{"id":373,"date":"2019-07-26T15:34:01","date_gmt":"2019-07-26T06:34:01","guid":{"rendered":"https:\/\/blog.rubiya.kr\/?p=373"},"modified":"2019-07-26T15:34:01","modified_gmt":"2019-07-26T06:34:01","slug":"webhacking-techtree","status":"publish","type":"post","link":"https:\/\/blog.rubiya.kr\/index.php\/2019\/07\/26\/webhacking-techtree\/","title":{"rendered":"Webhacking Techtree"},"content":{"rendered":"\n<p>2019\ub144 \uc911\uc21c \uae30\uc900\uc73c\ub85c \ud574\ud0b9\uc758 \ubd84\uc57c \uc911\uc5d0\uc11c \uc218 \ub144 \uc9f8 \ud3ec\ub108\ube14\uc758 \uac15\uc138\uac00 \uacc4\uc18d\ub418\uace0 \uc788\uc2b5\ub2c8\ub2e4.<br>\uadf8\ub7ec\ub098 \uc2e4\ubb34\uc5d0\uc11c\ub294 \uc6f9\ud574\ud0b9\uc758 \ube44\uc911\uc774 \uc544\uc9c1\ub3c4 \uc555\ub3c4\uc801\uc73c\ub85c \ub192\uc2b5\ub2c8\ub2e4.<br>\ubaa8\uc758\ud574\ud0b9 \uc5c5\ubb34\ub97c \ub098\uac00\uba74 90%\ub294 \uc6f9\uc774\uace0 \ub098\uba38\uc9c0 10%\ub294 \ubaa8\ubc14\uc77c\uc774\ub354\ub77c \ub77c\ub294 \ub9d0\ub3c4 \uc788\uc8e0.<br>\uc815\ub9bd\ub41c \uc6f9\ud574\ud0b9 \uacf5\ubd80 \uc21c\uc11c\uac00 \ud544\uc694\ud558\ub2e4\uace0 \uc0dd\uac01\ud574 \uae00\uc744 \uc791\uc131\ud569\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uba3c\uc800 \ubaa8\ub4e0 \ud574\ud0b9\uc5d0 \ud574\ub2f9\ub418\ub294 \ub9d0\uc774\uc9c0\ub9cc, \ud574\ud0b9\uc740 \ud504\ub85c\uadf8\ub798\uba38\uc758 \uc2e4\uc218\ub97c \uc7a1\uc544\ub0b4\ub294 \ud559\ubb38\uc774\uae30\uc5d0 \ud504\ub85c\uadf8\ub798\ubc0d \ub2a5\ub825\uc774 \uc120\uacb0\ub418\uc5b4\uc57c \ud569\ub2c8\ub2e4.<br>\ub530\ub77c\uc11c \uc5ec\ub7ec\ubd84\uc774 \uccab \ubc88\uc9f8\ub85c \ud574\uc57c \ud560 \uc77c\uc740 \ud504\ub85c\uadf8\ub798\ubc0d \ub2a5\ub825\uc744 \uae30\ub974\uae30 \uc704\ud574 \uac8c\uc2dc\ud310\uc744 \ub9cc\ub4e4\uc5b4\ubcf4\ub294 \uac83 \uc785\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uac8c\uc2dc\ud310\uc5d0 \ubc18\ub4dc\uc2dc \uad6c\ud604\ub418\uc5b4\uc57c \ud558\ub294 \uae30\ub2a5\uc740 \ud68c\uc6d0\uac00\uc785, \ub85c\uadf8\uc778, \ub85c\uadf8\uc544\uc6c3, \uae00 \uc870\ud68c, \uae00 \uc4f0\uae30, \uae00 \uc218\uc815, \uae00 \uc0ad\uc81c, \ud398\uc774\uc9c0, \ud30c\uc77c \uc5c5\ub85c\ub4dc, \ud30c\uc77c \ub2e4\uc6b4\ub85c\ub4dc \uc785\ub2c8\ub2e4. \ud398\uc774\uc9c0\ub294 \uae00\uc758 \uac2f\uc218\uac00 \ub9ce\uc544\uc84c\uc744 \ub54c \ub2e4\uc74c \ud398\uc774\uc9c0\ub85c \ub118\uae30\ub294 \uae30\ub2a5\uc744 \uc758\ubbf8\ud569\ub2c8\ub2e4.<br>\uc120\ud0dd\uc801\uc73c\ub85c \ucd94\uac00\ud560 \uc218 \uc788\ub294 \uae30\ub2a5\uc740 \ud604\uc7ac \uc811\uc18d\uc790, \ub367\uae00 \uc4f0\uae30, \ub367\uae00 \uc0ad\uc81c, \ucc44\ud305, \uc870\ud68c\uc218 \uc785\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uac8c\uc2dc\ud310\uc744 \uad6c\ud604\ud558\ub294 \ud504\ub85c\uadf8\ub798\ubc0d \uc5b8\uc5b4\ub294 PHP+MySQL \uc870\ud569\uc774 \uad8c\uc7a5\ub429\ub2c8\ub2e4.<br>PHP\ub294 \ubb34\uc218\ud788 \ub9ce\uc740 \uc7a0\uc7ac\uc801 \ubcf4\uc548 \ucde8\uc57d\uc810\uc744 \uac00\uc9c0\uace0 \uc788\ub294 \ud504\ub85c\uadf8\ub798\ubc0d \uc5b8\uc5b4\uc785\ub2c8\ub2e4.<br>\uac1c\ubc1c\uc790 \uc785\uc7a5\uc5d0\uc11c\ub294 \uc774\ub9cc\ud55c \uc4f0\ub808\uae30 \uc5b8\uc5b4\ub3c4 \uc5c6\uc9c0\ub9cc, \ubc18\ub300\ub85c \ud574\ud0b9 \uacf5\ubd80\ub97c \ud558\ub294\ub370\uc5d0\ub294 \uc774\ub9cc\ud55c \uacf5\ubd80\uac70\ub9ac\ub3c4 \uc5c6\uc8e0.<br>\ucc45\uc744 \ucd94\ucc9c\ud574\ub2ec\ub77c\uace0 \ud558\uc2e0\ub2e4\uba74&#8230;<br> HTML\uc744 \uc544\uc2e4\uacbd\uc6b0 <a href=\"https:\/\/www.aladin.co.kr\/shop\/wproduct.aspx?ItemId=177466119\">https:\/\/www.aladin.co.kr\/shop\/wproduct.aspx?ItemId=177466119<\/a> \uc774 \ucc45\uc744 \uad8c\uc7a5\ud569\ub2c8\ub2e4.<br> HTML\uc744 \ubaa8\ub974\uc2e4 \uacbd\uc6b0 <a href=\"https:\/\/www.aladin.co.kr\/shop\/wproduct.aspx?ItemId=177467185\">https:\/\/www.aladin.co.kr\/shop\/wproduct.aspx?ItemId=177467185<\/a> \uc774 \ucc45\uc744 \uba3c\uc800 \ubcf4\uc2e4\uac83\uc744 \uad8c\uc7a5\ud569\ub2c8\ub2e4.<br>\uc0dd\ud65c\ucf54\ub529\uc758 \uc6b4\uc601\uc790 \uc774\uace0\uc789\ub2d8\uc774 \uc4f0\uc2e0 \ucc45\uc778\ub370, \uad1c\ucc2e\uc740 \ud004\ub9ac\ud2f0\ub77c\uace0 \uc0dd\uac01\ud569\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uac8c\uc2dc\ud310\uc744 \ub2e4 \ub9cc\ub4e4\uc5b4\ubcf4\uc168\ub2e4\uba74(\ubcf4\ud1b5 1\uac1c\uc6d4\uc815\ub3c4 \uc18c\uc694\ub429\ub2c8\ub2e4) \uc774\uc81c \ubc18\ub4dc\uc2dc \uc77d\uc5b4\uc57c \ud558\ub294 \ucc45\uc774 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n<p><a href=\"http:\/\/www.acornpub.co.kr\/book\/webhacker-2e\">http:\/\/www.acornpub.co.kr\/book\/webhacker-2e<\/a> (\uc6f9 \ud574\ud0b9 &amp; \ubcf4\uc548 \uc644\ubcbd \uac00\uc774\ub4dc)<br>\uc778\ub370, \uc601\ubb38\ud310\uc73c\ub85c \ubd10\ub3c4 \uc0c1\uad00\uc5c6\ub2e4 \ud558\uc2dc\ub294 \ubd84\uc740 \uc778\ud130\ub137\uc5d0 \uc601\ubb38\ud310 PDF \ud30c\uc77c\uc774 <a href=\"https:\/\/repo.zenk-security.com\/Magazine%20E-book\/The%20web%20application%20hackers%20handbook%20finding%20and%20exploiting%20security%20flaws%20-ed2%202011.pdf\">\uacf5\uc720<\/a>\ub418\uc5b4 \uc788\uc2b5\ub2c8\ub2e4.<br>1100\ud398\uc774\uc9c0 \ubd84\ub7c9\uc778\ub370 \uc6f9\ud574\ud0b9\uc758 \uac1c\ub150\uc744 \uc7a1\uae30 \uc704\ud574\uc11c\ub294 \ubc18\ub4dc\uc2dc \uc77d\uc5b4\uc57c \ud558\ub294 \ucc45\uc774\ub77c\uace0 \uc0dd\uac01\ud569\ub2c8\ub2e4. \uc778\ub0b4\uc2ec\uc744 \uac00\uc9c0\uace0 \uc77d\ub3c4\ub85d \ud569\uc2dc\ub2e4.<\/p>\n\n\n\n<p>\ucc45\uc744 \ub2e4 \ubcf4\uc168\ub2e4\uba74 \uc774\uc81c \uc6cc\uac8c\uc784\uc744 \ud480 \ucc28\ub840\uc778\ub370, \uc5ec\uae30\uc11c \uc120\ud0dd\uc9c0\uac00 \uac08\ub9bd\ub2c8\ub2e4.<\/p>\n\n\n\n<ol><li><a href=\"https:\/\/root-me.org\/\">https:\/\/root-me.org\/<\/a> &#8211; Challenges &#8211; (Web &#8211; Server) \uce74\ud14c\uace0\ub9ac\ub97c \ud478\ub294 \uac83 \uc785\ub2c8\ub2e4.<br>\ub300\ub7b5 50\uc5ec \ubb38\uc81c\uac00 \uc788\uc73c\uba70, \ube44\uad50\uc801 \uc26c\uc6b4 \ub09c\uc774\ub3c4\uc5d0\uc11c \uac70\uc758 \ubaa8\ub4e0 \uc6f9 \ud574\ud0b9 \uae30\ubc95\uc744 \ub2e4\ub8e8\uace0 \uc788\uc2b5\ub2c8\ub2e4.<br>\uc7a5\uc810\uc740 \ub2e4\uc591\ud55c \uae30\ubc95\uc5d0 \ub300\ud574\uc11c \uc811\ud560 \uc218 \uc788\ub2e4\ub294 \uac83 \uc785\ub2c8\ub2e4.<br>\ub2e4\ub978 \uc6cc\uac8c\uc784\uc5d0\uc11c\ub294 \ub2e4\ub8e8\uc9c0 \uc54a\ub294 \ub2e4\uc18c \ub9c8\uc774\ub108\ud55c \uae30\ubc95\uae4c\uc9c0 \ub2e4\ub8e8\uace0 \uc788\ub2e4\ubcf4\ub2c8 \uc2e4\uc2b5 \ubaa9\uc801\uc73c\ub85c \uc544\uc8fc \uc88b\uc2b5\ub2c8\ub2e4.<br>\ub2e8\uc810\uc740 \ud55c \uac00\uc9c0 \uae30\ubc95 \ub2f9 1~3\uac1c \uc815\ub3c4\uc758 \ubb38\uc81c\ub9cc \ub2e4\ub8e8\ub2e4\ubcf4\ub2c8 \ud574\ud0b9\uc744 \ud558\ub294\ub370\uc5d0 \ud544\uc694\ud55c \uc720\uc5f0\ud55c \uc0ac\uace0\ubc29\uc2dd, \ubb38\uc81c \ud574\uacb0 \ub2a5\ub825 \ub4f1\uc744 \uae30\ub974\ub294\ub370\uc5d0\ub294 \ud070 \ub3c4\uc6c0\uc774 \uc548\ub429\ub2c8\ub2e4.<\/li><li><a href=\"https:\/\/los.rubiya.kr\/\">https:\/\/los.rubiya.kr\/<\/a> LoS\ub97c \ud478\ub294 \uac83 \uc785\ub2c8\ub2e4.<br>\ub9c8\ucc2c\uac00\uc9c0\ub85c 50\uc5ec \ubb38\uc81c\uac00 \uc788\uc73c\uba70, \uc26c\uc6c0\uc5d0\uc11c \uc2dc\uc791\ud574\uc11c \uc810\uc810 \ub09c\uc774\ub3c4\uac00 \uc62c\ub77c\uac00\ub294 \uad6c\uc870\uc785\ub2c8\ub2e4.<br>SQL Injection \ud55c \uac00\uc9c0 \uae30\ubc95\ub9cc \ub2e4\ub8ec\ub2e4\ub294 \ub2e8\uc810\uc774 \uc788\uc9c0\ub9cc, \ud574\ud0b9\uc5d0 \ubc18\ub4dc\uc2dc \ud544\uc694\ud55c \uc720\uc5f0\ud55c \uc0ac\uace0 \ub4f1\uc744 \uae30\ub974\ub294\ub370 \ub3c4\uc6c0\uc774 \ub429\ub2c8\ub2e4.<\/li><\/ol>\n\n\n\n<p>\uc800\ub294 \ucc98\uc74c \ud574\ud0b9\uc744 \uc811\ud588\uc9c0\ub9cc, \uc7ac\ub2a5\uc774 \ubcf4\uc5ec LoS\uc758 \uc810\uc810 \uc5b4\ub824\uc6cc\uc9c0\ub294 \ub09c\uc774\ub3c4\ub97c \uac10\ub2f9\ud560 \uc218 \uc788\uc744 \uac83 \uac19\ub2e4\uace0 \ud310\ub2e8\ub418\uba74 LoS \ub97c \ucd94\ucc9c\ud574\uc8fc\uace0 \uc788\uc2b5\ub2c8\ub2e4.<br>\ubc18\uba74 \ub108\ubb34 \uc5b4\ub824\uc6b4 \ubbf8\uc158\uc744 \uac10\ub2f9\ud558\uae30 \uc5b4\ub824\uc6b8 \uac83 \uac19\ub2e4\uace0 \ud310\ub2e8\ub418\uba74 LoS\ub97c \ud480\uac8c\ud558\ub2e4\uac00 \ub9c9\ud788\uba74 root-me\ub85c \ub118\uc5b4\uac00\uac8c \ud558\uace0 \uc788\uc73c\uba70, \ub2e4\ub978 \ubd84\uc57c\uc758 \ud574\ud0b9\uc744 \ud558\ub2e4\uac00 \uc6f9\ud574\ud0b9\uc73c\ub85c \ub118\uc5b4\uc628 \uc0ac\ub78c\uc740 \uc774\ubbf8 \uc704\uc5d0\uc11c \uc5b8\uae09\ud55c \uc720\uc5f0\ud55c \uc0ac\uace0\ubc29\uc2dd, \ubb38\uc81c \ud574\uacb0 \ub2a5\ub825\ub4f1\uc774 \ucda9\ubd84\ud558\ub2e4\uace0 \uc0dd\uac01\ud574 \ucc98\uc74c\ubd80\ud130 root-me \ub97c \ucd94\ucc9c\ud574\uc8fc\uace0 \uc788\uc2b5\ub2c8\ub2e4.<br>\uc798 \uace0\ubbfc\ud574\ubcf4\uace0 \uc120\ud0dd\ud558\uc138\uc694 \ud83d\ude09<\/p>\n\n\n\n<p>\ud55c \uc6cc\uac8c\uc784\uc744 \ud074\ub9ac\uc5b4 \ud55c \ud6c4\uc5d0\ub294 \ub2e4\ub978 \ud558\ub098\uc758 \uc6cc\uac8c\uc784\uc744 \ud480\ub3c4\ub85d \ud558\uba70, \ub458 \ub2e4 \ud074\ub9ac\uc5b4\ud558\uba74 \uc544\ub9c8 \uc6f9\ud574\ud0b9 \uacf5\ubd80\ub97c \uc5b4\ub5bb\uac8c \ud574\uc57c\ud558\ub294\uc9c0 \uc2ac\uc2ac \uac10\uc744 \uc7a1\uc744\uac81\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uc774 \uc2dc\uc810\uc5d0\uc11c \ubc18\ub4dc\uc2dc \uc77d\uc5b4\uc57c \ud558\ub294 2\uad8c\uc758 \ucc45\uc774 \uc788\ub294\ub370, \ud558\ub098\ub294 cure53\uc5d0\uc11c \ubc1c\ud589\ud55c <a href=\"https:\/\/github.com\/cure53\/browser-sec-whitepaper\/raw\/master\/browser-security-whitepaper.pdf\">Browser Security White Paper<\/a>, \ub2e4\ub978 \ud558\ub098\ub294 <a href=\"https:\/\/repo.zenk-security.com\/Techniques%20d.attaques%20%20.%20%20Failles\/The%20Tagled%20Web%20A%20Guide%20to%20Securing%20Modern%20Web%20Applications.pdf\">Tangled Web<\/a>\uc785\ub2c8\ub2e4.<br>\uc601\uc5b4\uc5d0\ub2e4\uac00 \uc7ac\ubbf8\ub3c4 \ubcc4\ub85c \uc5c6\uc9c0\ub9cc, \ub0b4\uc6a9\uc774 \uc815\ud655\ud558\uace0 \ubc29\ub300\ud574 \uc548 \uc77d\uc744 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uadf8 \ud6c4\uc5d0\ub294 \ucd5c\uc2e0 \ub3d9\ud5a5\uc744 \ud314\ub85c\uc5c5\ud574\uc57c\ud558\ub294\ub370 \uac01 \ubd84\uc57c\uc5d0\uc11c \uc720\uba85\ud55c(\uc6f9\ud574\ucee4\ub4e4 \uc0ac\uc774\uc5d0\uc11c\ub3c4 \uc138\ubd80\uc801\uc778 \uc8fc\ub825 \ubd84\uc57c\uac00 \uc788\uc2b5\ub2c8\ub2e4) \ud300, \ud574\ucee4\ub4e4\uc758 \ub3d9\ud5a5\uc744 \ub530\ub77c\uac00\uace0, <a href=\"https:\/\/www.blackhat.com\/us-18\/briefings\/schedule\/index.html#track\/web-appsec\">BlackHat<\/a> \ub4f1 \ub300\ud615 \ucee8\ud37c\ub7f0\uc2a4\uc758 \ubc1c\ud45c\ub97c \ucc3e\uc544\ubcf4\uba74 \ub429\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uadf8\ub7fc \uc774\uc81c \ub2f9\uc2e0\ub3c4 \ud6cc\ub96d\ud55c \uc6f9\ud574\ucee4!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>2019\ub144 \uc911\uc21c \uae30\uc900\uc73c\ub85c \ud574\ud0b9\uc758 \ubd84\uc57c \uc911\uc5d0\uc11c \uc218 \ub144 \uc9f8 \ud3ec\ub108\ube14\uc758 \uac15\uc138\uac00 \uacc4\uc18d\ub418\uace0 \uc788\uc2b5\ub2c8\ub2e4.\uadf8\ub7ec\ub098 \uc2e4\ubb34\uc5d0\uc11c\ub294 \uc6f9\ud574\ud0b9\uc758 \ube44\uc911\uc774 \uc544\uc9c1\ub3c4 \uc555\ub3c4\uc801\uc73c\ub85c \ub192\uc2b5\ub2c8\ub2e4.\ubaa8\uc758\ud574\ud0b9 \uc5c5\ubb34\ub97c \ub098\uac00\uba74 90%\ub294 \uc6f9\uc774\uace0 \ub098\uba38\uc9c0 10%\ub294 \ubaa8\ubc14\uc77c\uc774\ub354\ub77c \ub77c\ub294 \ub9d0\ub3c4 \uc788\uc8e0.\uc815\ub9bd\ub41c \uc6f9\ud574\ud0b9 \uacf5\ubd80 \uc21c\uc11c\uac00 \ud544\uc694\ud558\ub2e4\uace0 \uc0dd\uac01\ud574 \uae00\uc744 \uc791\uc131\ud569\ub2c8\ub2e4. \uba3c\uc800 \ubaa8\ub4e0 \ud574\ud0b9\uc5d0 \ud574\ub2f9\ub418\ub294 \ub9d0\uc774\uc9c0\ub9cc, \ud574\ud0b9\uc740 \ud504\ub85c\uadf8\ub798\uba38\uc758 \uc2e4\uc218\ub97c \uc7a1\uc544\ub0b4\ub294 \ud559\ubb38\uc774\uae30\uc5d0 \ud504\ub85c\uadf8\ub798\ubc0d \ub2a5\ub825\uc774 \uc120\uacb0\ub418\uc5b4\uc57c \ud569\ub2c8\ub2e4.\ub530\ub77c\uc11c \uc5ec\ub7ec\ubd84\uc774 \uccab \ubc88\uc9f8\ub85c \ud574\uc57c \ud560 \uc77c\uc740 \ud504\ub85c\uadf8\ub798\ubc0d \ub2a5\ub825\uc744 \uae30\ub974\uae30 \uc704\ud574 \uac8c\uc2dc\ud310\uc744 \ub9cc\ub4e4\uc5b4\ubcf4\ub294 \uac83 \uc785\ub2c8\ub2e4. \uac8c\uc2dc\ud310\uc5d0 \ubc18\ub4dc\uc2dc \uad6c\ud604\ub418\uc5b4\uc57c \ud558\ub294 \uae30\ub2a5\uc740 \ud68c\uc6d0\uac00\uc785, \ub85c\uadf8\uc778, \ub85c\uadf8\uc544\uc6c3, \uae00 \uc870\ud68c, \uae00 \uc4f0\uae30, \uae00 \uc218\uc815, \uae00 \uc0ad\uc81c, \ud398\uc774\uc9c0, \ud30c\uc77c \uc5c5\ub85c\ub4dc, \ud30c\uc77c \ub2e4\uc6b4\ub85c\ub4dc \uc785\ub2c8\ub2e4. \ud398\uc774\uc9c0\ub294 \uae00\uc758 \uac2f\uc218\uac00 \ub9ce\uc544\uc84c\uc744 \ub54c \ub2e4\uc74c \ud398\uc774\uc9c0\ub85c \ub118\uae30\ub294 \uae30\ub2a5\uc744 \uc758\ubbf8\ud569\ub2c8\ub2e4.\uc120\ud0dd\uc801\uc73c\ub85c \ucd94\uac00\ud560 \uc218 \uc788\ub294 \uae30\ub2a5\uc740 \ud604\uc7ac \uc811\uc18d\uc790, \ub367\uae00 \uc4f0\uae30, \ub367\uae00 \uc0ad\uc81c, \ucc44\ud305, \uc870\ud68c\uc218 \uc785\ub2c8\ub2e4. \uac8c\uc2dc\ud310\uc744 \uad6c\ud604\ud558\ub294 \ud504\ub85c\uadf8\ub798\ubc0d \uc5b8\uc5b4\ub294 PHP+MySQL \uc870\ud569\uc774 \uad8c\uc7a5\ub429\ub2c8\ub2e4.PHP\ub294 \ubb34\uc218\ud788 \ub9ce\uc740 \uc7a0\uc7ac\uc801 \ubcf4\uc548 \ucde8\uc57d\uc810\uc744 \uac00\uc9c0\uace0 \uc788\ub294 \ud504\ub85c\uadf8\ub798\ubc0d \uc5b8\uc5b4\uc785\ub2c8\ub2e4.\uac1c\ubc1c\uc790 \uc785\uc7a5\uc5d0\uc11c\ub294 \uc774\ub9cc\ud55c \uc4f0\ub808\uae30 \uc5b8\uc5b4\ub3c4 \uc5c6\uc9c0\ub9cc, \ubc18\ub300\ub85c \ud574\ud0b9 \uacf5\ubd80\ub97c \ud558\ub294\ub370\uc5d0\ub294 \uc774\ub9cc\ud55c \uacf5\ubd80\uac70\ub9ac\ub3c4 \uc5c6\uc8e0.\ucc45\uc744 \ucd94\ucc9c\ud574\ub2ec\ub77c\uace0 \ud558\uc2e0\ub2e4\uba74&#8230; HTML\uc744 \uc544\uc2e4\uacbd\uc6b0 https:\/\/www.aladin.co.kr\/shop\/wproduct.aspx?ItemId=177466119 \uc774 \ucc45\uc744 \uad8c\uc7a5\ud569\ub2c8\ub2e4. HTML\uc744 \ubaa8\ub974\uc2e4 \uacbd\uc6b0 https:\/\/www.aladin.co.kr\/shop\/wproduct.aspx?ItemId=177467185 \uc774 \ucc45\uc744 \uba3c\uc800 \ubcf4\uc2e4\uac83\uc744 \uad8c\uc7a5\ud569\ub2c8\ub2e4.\uc0dd\ud65c\ucf54\ub529\uc758 \uc6b4\uc601\uc790 \uc774\uace0\uc789\ub2d8\uc774 \uc4f0\uc2e0 \ucc45\uc778\ub370, \uad1c\ucc2e\uc740 \ud004\ub9ac\ud2f0\ub77c\uace0 \uc0dd\uac01\ud569\ub2c8\ub2e4. \uac8c\uc2dc\ud310\uc744 \ub2e4 \ub9cc\ub4e4\uc5b4\ubcf4\uc168\ub2e4\uba74(\ubcf4\ud1b5 1\uac1c\uc6d4\uc815\ub3c4 \uc18c\uc694\ub429\ub2c8\ub2e4) \uc774\uc81c \ubc18\ub4dc\uc2dc \uc77d\uc5b4\uc57c \ud558\ub294 \ucc45\uc774 \uc788\uc2b5\ub2c8\ub2e4. http:\/\/www.acornpub.co.kr\/book\/webhacker-2e (\uc6f9 \ud574\ud0b9 &amp; \ubcf4\uc548 \uc644\ubcbd \uac00\uc774\ub4dc)\uc778\ub370, \uc601\ubb38\ud310\uc73c\ub85c \ubd10\ub3c4 \uc0c1\uad00\uc5c6\ub2e4 \ud558\uc2dc\ub294 \ubd84\uc740 \uc778\ud130\ub137\uc5d0 \uc601\ubb38\ud310 PDF \ud30c\uc77c\uc774 \uacf5\uc720\ub418\uc5b4 \uc788\uc2b5\ub2c8\ub2e4.1100\ud398\uc774\uc9c0 \ubd84\ub7c9\uc778\ub370 \uc6f9\ud574\ud0b9\uc758 \uac1c\ub150\uc744 \uc7a1\uae30 \uc704\ud574\uc11c\ub294 \ubc18\ub4dc\uc2dc \uc77d\uc5b4\uc57c \ud558\ub294 \ucc45\uc774\ub77c\uace0 \uc0dd\uac01\ud569\ub2c8\ub2e4. \uc778\ub0b4\uc2ec\uc744 \uac00\uc9c0\uace0 \uc77d\ub3c4\ub85d \ud569\uc2dc\ub2e4. \ucc45\uc744 \ub2e4 \ubcf4\uc168\ub2e4\uba74 \uc774\uc81c \uc6cc\uac8c\uc784\uc744 \ud480 \ucc28\ub840\uc778\ub370, \uc5ec\uae30\uc11c \uc120\ud0dd\uc9c0\uac00 \uac08\ub9bd\ub2c8\ub2e4. https:\/\/root-me.org\/ &#8211; Challenges &#8211; (Web &#8211; Server) \uce74\ud14c\uace0\ub9ac\ub97c \ud478\ub294 \uac83 \uc785\ub2c8\ub2e4.\ub300\ub7b5 50\uc5ec \ubb38\uc81c\uac00 \uc788\uc73c\uba70, \ube44\uad50\uc801 \uc26c\uc6b4 \ub09c\uc774\ub3c4\uc5d0\uc11c \uac70\uc758 \ubaa8\ub4e0 \uc6f9 \ud574\ud0b9 \uae30\ubc95\uc744 \ub2e4\ub8e8\uace0 \uc788\uc2b5\ub2c8\ub2e4.\uc7a5\uc810\uc740 \ub2e4\uc591\ud55c \uae30\ubc95\uc5d0 \ub300\ud574\uc11c \uc811\ud560 \uc218 \uc788\ub2e4\ub294 \uac83 \uc785\ub2c8\ub2e4.\ub2e4\ub978 \uc6cc\uac8c\uc784\uc5d0\uc11c\ub294 \ub2e4\ub8e8\uc9c0 \uc54a\ub294 \ub2e4\uc18c \ub9c8\uc774\ub108\ud55c \uae30\ubc95\uae4c\uc9c0 \ub2e4\ub8e8\uace0 \uc788\ub2e4\ubcf4\ub2c8 \uc2e4\uc2b5 \ubaa9\uc801\uc73c\ub85c \uc544\uc8fc \uc88b\uc2b5\ub2c8\ub2e4.\ub2e8\uc810\uc740 \ud55c \uac00\uc9c0 \uae30\ubc95 \ub2f9 1~3\uac1c \uc815\ub3c4\uc758 \ubb38\uc81c\ub9cc \ub2e4\ub8e8\ub2e4\ubcf4\ub2c8 \ud574\ud0b9\uc744 \ud558\ub294\ub370\uc5d0 \ud544\uc694\ud55c \uc720\uc5f0\ud55c \uc0ac\uace0\ubc29\uc2dd, \ubb38\uc81c \ud574\uacb0 \ub2a5\ub825 \ub4f1\uc744 \uae30\ub974\ub294\ub370\uc5d0\ub294 \ud070 \ub3c4\uc6c0\uc774 \uc548\ub429\ub2c8\ub2e4. https:\/\/los.rubiya.kr\/ LoS\ub97c \ud478\ub294 \uac83 \uc785\ub2c8\ub2e4.\ub9c8\ucc2c\uac00\uc9c0\ub85c 50\uc5ec \ubb38\uc81c\uac00 \uc788\uc73c\uba70, \uc26c\uc6c0\uc5d0\uc11c \uc2dc\uc791\ud574\uc11c \uc810\uc810 \ub09c\uc774\ub3c4\uac00 \uc62c\ub77c\uac00\ub294 \uad6c\uc870\uc785\ub2c8\ub2e4.SQL Injection \ud55c \uac00\uc9c0 \uae30\ubc95\ub9cc \ub2e4\ub8ec\ub2e4\ub294 \ub2e8\uc810\uc774 \uc788\uc9c0\ub9cc, \ud574\ud0b9\uc5d0 \ubc18\ub4dc\uc2dc \ud544\uc694\ud55c \uc720\uc5f0\ud55c \uc0ac\uace0 \ub4f1\uc744 \uae30\ub974\ub294\ub370 \ub3c4\uc6c0\uc774 \ub429\ub2c8\ub2e4. \uc800\ub294 \ucc98\uc74c \ud574\ud0b9\uc744 \uc811\ud588\uc9c0\ub9cc, \uc7ac\ub2a5\uc774 \ubcf4\uc5ec LoS\uc758 \uc810\uc810 \uc5b4\ub824\uc6cc\uc9c0\ub294 \ub09c\uc774\ub3c4\ub97c \uac10\ub2f9\ud560 \uc218 \uc788\uc744 \uac83 \uac19\ub2e4\uace0 \ud310\ub2e8\ub418\uba74 LoS \ub97c \ucd94\ucc9c\ud574\uc8fc\uace0 \uc788\uc2b5\ub2c8\ub2e4.\ubc18\uba74 \ub108\ubb34 \uc5b4\ub824\uc6b4 \ubbf8\uc158\uc744 \uac10\ub2f9\ud558\uae30 \uc5b4\ub824\uc6b8 \uac83 \uac19\ub2e4\uace0 \ud310\ub2e8\ub418\uba74 LoS\ub97c \ud480\uac8c\ud558\ub2e4\uac00 \ub9c9\ud788\uba74 root-me\ub85c \ub118\uc5b4\uac00\uac8c \ud558\uace0 \uc788\uc73c\uba70, \ub2e4\ub978 \ubd84\uc57c\uc758 \ud574\ud0b9\uc744 \ud558\ub2e4\uac00 \uc6f9\ud574\ud0b9\uc73c\ub85c \ub118\uc5b4\uc628 \uc0ac\ub78c\uc740 \uc774\ubbf8 \uc704\uc5d0\uc11c \uc5b8\uae09\ud55c \uc720\uc5f0\ud55c \uc0ac\uace0\ubc29\uc2dd, \ubb38\uc81c \ud574\uacb0 \ub2a5\ub825\ub4f1\uc774 \ucda9\ubd84\ud558\ub2e4\uace0 \uc0dd\uac01\ud574 \ucc98\uc74c\ubd80\ud130 root-me \ub97c \ucd94\ucc9c\ud574\uc8fc\uace0 \uc788\uc2b5\ub2c8\ub2e4.\uc798 \uace0\ubbfc\ud574\ubcf4\uace0 \uc120\ud0dd\ud558\uc138\uc694 \ud83d\ude09 \ud55c \uc6cc\uac8c\uc784\uc744 \ud074\ub9ac\uc5b4 \ud55c \ud6c4\uc5d0\ub294 \ub2e4\ub978 \ud558\ub098\uc758 \uc6cc\uac8c\uc784\uc744 \ud480\ub3c4\ub85d \ud558\uba70, \ub458 \ub2e4 \ud074\ub9ac\uc5b4\ud558\uba74 \uc544\ub9c8 \uc6f9\ud574\ud0b9 \uacf5\ubd80\ub97c \uc5b4\ub5bb\uac8c \ud574\uc57c\ud558\ub294\uc9c0 \uc2ac\uc2ac \uac10\uc744 \uc7a1\uc744\uac81\ub2c8\ub2e4. \uc774 \uc2dc\uc810\uc5d0\uc11c \ubc18\ub4dc\uc2dc \uc77d\uc5b4\uc57c \ud558\ub294 2\uad8c\uc758 \ucc45\uc774 \uc788\ub294\ub370, \ud558\ub098\ub294 cure53\uc5d0\uc11c \ubc1c\ud589\ud55c Browser Security White Paper, \ub2e4\ub978 \ud558\ub098\ub294 Tangled Web\uc785\ub2c8\ub2e4.\uc601\uc5b4\uc5d0\ub2e4\uac00 \uc7ac\ubbf8\ub3c4 \ubcc4\ub85c \uc5c6\uc9c0\ub9cc, \ub0b4\uc6a9\uc774 \uc815\ud655\ud558\uace0 \ubc29\ub300\ud574 \uc548 \uc77d\uc744 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4. \uadf8 \ud6c4\uc5d0\ub294 \ucd5c\uc2e0 \ub3d9\ud5a5\uc744 \ud314\ub85c\uc5c5\ud574\uc57c\ud558\ub294\ub370 \uac01 \ubd84\uc57c\uc5d0\uc11c \uc720\uba85\ud55c(\uc6f9\ud574\ucee4\ub4e4 \uc0ac\uc774\uc5d0\uc11c\ub3c4 \uc138\ubd80\uc801\uc778 \uc8fc\ub825 \ubd84\uc57c\uac00 \uc788\uc2b5\ub2c8\ub2e4) \ud300, \ud574\ucee4\ub4e4\uc758 \ub3d9\ud5a5\uc744 \ub530\ub77c\uac00\uace0, BlackHat \ub4f1 \ub300\ud615 \ucee8\ud37c\ub7f0\uc2a4\uc758 \ubc1c\ud45c\ub97c \ucc3e\uc544\ubcf4\uba74 \ub429\ub2c8\ub2e4. \uadf8\ub7fc \uc774\uc81c \ub2f9\uc2e0\ub3c4 \ud6cc\ub96d\ud55c \uc6f9\ud574\ucee4!<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[4],"tags":[],"_links":{"self":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/373"}],"collection":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/comments?post=373"}],"version-history":[{"count":1,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/373\/revisions"}],"predecessor-version":[{"id":374,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/373\/revisions\/374"}],"wp:attachment":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/media?parent=373"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/categories?post=373"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/tags?post=373"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}