๋ณธ๋ฌธ ๋ฐ”๋กœ๊ฐ€๊ธฐ
  • Tried. Failed. Logged.
728x90

๐Ÿ”’์ •๋ณด๋ณด์•ˆ/์ทจ์•ฝ์  ๋ถ„์„7

์ทจ์•ฝ์  ๋ถ„์„ - Blind SSRF with out-of-band detection(Burp Collaborator) Burp์˜ Collaborator์„ ์ด์šฉํ•˜์—ฌ, ํƒ€๊ฒŸ ์„œ๋ฒ„์˜ SSRF์— ์ทจ์•ฝํ•œ์ง€ ์•Œ์•„๋‚ผ ์ˆ˜ ์žˆ์Œ ์‚ฌ์šฉ ์˜ˆ์‹œ)target.com์— request์‹œ Refer, hosts, URL์„ ์ž…๋ ฅ ๋ฐ›๋Š” parameter ๋“ฑ์—๋‹ค Collaborator์—์„œ ๋ณต์‚ฌํ•œ URL({random_strings}.oastify.com)์„ ๋„ฃ๊ณ  ์š”์ฒญ, ์ด ๋•Œ Collaborator ํƒญ์— ๋ฐ˜์‘์ด ์˜ฌ ๊ฒฝ์šฐ ํ•ด๋‹น ์›น ์„œ๋ฒ„์— SSRF ์ทจ์•ฝ์ ์ด ์žˆ์Œ์„ ์ธ์ง€ (ํƒ€๊ฒŸ ์„œ๋ฒ„๊ฐ€ ์ž„์˜์˜ URL์—๋‹ค ์š”์ฒญ์„ ํ•˜๊ธฐ ๋•Œ๋ฌธ์—, ๋งŒ์•ฝ http://localhost/admin?changePassword=1234 ๊ฐ™์€ ์š”์ฒญ์ด ๊ฐ€๋Šฅ์ผ€ํ•ด ์ •์ƒ์ ์ธ ๋™์ž‘์ด ์ˆ˜ํ–‰๋œ๋‹ค๋ฉด ์ด๋Š” SSRF์— ์ทจ์•ฝ)  https://www.youtube.com/watch?v=-iNidz-O2FY  h.. 2025. 1. 10.
์ทจ์•ฝ์  ๋ถ„์„ - SSL(TLS) ์ธ์ฆ์„œ ๋ถ„์„ ๋„๊ตฌ(ssllabs, sslyze, sslscan) SSL ์ „๋ฒ„์ „ = ์ทจ์•ฝTLS 1.3   SSL Server Test https://www.ssllabs.com/ssltest/ SSL Server Test (Powered by Qualys SSL Labs)SSL Server Test This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet. Please note that the information you submit here is used only to provide you the service. We don't use the domain names orwww.ssllabs.com  Rank Chart .. 2024. 11. 26.
์ทจ์•ฝ์  ๋ถ„์„ - ํ”„๋กœ์„ธ์Šค ์‹œ์ž‘์‹œ ์ž๋™ ๋””๋ฒ„๊น… https://2ry53.tistory.com/entry/%ED%94%84%EB%A1%9C%EC%84%B8%EC%8A%A4-%EC%8B%9C%EC%9E%91%EC%8B%9C-%EC%9E%90%EB%8F%99-%EB%94%94%EB%B2%84%EA%B9%85 - ํ”„๋กœ์„ธ์Šค ์‹œ์ž‘์‹œ ์ž๋™ ๋””๋ฒ„๊น… -ํ”„๋กœ์„ธ์Šค ์‹œ์ž‘๊ณผ ๋™์‹œ์— ๋””๋ฒ„๊น…์„ ํ•ด๋ณด์ž!! msdn์— ๊ฐ€๋ณด๋ฉด ์ด๋Ÿฐ๊ธ€์ด ์žˆ์—ˆ๋‹ค. You can set up your application to start Visual Studio when you launch the application from Windows. Visual Studio will load your application, ready for deb2ry53.tistory.com 2024. 9. 10.
์ทจ์•ฝ์  ๋ถ„์„ - Living Off the Land (LOTL) Living Off the Land (LOTL) Living-off-the-land(๋ฆฌ๋น™ ์˜คํ”„ ๋” ๋žœ๋“œ) ๊ธฐ๋ฒ•์€, ํ•ด์ปค์™€ ๊ฐ™์€ ๊ณต๊ฒฉ์ž๋“ค์ด, ์‹œ์Šคํ…œ์— ์ด๋ฏธ ์„ค์น˜๋˜์–ด ์žˆ๋Š” Tool์„ ์‚ฌ์šฉํ•ด์„œ ํ•ดํ‚น ๊ณต๊ฒฉ์„ ํ•˜๋Š” ๊ธฐ๋ฒ•์„ ์˜๋ฏธ ํ•ฉ๋‹ˆ๋‹ค. ์ฆ‰ ํ”ผํ•ด์ž ์‹œ์Šคํ…œ์— ๊ธฐ๋ณธ์œผ๋กœ ์„ค์น˜๋˜์–ด ์žˆ๋Š” ํ”„๋กœ๊ทธ๋žจ์„ ํ™œ์šฉํ•˜์—ฌ ํ•ดํ‚น์„ ์ˆ˜ํ–‰ํ•˜๊ธฐ ๋•Œ๋ฌธ์—, AV(์•ˆํ‹ฐ๋ฐ”์ด๋Ÿฌ์Šค) Software ์˜ ํƒ์ง€๋ฅผ ํ”ผํ•  ์ˆ˜ ์žˆ๋‹ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค.    LoL Tool  Living-off-the-land(LoL) ๊ธฐ๋ฒ•์—์„œ ์‚ฌ์šฉํ•˜๋Š” Tool์„ LoL Tool ์ด๋ผ๊ณ  ํ•ฉ๋‹ˆ๋‹ค. ๊ณต๊ฒฉ์ž์˜ ์ตœ์ข… Payload(์•…์„ฑ์ฝ”๋“œ)๋ฅผ ์นจํˆฌ์‹œํ‚ค๊ธฐ ์œ„ํ•œ ์นจํˆฌ ๋„๊ตฌ๋กœ LoL(Living-off-the-land) Tool์„ ์‚ฌ์šฉํ•œ๋‹ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค.  ์ฆ‰ LoL Tool์€ ํ”ผํ•ด์ž์˜ ์‹œ์Šคํ…œ์— ์„ค์น˜๋˜์–ด ์•….. 2024. 4. 24.
์ทจ์•ฝ์  ๋ถ„์„ - ์œˆ๋„์šฐ ์›Œ๋“œํ”„๋ ˆ์Šค ๊ณต๊ฒฉ ํ™˜๊ฒฝ ๊ตฌ์ถ• 1. XAMPP(Apache, MariaDB, PHP ๋“ฑ) ์„ค์น˜ https://www.apachefriends.org/download.html Download XAMPPIncludes: Apache 2.4.56, MariaDB 10.4.28, PHP 8.0.28 & PEAR + SQLite 2.8.17/3.38.5 + multibyte (mbstring) support, Perl 5.34.1, ProFTPD 1.3.6, phpMyAdmin 5.2.1, OpenSSL 1.1.1t, GD 2.2.5, Freetype2 2.4.8, libpng 1.6.37, gdbm 1.8.3, zlib 1.2.11, expat 2.0.1,www.apachefriends.org 2. WordPress Release ๋‹ค์šด๋กœ๋“œ .. 2024. 3. 24.
์ทจ์•ฝ์  ๋ถ„์„ - Office 365(์•„์›ƒ๋ฃฉ) ๋ฒ„์ „ ๋‹ค์šด๊ทธ๋ ˆ์ด๋“œ 1. ๋ฆด๋ฆฌ์Šค ๋ชฉ๋ก ํ™•์ธ https://learn.microsoft.com/ko-kr/officeupdates/update-history-microsoft365-apps-by-date?redirectSourcePath=%252fen-us%252farticle%252fae942449-1fca-4484-898b-a933ea23def7 Microsoft 365 ์•ฑ์˜ ์—…๋ฐ์ดํŠธ ๊ธฐ๋ก(๋‚ ์งœ์ˆœ) - Office release notes IT ์ „๋ฌธ๊ฐ€์—๊ฒŒ ๋ฆด๋ฆฌ์Šค ์ •๋ณด์— ๋Œ€ํ•œ ๋งํฌ์™€ ํ•จ๊ป˜ ๋‚ ์งœ๋ณ„๋กœ ๊ตฌ์„ฑ๋œ Microsoft 365 ์•ฑ ๋ฆด๋ฆฌ์Šค์˜ ์ „์ฒด ๋ชฉ๋ก์„ ์ œ๊ณตํ•ฉ๋‹ˆ๋‹ค. learn.microsoft.com ๋‹ค์šด๊ทธ๋ ˆ์ด๋“œ ์›ํ•˜๋Š” ๋ฒ„์ „์˜ ๋นŒ๋“œ ๋ฒ„์ „ ํ™•์ธ ex) 17328.20184 2. cmd.exe(๊ด€๋ฆฌ์ž ๊ถŒํ•œ) ๋ช…๋ น์–ด ์‹คํ–‰ cd .. 2024. 3. 16.
์ทจ์•ฝ์  ๋ถ„์„ - CVE-2014-6287, HFS(HTTP File Server) RCE ์ทจ์•ฝ์  ์ทจ์•ฝ์  ์„ค๋ช… parserLib.pas ๋ผ์ด๋ธŒ๋Ÿฌ๋ฆฌ ํŒŒ์ผ์— ๋‚ด์žฌ๋˜์–ด ์žˆ๋Š” findMacroMarker ํ•จ์ˆ˜๊ฐ€ %00(NULL) ๊ฐ’ ์ดํ›„์— ์˜ค๋Š” ๊ฐ’์„ ์ฝ์–ด๋‚ด์ง€ ๋ชปํ•˜์—ฌ ํŒŒ์ผ ์‹คํ–‰, ์ €์žฅ๊ณผ ๊ฐ™์€ ๋งคํฌ๋กœ ๋ช…๋ น์–ด๋ฅผ ๊ฑธ๋Ÿฌ๋‚ด์ง€ ๋ชปํ•˜์—ฌ ๊ณต๊ฒฉ์ž๊ฐ€ ์›ํ•˜๋Š” ํ–‰์œ„๊ฐ€ ๊ฐ€๋Šฅํ•œ ์ทจ์•ฝ์ ์ž…๋‹ˆ๋‹ค. hfs2.3~hfs2.3c์— ํ•ด๋‹น CVE ์ทจ์•ฝ์ ์ด ์žˆ์Šต๋‹ˆ๋‹ค. *HFS(HTTP File Server) : HTTP ๊ธฐ๋ฐ˜ ํŒŒ์ผ ๊ณต์œ  ์„œ๋ฒ„ *์Šคํฌ๋ฆฝํŒ…(๋งคํฌ๋กœ) ๋ช…๋ น์–ด ๋ชจ์Œ : https://www.rejetto.com/wiki/index.php/HFS:_scripting_commands ์ฝ”๋“œ ๋ถ„์„ // parserLib.pas function findMacroMarker(s:string; ofs:integer=1):integer; begin resu.. 2024. 1. 25.
728x90

ํ‹ฐ์Šคํ† ๋ฆฌํˆด๋ฐ”