ์ƒ(Nuitka) ์„ค๋ช…: Nuitka๋Š” Python ์ฝ”๋“œ๋ฅผ C/C++ ์ฝ”๋“œ๋กœ ๋ณ€ํ™˜ํ•ด ์‹คํ–‰ ๊ฐ€๋Šฅํ•œ ๋ฐ”์ด๋„ˆ๋ฆฌ ํŒŒ์ผ์„ ์ƒ์„ฑํ•˜๋Š” Python ์ปดํŒŒ์ผ๋Ÿฌ์ž…๋‹ˆ๋‹ค. Python ์ธํ„ฐํ”„๋ฆฌํ„ฐ ๋ฐฉ์‹์˜ ํ•œ๊ณ„๋ฅผ ๋ณด์™„ํ•˜๊ณ , ์‹คํ–‰ ์†๋„๋ฅผ ํ–ฅ์ƒ์‹œํ‚ค๋ฉฐ, ์ฝ”๋“œ๋ฅผ ์ตœ์ ํ™”ํ•˜๋Š” ๋ฐ ๋„์›€์„ ์ค๋‹ˆ๋‹ค. ๋˜ํ•œ, Python ์ฝ”๋“œ๋ฅผ ๋ฐฐํฌ ๊ฐ€๋Šฅํ•œ ํ˜•ํƒœ๋กœ ํŒจํ‚ค์ง•ํ•  ์ˆ˜ ์žˆ์–ด ์†Œ์Šค ์ฝ”๋“œ ๋ณดํ˜ธ ๋ฐ ์˜์กด์„ฑ ๊ด€๋ฆฌ๋ฅผ ๊ฐ„ํŽธํ•˜๊ฒŒ ํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.  ํŒŒ์ด์ฌ์€ ์ธํ„ฐํ”„๋ฆฌํ„ฐ๋กœ ์ฒ˜๋ฆฌ๋ฅผ ํ•˜๋‹ค ๋ณด๋‹ˆ ๋‹ค๋ฅธ ๋ฐ”์ด๋„ˆ๋ฆฌ ํŒŒ์ผ๋“ค์— ๋น„ํ•ด ์†๋„๋ฉด์—์„œ๋Š” ๋ถ€์กฑํ•  ์ˆ˜ ์žˆ๋‹ค. ์†๋„๊ฐ€ ๋ถ€์กฑํ•˜๋ฉด ์ฒ˜๋ฆฌ๋Ÿ‰๋„ ๋’ค๋–จ์–ด์ง€๊ณ  ๊ฒฐ๊ตญ ์„ฑ๋Šฅ์ด ๋’ค์ณ์ง€๊ฒŒ ๋œ๋‹ค. ์ด๋ฅผ ํ•ด๊ฒฐํ•˜๊ธฐ ์œ„ํ•ด Nuitka๋ฅผ ์‚ฌ์šฉํ•ด ํŒŒ์ด์ฌ ํŒŒ์ผ์„ ์ปดํŒŒ์ผํ•˜์—ฌ ์‹คํ–‰ ์†๋„๋ฅผ ํ–ฅ์ƒ ์‹œํ‚ฌ ์ˆ˜ ์žˆ๋‹ค. ๋Œ€์‹  ์ปดํŒŒ์ผ ํ•˜๋Š”๋ฐ ์ปดํ“จํ„ฐ ์„ฑ๋Šฅ์— ๋”ฐ๋ผ์„œ ์‹œ๊ฐ„์ด ์˜ค๋ž˜ ์†Œ์š”ํ•  ์ˆ˜ ์žˆ๋‹ค.  ๋˜ํ•œ .. 2025. 4. 10.
์•„๋งˆ์ถ”์–ด ๋ผ๋””์˜ค - ์šฉ์–ด ์ •๋ฆฌ [์šฉ์–ด ์ •๋ฆฌ] AZ(Azimuth, ๋ฐฉ์œ„๊ฐ): ๋ถ์ชฝ(0°)๋ถ€ํ„ฐ ์‹œ๊ณ„๋ฐฉํ–ฅ์œผ๋กœ ์ธก์ •ํ•œ ์ˆ˜ํ‰๊ฐ (0-360°) EL(Elevation, ๊ณ ๋„๊ฐ): ์ง€ํ‰์„ (0°)๋ถ€ํ„ฐ ํ•˜๋Š˜์„ ํ–ฅํ•ด ์ธก์ •ํ•œ ์ˆ˜์ง๊ฐ (0-90°) *EL์ด 90°์— ๊ฐ€๊นŒ์šธ ์ˆ˜๋ก ๊ด€์ฐฐ ๋ฐ ํ†ต์‹  ํ•˜๊ธฐ ์ข‹์€ ์กฐ๊ฑด(๋‹จ ์‚ฐ๊ณผ ๊ฑด๋ฌผ ๊ฐ™์€ ์ง€ํ˜•๋ฌผ์— ๋ฐฉํ•ด๋˜์ง€ ์•Š๋Š” ๋‹ค๋Š” ์ „์ œ) *Range(ํ˜น์€ Distance)๊ฐ€ ์ ์€ ๊ฒƒ๋„ ๋งˆ์ฐฌ๊ฐ€์ง€๋กœ ์ข‹์€ ์กฐ๊ฑด AOS(Acquisition Of Signal): ์‹ ํ˜ธ ์‹œ์ž‘์  LOS(Loss Of Signal): ์‹ ํ˜ธ ์ƒ์‹ค์  ์ด๋ฏธ์ง€(SSTV)๋ฅผ ๋‹ค ์ˆ˜์‹  ๋ฐ›๊ธฐ ์œ„ํ•ด์„œ๋Š” Duration๋„ ์ค‘์š”ํ•œ ๊ฒƒ ๊ฐ™๋‹ค 2025. 4. 10.
์•„๋งˆ์ถ”์–ด ๋ผ๋””์˜ค - ISS SSTV ์ˆ˜์‹  ์„ฑ๊ณต(2024-11-16) GQRX ์„ค์ • ๊ฐ’ ๊ด€๋ จ [ISS]Freq: 145.800Filter width: User (20.2K)Filter shape: NormalMode: Narrow FMAGC: MediumSquelch: -105.0 dB(Gain์€ ์‚ฌ์‹ค์ƒ ๋ณผ๋ฅจ ์—ญํ• ์ด๋ฉฐ ๋…น์Œ์—๋Š” ํฐ ์˜ํ–ฅ์„ ์ฃผ์ง€ ์•Š์Œ) 2025. 4. 10.
ํ•˜๋“œ์›จ์–ด - USB HID ํ‚ค ํ…Œ์ด๋ธ”(HID Usage Tables) https://usb.org/sites/default/files/hut1_6.pdf https://github.com/tmk/tmk_keyboard/wiki/USB:-HID-Usage-Table USB: HID Usage TableKeyboard firmwares for Atmel AVR and Cortex-M. Contribute to tmk/tmk_keyboard development by creating an account on GitHub.github.com 2025. 3. 27.
Oracle Cloud - SSH ์ ‘์† ๋ฌธ์ œ ํ•ด๊ฒฐ ๋ฐฉ๋ฒ• https://youtu.be/FIFXj4-dMG0?si=o82LiOGn66XknbzU  https://the-team-oasis.github.io/infrastructure/oci-recover-sshkey/ OCI Compute Instance SSH Key ๋ณต๊ตฌ ๋ฐฉ๋ฒ•OCI Compute Instance์—์„œ SSHํ‚ค ๋ถ„์‹ค๋“ฑ์˜ ์ด์Šˆ๋กœ ์ ‘์†์ด ๋ถˆ๊ฐ€๋Šฅํ•œ ์ƒํƒœ์—์„œ ์ถ”๊ฐ€๋กœ ๊ณต๊ฐœํ‚ค๋ฅผ ๋“ฑ๋กํ•˜๋Š” ๋ฐฉ๋ฒ•์— ๋Œ€ํ•ด์„œ ์„ค๋ช…ํ•ฉ๋‹ˆ๋‹ค.the-team-oasis.github.io 2025. 3. 26.
์…€๋ ˆ๋‹ˆ์›€ - ํฌ๋กฌ๋“œ๋ผ์ด๋ฒ„ ์ž๋™ ์„ค์น˜ ๋ชจ๋“ˆ(webdriver-manager) ๋ชจ๋“ˆ ์„ค์น˜ pip install webdriver-manager  ์‚ฌ์šฉ ์˜ˆ์‹œ # selenium 3from selenium import webdriverfrom webdriver_manager.chrome import ChromeDriverManagerdriver = webdriver.Chrome(ChromeDriverManager().install()) # selenium 4from selenium import webdriverfrom selenium.webdriver.chrome.service import Service as ChromeServicefrom webdriver_manager.chrome import ChromeDriverManagerdriver = webdriver.Chrome(serv.. 2025. 3. 19.
์œˆ๋„์šฐ - ASUS Zenbook 14 ์œˆ๋„์šฐ ์„ค์น˜ ๋‹จ๊ณ„ ์˜ค๋ฅ˜ ํ•ด๊ฒฐ ์„ค์น˜ ํ”„๋กœ๊ทธ๋žจ์—์„œ usb ๋˜๋Š” ieee 1394 ํฌํŠธ๋ฅผ ํ†ตํ•ด ์—ฐ๊ฒฐ๋œ ๋””์Šคํฌ์˜ ๊ตฌ์„ฑ์ด๋‚˜ ์„ค์น˜๋ฅผ ์ง€์›ํ•˜์ง€ ์•Š์Šต๋‹ˆ๋‹ค. ๊ด€๋ จ ์—๋Ÿฌ ๋ฐœ์ƒํ•  ๊ฒฝ์šฐ UEFI์—์„œ ๊ณ ๊ธ‰ ์„ค์ • > VMD ๋น„ํ™œ์„ฑํ™” ์ถœ์ฒ˜: https://www.youtube.com/watch?v=mf2hXsJ7J7o 2025. 2. 26.
VR&MR - ๋ฉ”ํƒ€ ํ€˜์ŠคํŠธ 2, 3, 3S ๋น„ํŠธ ์„ธ์ด๋ฒ„ ์ปค์Šคํ…€ ๋…ธ๋ž˜ ์ ์šฉ ์ฐธ๊ณ  ์˜์ƒ https://www.youtube.com/watch?v=z0jIQyNaJ4o  ๊ฐœ๋ฐœ์ž ๋ชจ๋“œ ํ™œ์„ฑํ™” https://developer.oculus.com/manage/ Authenticate | Build with Meta Horizon OS developers.meta.com ๋น„ํŠธ ์„ธ์ด๋ฒ„ ๋‹ค์šด๊ทธ๋ ˆ์ด๋“œ & ๋ชจ๋“œ ์„ค์น˜๊ธฐ(webUSB) https://mbf.bsquest.xyz/ ModsBeforeFriday!A quick and easy tool for setting up Beat Saber mods on Meta Quest headsets.mbf.bsquest.xyz 2025. 2. 9.
728x90

ํ‹ฐ์Šคํ† ๋ฆฌํˆด๋ฐ”