์ƒˆ์†Œ์‹

์ธ๊ธฐ ๊ฒ€์ƒ‰์–ด

๐Ÿ“  Secure

ํฌํŠธํด๋ฆฌ์˜ค

  • -
๋ฐ˜์‘ํ˜•

์‹œ๋‚˜๋ฆฌ์˜ค ๊ธฐ๋ฐ˜ ์นจํˆฌ ํ…Œ์ŠคํŠธ

 

์›น ์„œ๋ฒ„ ๊ตฌ์„ฑ

- ๋„คํŠธ์›Œํฌ ํ† ํด๋กœ์ง€

- ์„œ๋ฒ„ ๊ตฌ์„ฑ๋„

- ํƒ€๊ฒŸ ์ •๋ณด

- ๋ณด์•ˆ ์ •์ฑ…

 

์›นํ•ดํ‚น / ๋ฆฌ๋ฒ„์‹ฑ

 

SQL Injection

- SQL Injection ๊ณต๊ฒฉ ์ •์˜

- SQL Injection ๊ณต๊ฒฉ ๋ชฉ์ 

- SQL Injection ๋ฐœ์ƒ ์›์ธ

---------------------------------------โ–ณ 3~4ํŽ˜์ด์ง€

- SQL Injection ๊ณต๊ฒฉ ๊ณผ์ • ๋ฐ ์ข…๋ฅ˜

<< ์ž˜ ๋งŒ๋“ค์–ด์•ผ ํ•˜๋Š” ๋ถ€๋ถ„ >>

- ํƒ€๊ฒŸ์œผ๋กœ ํ•œ ํŽ˜์ด์ง€ ๊ณต๊ฒฉ

content blind , response blind

- ๋Œ€์‘ ๋ฐฉ์•ˆ ( ์ž˜๋ชป๋œ ๋Œ€์‘ ๋ฐฉ์•ˆ - ๋ฉด์ ‘ ๋ณผ ๋•Œ ๋”ฐ๋กœ ์ด์•ผ๊ธฐํ•ด๋„ ๋จ )

 

XSS

- XSS ๊ณต๊ฒฉ ์ •์˜

- XSS ๊ณต๊ฒฉ ๋ชฉ์ 

- XSS ๋ฐœ์ƒ ์›์ธ

- XSS ๊ณต๊ฒฉ ๊ณผ์ • ๋ฐ ์ข…๋ฅ˜

<< ์ž˜ ๋งŒ๋“ค์–ด์•ผ ํ•˜๋Š” ๋ถ€๋ถ„ >>

- ํƒ€๊ฒŸ์œผ๋กœ ํ•œ ํŽ˜์ด์ง€ ๊ณต๊ฒฉ

- ๋Œ€์‘ ๋ฐฉ์•ˆ ( ์ž˜๋ชป๋œ ๋Œ€์‘ ๋ฐฉ์•ˆ - ๋ฉด์ ‘ ๋ณผ ๋•Œ ๋”ฐ๋กœ ์ด์•ผ๊ธฐํ•ด๋„ ๋จ )

 

File Upload /Download Vuln

 

---

 

Window PE ๋ถ„์„

DLL Injection

Code Injection

 

MSDN์„ ์ฐธ๊ณ  

protostar

nebula

 

 

----------------------

 

์ตœ์ข… index ๊ตฌ์„ฑ

1. ์‹œ๋‚˜๋ฆฌ์˜ค ๊ธฐ๋ฐ˜ ๋ชจ์˜ ์นจํˆฌ ๋ณด๊ณ ์„œ **

2. ๋ถ€๋ก

์นจํˆฌ ๊ธฐ๋ฐ˜ ํ™˜๊ฒฝ

3. ๊ธฐ์ˆ  ๋ณด๊ณ ์„œ

๋ฐ˜์‘ํ˜•
Contents

ํฌ์ŠคํŒ… ์ฃผ์†Œ๋ฅผ ๋ณต์‚ฌํ–ˆ์Šต๋‹ˆ๋‹ค

์ด ๊ธ€์ด ๋„์›€์ด ๋˜์—ˆ๋‹ค๋ฉด ๊ณต๊ฐ ๋ถ€ํƒ๋“œ๋ฆฝ๋‹ˆ๋‹ค.