![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-1.png\")
\n\ud574\ub2f9 \ubb38\uc11c\ub294 \uc704\uc758 \ud2b8\uc717\uc744 \ubcf4\uace0 \ucd94\uac00\uc801\uc778 \uc5f0\uad6c\ub97c \uc9c4\ud589\ud574 Theori \ub0b4\ubd80 \uc138\ubbf8\ub098\uc5d0\uc11c \ubc1c\ud45c\ud55c \uacb0\uacfc\ubb3c\uc774\ub2e4.(\uc0ac\uc7a5\ub2d8 \ud5c8\ub77d\ubc1b\uace0 \uc62c\ub9b0\ub2e4)<\/p>\n
![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-2.png\")
(%C4%B1)
\n\ub294 LATIN SMALL LETTER DOTLESS I\ub97c,<\/p>\n
![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-3.png\")
(%E2%84%AA)
\nKELVIN SIGN\uc744,<\/p>\n
![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-4.png\")
(%C5%BF)
\n\ub294 LATIN SMALL LETTER LONG S\ub97c,<\/p>\n
![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-5.png\")
(%C4%B0)
\n\ub294 LATIN CAPITAL LETTER I WITH DOT ABOVE \ub97c \uc758\ubbf8\ud55c\ub2e4.<\/p>\n
\uadf8\ub7f0\ub370 \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8 \ud658\uacbd\uc5d0\uc11c %C4%B1\ub97c touppercase() \ud558\uba74 == “I”\uac00, %c5%bf\ub97c touppercase()\ud558\uba74 == “S”\uac00 \ub418\uace0,
\n%E2%84%AA \ub97c tolowercase() \ud558\uba74 == “k”\uac00, %c4%b0\uc744 tolowercase()\ud558\uba74 == “i” \uac00 \ub418\ub294 \ud604\uc0c1\uc774 \ubc1c\uc0dd\ud55c\ub2e4\ub294 \uac83\uc774 \ud574\ub2f9 \ud2b8\uc717\uc758 \uc694\uc9c0\uc774\ub2e4.<\/p>\n
\uc774\ubbf8 CTF\uc5d0\uc11c \ucd9c\uc81c\ub41c\uc801\uc774 \uc788\ub294 \ud2b8\ub9ad\uc774\uc9c0\ub9cc \uc81c\ub300\ub85c \uc815\ub9ac\ub41c \ubb38\uc11c\uac00 \uc5c6\ub294 \uac83 \uac19\uc544\uc11c, \uc5f0\uad6c\ub97c \uc9c4\ud589\ud574 \ubcf4\uc558\ub2e4.<\/p>\n
\uc6b0\uc120\uc740 \ub2e4\ub978 \uc5b8\uc5b4\uc5d0\uc11c \uac19\uc740 \ud2b8\ub9ad\uc774 \ubc1c\uc0dd\ud558\ub294\uc9c0 \uc5ec\ubd80\ub97c \ud655\uc778\ud574 \ubcf4\uc558\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-6.png\")
\n\uc720\ub2c8\ucf54\ub4dc \ubc94\uc704 \ub0b4\uc5d0\uc11c for\ubb38 \uc624\uc9c0\uac8c \ub3cc\ub838\ub2e4\u3161\u3161;;<\/p>\n
\uadf8 \uacb0\uacfc\ub294 \ub2e4\uc74c\uacfc \uac19\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-7.png\")
<\/p>\n
\ub300\uccb4\ub85c \uc720\ub2c8\ucf54\ub4dc\ub97c \uc81c\ub300\ub85c \uc9c0\uc6d0\ud558\ub294 \uc5b8\uc5b4\uc5d0\uc11c \ud574\ub2f9 \ud2b8\ub9ad\uc774 \ubc1c\uc0dd\ud558\ub294\uac83\uc744 \uc54c \uc218 \uc788\uc5c8\ub2e4.
\nphp\uc758 \uacbd\uc6b0\uc5d0\ub294 \uc77c\ubc18 strtolower(), strtoupper() \ud568\uc218\uc5d0\uc11c\ub294 \ubc1c\uc0dd\ud558\uc9c0 \uc54a\uace0, \uba40\ud2f0\ubc14\uc774\ud2b8\ub97c \ub530\ub85c \uc9c0\uc6d0\ud574\uc8fc\ub294 mb_strtolower(), mb_strtoupper() \ud568\uc218\ub97c \uc0ac\uc6a9\ud574\uc57c \ud55c\ub2e4.<\/p>\n
\uadf8\ub7ec\uba74 \uc774 \ud2b8\ub9ad\uc744 \uc5b4\ub5bb\uac8c \uc545\uc6a9\ud560 \uc218 \uc788\uc744\uae4c?<\/p>\n
2\uac00\uc9c0 \ubc29\ubc95\uc774 \uc788\ub2e4.<\/p>\n
1. WAF BYPASS
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-8.png\")
\n\ub77c\ub294 \uac04\ub2e8\ud55c \ud504\ub85c\uadf8\ub7a8\uc744 \ub9cc\ub4e4\uace0 \uc11c\ubc84\uc5d0 WAF\ub97c \uc124\uce58\ud55c \ud6c4 \/?ID=<script>VAR=1<\/script>URI\uc5d0 \uc811\uc18d\ud574\ubcf4\uba74 \uacb0\uacfc\ub294 \ub2e4\uc74c\uacfc \uac19\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-9.png\")
\n\ubc29\ud654\ubcbd\uc5d0 \ud0d0\uc9c0\ub2f9\ud55c\uac83\uc774\ub2e4.<\/p>\n
\ud558\uc9c0\ub9cc URI\ub97c \/?ID=<%C5%BFCRIPT>VAR=1<\/%C5%BFCRIPT> \uc640 \uac19\uc774 \ud574\uc900\ub2e4\uba74?
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-10.png\")
\nWAF\uac00 \ubcf4\uae30\uc5d0\ub294 <%C5%BFCRIPT> \ub77c\ub294 \uc0dd\uc18c\ud55c \ubb38\uc790\uc5f4\uc774 \ub4e4\uc5b4\uc654\uc73c\ub2c8 \ud328\uc2a4\uc2dc\ucf1c\uc8fc\uc9c0\ub9cc \uc6f9\uc5b4\ud50c\ub9ac\ucf00\uc774\uc158\ub2e8\uc5d0\uc11c\ub294 “%C5%BF” \ubb38\uc790\uc5f4\uc774 mb_strtoupper() \ud568\uc218\ub97c \uac70\uce58\uba70 \uc77c\ubc18 \uc54c\ud30c\ubcb3 “S” \ub85c \ubc14\ub00c\uc5b4 WAF\uac00 \uc6b0\ud68c\ub41c\ub2e4.<\/p>\n
WAF\uc758 \uacbd\uc6b0\uc5d0\ub294 \uc124\uce58\uac00 \uae4c\ub2e4\ub86d\uace0 \uc624\ub798\uac78\ub824 ModSecurity \ud55c\uac00\uc9c0\uc5d0 \ub300\ud574\uc11c\ub9cc \ud14c\uc2a4\ud2b8 \ud574\ubcf4\uc558\ub2e4.
\n\uacb0\uacfc\ub294 \uc544\ub798\uc640 \uac19\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-11.png\")
\n\uc77c\ubd80 \uc720\ub2c8\ucf54\ub4dc\ub294 \ud1b5\uacfc\uc2dc\ud0a4\uace0 \uc77c\ubd80 \uc720\ub2c8\ucf54\ub4dc\ub294 \ud544\ud130\ud558\ub294 \ubaa8\uc2b5\uc744 \ubcfc \uc218 \uc788\ub2e4.<\/p>\n
\ubc29\ud654\ubcbd\ub9c8\ub2e4 \ud544\ud130\ub418\uc9c0 \uc54a\ub294 \uc720\ub2c8\ucf54\ub4dc\uac00 \uc788\uc744 \uc218 \uc788\ub2e4.<\/p>\n
2. BROWSER XSS FILTER BYPASS
\n\ube0c\ub77c\uc6b0\uc800 XSS \ud544\ud130\ub294 \uc0ac\uc6a9\uc790\ub97c \uc704\ud55c \uac15\ub825\ud55c XSS \ubc29\uc5b4\uc218\ub2e8\uc774\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-12.png\")
\n\ubcf4\ud1b5\uc740 \uc704\uc640\uac19\uc740 \uc815\uaddc\uc2dd\uc744 \uac70\uccd0 \uc720\uc800\uc778\ud48b\uacfc HTTP Response \uac12 \uac04\uc5d0 \uc815\uaddc\uc2dd\uc5d0 \ub9e4\uce6d\ub418\ub294 \ud328\ud134\uc774 \uc788\uc73c\uba74 \uc544\ub798\ucc98\ub7fc \uc791\ub3d9\uc744 \uc911\uc9c0\uc2dc\ud0a8\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-13.png\")
<\/p>\n
\ud558\uc9c0\ub9cc WAF\uc758 \uacbd\uc6b0\uc640 \ub9c8\ucc2c\uac00\uc9c0\ub85c \uc720\uc800\uc778\ud48b %c5%bf \uc640 HTTP Response \uc5d0\uc11c\uc758 “S” \ub97c XSS \ud544\ud130\uc5d0\uc11c \uac19\ub2e4\uace0 \uac80\uc99d\ud560 \uc218 \uc788\uc744\uae4c?<\/p>\n
\ud14c\uc2a4\ud2b8\ud574\ubcf8 \uacb0\uacfc\ub294 \uc544\ub798\uc640 \uac19\ub2e4.
\n![\"\"](\"https:\/\/blog.rubiya.kr\/wp-content\/uploads\/2018\/11\/1-14.png\")
<\/p>\n
MS \uacc4\uc5f4\uc758 \ube0c\ub77c\uc6b0\uc800\uc5d0\uc11c\ub9cc \ud544\ud130\uac00 \ub418\ub294\uac83\uc744 \ud655\uc778\ud560 \uc218 \uc788\ub2e4.<\/p>\n
\ub2e4\ub9cc \ud14c\uc2a4\ud2b8\ud560 \ub54c \ub0b4 Edge \ube0c\ub77c\uc6b0\uc800\uac00 \ucd5c\uc2e0\ubc84\uc804\uc774 \uc544\ub2c8\uc600\ub294\ub370, \ucd5c\uc2e0\ubc84\uc804\uc758 Edge \ube0c\ub77c\uc6b0\uc800\uc5d0\ub294 XSS \ud544\ud130\uac00 \uc81c\uac70\ub418\uc5c8\ub2e4.
\n(https:\/\/blogs.windows.com\/windowsexperience\/2018\/07\/25\/announcing-windows-10-insider-preview-build-17723-and-build-18204\/)<\/p>\n
\uadf8\ub7ec\ubbc0\ub85c \uc0ac\uc2e4\uc0c1 IE\ub97c \uc81c\uc678\ud558\uba74 \ud574\ub2f9 \ud2b8\ub9ad\uc740 \ubaa8\ub4e0 \ube0c\ub77c\uc6b0\uc800 XSS \ud544\ud130 \uc6b0\ud68c\uc5d0 \uc545\uc6a9\ud560 \uc218 \uc788\ub2e4.<\/p>\n
python3, js, java \ub85c \uc774\ub8e8\uc5b4\uc9c4 \uc6f9\uc5b4\ud50c\ub9ac\ucf00\uc774\uc158 \uc0c1\uc5d0\uc11c \ubb38\uc790\uc5f4\uc744 \ub300\ubb38\uc790 \ud639\uc740 \uc18c\ubb38\uc790\ub85c \uac15\uc81c\ub85c \uce58\ud658\ud558\ub294 \uacbd\uc6b0\uc5d0\ub294 \ud574\ub2f9 \ud2b8\ub9ad\uc744 \uc2dc\ub3c4\ud574\ubcfc \uac00\uce58\uac00 \uc788\uc744\uac83\uc774\ub2e4.<\/p>\n","protected":false},"excerpt":{"rendered":"
\ud574\ub2f9 \ubb38\uc11c\ub294 \uc704\uc758 \ud2b8\uc717\uc744 \ubcf4\uace0 \ucd94\uac00\uc801\uc778 \uc5f0\uad6c\ub97c \uc9c4\ud589\ud574 Theori \ub0b4\ubd80 \uc138\ubbf8\ub098\uc5d0\uc11c \ubc1c\ud45c\ud55c \uacb0\uacfc\ubb3c\uc774\ub2e4.(\uc0ac\uc7a5\ub2d8 \ud5c8\ub77d\ubc1b\uace0 \uc62c\ub9b0\ub2e4) (%C4%B1) \ub294 LATIN SMALL LETTER DOTLESS I\ub97c, (%E2%84%AA) KELVIN SIGN\uc744, (%C5%BF) \ub294 LATIN SMALL LETTER LONG S\ub97c, (%C4%B0) \ub294 LATIN CAPITAL LETTER I WITH DOT ABOVE \ub97c \uc758\ubbf8\ud55c\ub2e4. \uadf8\ub7f0\ub370 \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8 \ud658\uacbd\uc5d0\uc11c %C4%B1\ub97c touppercase() \ud558\uba74 == “I”\uac00, %c5%bf\ub97c touppercase()\ud558\uba74 == “S”\uac00 \ub418\uace0, %E2%84%AA \ub97c tolowercase() \ud558\uba74 == “k”\uac00, %c4%b0\uc744 tolowercase()\ud558\uba74 == “i” \uac00 \ub418\ub294 \ud604\uc0c1\uc774 \ubc1c\uc0dd\ud55c\ub2e4\ub294 \uac83\uc774 \ud574\ub2f9 \ud2b8\uc717\uc758 \uc694\uc9c0\uc774\ub2e4. \uc774\ubbf8 CTF\uc5d0\uc11c \ucd9c\uc81c\ub41c\uc801\uc774 \uc788\ub294 \ud2b8\ub9ad\uc774\uc9c0\ub9cc \uc81c\ub300\ub85c \uc815\ub9ac\ub41c \ubb38\uc11c\uac00 \uc5c6\ub294 \uac83 \uac19\uc544\uc11c, \uc5f0\uad6c\ub97c \uc9c4\ud589\ud574 \ubcf4\uc558\ub2e4. \uc6b0\uc120\uc740 \ub2e4\ub978 \uc5b8\uc5b4\uc5d0\uc11c \uac19\uc740 \ud2b8\ub9ad\uc774 \ubc1c\uc0dd\ud558\ub294\uc9c0 \uc5ec\ubd80\ub97c \ud655\uc778\ud574 \ubcf4\uc558\ub2e4. \uc720\ub2c8\ucf54\ub4dc \ubc94\uc704 \ub0b4\uc5d0\uc11c for\ubb38 \uc624\uc9c0\uac8c \ub3cc\ub838\ub2e4\u3161\u3161;; \uadf8 \uacb0\uacfc\ub294 \ub2e4\uc74c\uacfc \uac19\ub2e4. \ub300\uccb4\ub85c \uc720\ub2c8\ucf54\ub4dc\ub97c \uc81c\ub300\ub85c \uc9c0\uc6d0\ud558\ub294 \uc5b8\uc5b4\uc5d0\uc11c \ud574\ub2f9 \ud2b8\ub9ad\uc774 \ubc1c\uc0dd\ud558\ub294\uac83\uc744 \uc54c \uc218 \uc788\uc5c8\ub2e4. php\uc758 \uacbd\uc6b0\uc5d0\ub294 \uc77c\ubc18 strtolower(), strtoupper() \ud568\uc218\uc5d0\uc11c\ub294 \ubc1c\uc0dd\ud558\uc9c0 \uc54a\uace0, \uba40\ud2f0\ubc14\uc774\ud2b8\ub97c \ub530\ub85c \uc9c0\uc6d0\ud574\uc8fc\ub294 mb_strtolower(), mb_strtoupper() \ud568\uc218\ub97c \uc0ac\uc6a9\ud574\uc57c \ud55c\ub2e4. \uadf8\ub7ec\uba74 \uc774 \ud2b8\ub9ad\uc744 \uc5b4\ub5bb\uac8c \uc545\uc6a9\ud560 \uc218 \uc788\uc744\uae4c? 2\uac00\uc9c0 \ubc29\ubc95\uc774 \uc788\ub2e4. 1. WAF BYPASS \ub77c\ub294 \uac04\ub2e8\ud55c \ud504\ub85c\uadf8\ub7a8\uc744 \ub9cc\ub4e4\uace0 \uc11c\ubc84\uc5d0 WAF\ub97c \uc124\uce58\ud55c \ud6c4 \/?ID=<script>VAR=1<\/script>URI\uc5d0 \uc811\uc18d\ud574\ubcf4\uba74 \uacb0\uacfc\ub294 \ub2e4\uc74c\uacfc \uac19\ub2e4. \ubc29\ud654\ubcbd\uc5d0 \ud0d0\uc9c0\ub2f9\ud55c\uac83\uc774\ub2e4. \ud558\uc9c0\ub9cc URI\ub97c \/?ID=<%C5%BFCRIPT>VAR=1<\/%C5%BFCRIPT> \uc640 \uac19\uc774 \ud574\uc900\ub2e4\uba74? WAF\uac00 \ubcf4\uae30\uc5d0\ub294 <%C5%BFCRIPT> \ub77c\ub294 \uc0dd\uc18c\ud55c \ubb38\uc790\uc5f4\uc774 \ub4e4\uc5b4\uc654\uc73c\ub2c8 \ud328\uc2a4\uc2dc\ucf1c\uc8fc\uc9c0\ub9cc \uc6f9\uc5b4\ud50c\ub9ac\ucf00\uc774\uc158\ub2e8\uc5d0\uc11c\ub294 “%C5%BF” \ubb38\uc790\uc5f4\uc774 mb_strtoupper() \ud568\uc218\ub97c \uac70\uce58\uba70 \uc77c\ubc18 \uc54c\ud30c\ubcb3 “S” \ub85c \ubc14\ub00c\uc5b4 WAF\uac00 \uc6b0\ud68c\ub41c\ub2e4. WAF\uc758 \uacbd\uc6b0\uc5d0\ub294 \uc124\uce58\uac00 \uae4c\ub2e4\ub86d\uace0 \uc624\ub798\uac78\ub824 ModSecurity \ud55c\uac00\uc9c0\uc5d0 \ub300\ud574\uc11c\ub9cc \ud14c\uc2a4\ud2b8 \ud574\ubcf4\uc558\ub2e4. \uacb0\uacfc\ub294 \uc544\ub798\uc640 \uac19\ub2e4. \uc77c\ubd80 \uc720\ub2c8\ucf54\ub4dc\ub294 \ud1b5\uacfc\uc2dc\ud0a4\uace0 \uc77c\ubd80 \uc720\ub2c8\ucf54\ub4dc\ub294 \ud544\ud130\ud558\ub294 \ubaa8\uc2b5\uc744 \ubcfc \uc218 \uc788\ub2e4. \ubc29\ud654\ubcbd\ub9c8\ub2e4 \ud544\ud130\ub418\uc9c0 \uc54a\ub294 \uc720\ub2c8\ucf54\ub4dc\uac00 \uc788\uc744 \uc218 \uc788\ub2e4. 2. BROWSER XSS FILTER BYPASS \ube0c\ub77c\uc6b0\uc800 XSS \ud544\ud130\ub294 \uc0ac\uc6a9\uc790\ub97c \uc704\ud55c \uac15\ub825\ud55c XSS \ubc29\uc5b4\uc218\ub2e8\uc774\ub2e4. \ubcf4\ud1b5\uc740 \uc704\uc640\uac19\uc740 \uc815\uaddc\uc2dd\uc744 \uac70\uccd0 \uc720\uc800\uc778\ud48b\uacfc HTTP Response \uac12 \uac04\uc5d0 \uc815\uaddc\uc2dd\uc5d0 \ub9e4\uce6d\ub418\ub294 \ud328\ud134\uc774 \uc788\uc73c\uba74 \uc544\ub798\ucc98\ub7fc \uc791\ub3d9\uc744 \uc911\uc9c0\uc2dc\ud0a8\ub2e4. \ud558\uc9c0\ub9cc WAF\uc758 \uacbd\uc6b0\uc640 \ub9c8\ucc2c\uac00\uc9c0\ub85c \uc720\uc800\uc778\ud48b %c5%bf \uc640 HTTP Response \uc5d0\uc11c\uc758 “S” \ub97c XSS \ud544\ud130\uc5d0\uc11c \uac19\ub2e4\uace0 \uac80\uc99d\ud560 \uc218 \uc788\uc744\uae4c? \ud14c\uc2a4\ud2b8\ud574\ubcf8 \uacb0\uacfc\ub294 \uc544\ub798\uc640 \uac19\ub2e4. MS \uacc4\uc5f4\uc758 \ube0c\ub77c\uc6b0\uc800\uc5d0\uc11c\ub9cc \ud544\ud130\uac00 \ub418\ub294\uac83\uc744 \ud655\uc778\ud560 \uc218 \uc788\ub2e4. \ub2e4\ub9cc \ud14c\uc2a4\ud2b8\ud560 \ub54c \ub0b4 Edge \ube0c\ub77c\uc6b0\uc800\uac00 \ucd5c\uc2e0\ubc84\uc804\uc774 \uc544\ub2c8\uc600\ub294\ub370, \ucd5c\uc2e0\ubc84\uc804\uc758 Edge \ube0c\ub77c\uc6b0\uc800\uc5d0\ub294 XSS \ud544\ud130\uac00 \uc81c\uac70\ub418\uc5c8\ub2e4. (https:\/\/blogs.windows.com\/windowsexperience\/2018\/07\/25\/announcing-windows-10-insider-preview-build-17723-and-build-18204\/) \uadf8\ub7ec\ubbc0\ub85c \uc0ac\uc2e4\uc0c1 IE\ub97c \uc81c\uc678\ud558\uba74 \ud574\ub2f9 \ud2b8\ub9ad\uc740 \ubaa8\ub4e0 \ube0c\ub77c\uc6b0\uc800 XSS \ud544\ud130 \uc6b0\ud68c\uc5d0 \uc545\uc6a9\ud560 \uc218 \uc788\ub2e4. python3, js, java \ub85c \uc774\ub8e8\uc5b4\uc9c4 \uc6f9\uc5b4\ud50c\ub9ac\ucf00\uc774\uc158 \uc0c1\uc5d0\uc11c \ubb38\uc790\uc5f4\uc744 \ub300\ubb38\uc790 \ud639\uc740 \uc18c\ubb38\uc790\ub85c \uac15\uc81c\ub85c \uce58\ud658\ud558\ub294 \uacbd\uc6b0\uc5d0\ub294 \ud574\ub2f9 \ud2b8\ub9ad\uc744 \uc2dc\ub3c4\ud574\ubcfc \uac00\uce58\uac00 \uc788\uc744\uac83\uc774\ub2e4.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[4],"tags":[],"_links":{"self":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/87"}],"collection":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/comments?post=87"}],"version-history":[{"count":20,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/87\/revisions"}],"predecessor-version":[{"id":122,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/87\/revisions\/122"}],"wp:attachment":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/media?parent=87"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/categories?post=87"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/tags?post=87"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}