Lee-GyuHyeok

I study security and share my knowledge.

Recent posts

(bWAPP)XSS - Reflected (AJAX/JSON)

Level - Low ์ด์ „ ์‹ค์Šต๊ณผ ๋™์ผํ•˜๊ฒŒ JSON ํ˜•ํƒœ์˜ ๊ฒ€์ƒ‰ ์‚ฌ์ดํŠธ๊ฐ€ ์กด์žฌํ•œ๋‹ค. ํ•ด๋‹น ํ™˜๊ฒฝ์—์„œ๋Š” AJAX ๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ ์ƒˆ๋กœ๊ณ ์นจ ์—†์ด ์ž…๋ ฅ๊ฐ’์ด ์ฆ‰์‹œ ๋ฐ˜์˜๋˜๋Š” ๊ตฌ์กฐ์ด๋‹ค. ์ผ๋ฐ˜์ ์ธ ์Šคํฌ๋ฆฝํŠธ ํƒœ๊ทธ๋ฅผ ๊ฐ€์ง€๊ณ  XSS๋Š” ํ†ตํ•˜์ง€ ์•Š๋Š”๋‹ค. <scrip...

Log Injection

ํ•ด๋‹น ์ทจ์•ฝ์ ์€ ๋ฌด์—‡์ธ๊ฐ€? ์‚ฌ์šฉ์ž์˜ ์ž…๋ ฅ๊ฐ’์œผ ๋กœ๊ทธํŒŒ์ผ์— ๊ธฐ๋ก๋  ๋•Œ ๋ฐœ์ƒ ํ•  ์ˆ˜ ์žˆ๋Š” ์ทจ์•ฝ์ ์œผ๋กœ ๊ณต๊ฒฉ์ž๊ฐ€ ๋กœ๊ทธ ๊ธฐ๋ก์„ ์กฐ์ž‘ํ•˜์—ฌ ๋ฐ์ดํ„ฐ ํƒˆ์ทจ ๋ฐ ์„œ๋น„์Šค์ค‘๋‹จ๊นŒ์ง€๋„ ๋ฐœ์ƒํ•  ์ˆ˜ ์žˆ๋‹ค. ์ผ์–ด๋‚  ์ˆ˜ ์žˆ๋Š” ํ”ผํ•ด๋Š”? ๋กœ๊ทธ ํ•ญ๋ชฉ ์œ„์กฐ : ์ž„์˜๋กœ ์‚ฝ์ž…๋œ ์ž…๋ ฅ๊ฐ’์ด ๋กœ๊ทธํŒŒ์ผ์— ์‚ฝ์ž…๋˜์–ด, ...

Authorization Header Bypass

ํ•ด๋‹น ์ทจ์•ฝ์ ์€ ๋ฌด์—‡์ธ๊ฐ€? HTTP Authorization ์š”์ฒญ ํ—ค๋”๋Š” ํด๋ผ์ด์–ธํŠธ๊ฐ€ ์„œ๋ฒ„์˜ ์ž๊ฒฉ ์ฆ๋ช…์„ ์ œ๊ณตํ•˜๋Š”๋ฐ ์‚ฌ์šฉ๋œ๋‹ค. ์ฆ‰ ์›น ์–ดํ”Œ๋ฆฌ์ผ€์ด์…˜์—์„œ์˜ ๋ฆฌ๋กœ์Šค์— ๋Œ€ํ•œ ์ธ์ฆ์„ ํ•˜๋Š”๋ฐ ์ฃผ๋กœ ์‚ฌ์šฉ๋œ๋‹ค. ์„œ๋ฒ„์—์„œ 401 Unauthorized ์ƒํƒœ๋ฅผ WWW-Authenti...

(bWAPP)XSS - Reflected (AJAX/XML)

Level - Low ์˜ํ™” ๊ฒ€์ƒ‰๊ธฐ๋Šฅ์ด ์กด์žฌํ•œ๋‹ค. ์ด ๋–„ ๋ฐ์ดํ„ฐ์˜ ์š”์ฒญ๊ณผ ์‘๋‹ต์ด AJAX-XML ํ˜•์‹์œผ๋กœ ์ „๋‹ฌ๋˜๋Š” ๋“ฏ ํ•˜๋‹ค. HTTP/1.1 200 OK Date: Sun, 31 Mar 2024 12:58:47 GMT Server: Apache/2.2.8 (Ubunt...

(bWAPP)XSS - Reflected (POST)

First name๊ณผ Last name ํŒŒ๋ผ๋ฏธํ„ฐ๋กœ ๋„˜์–ด๊ฐ€๋Š” ์‚ฌ์šฉ์ž ์ž…๋ ฅ๊ฐ’์ด GET ํ˜•์‹์ด ์•„๋‹Œ POST ํ˜•์‹์œผ๋กœ ๋„˜์–ด๊ฐ„๋‹ค. firstname=test&lastname=test&form=submit burp suite๋ฅผ ํ†ตํ•ด ์š”์ฒญ ํŒจํ‚ท์„ ํ™•์ธํ•ด๋ณด...