Web Hacking

공격기법

SQL Injection

• [Special Report] 웹 취약점과 해킹 매커니즘 #5 Blind SQL Injection
• OWASP - SQL Injection

XSS, Cross-site scripting

• XSS 공격을 직접 해보면서 알아보기(dangerouslySetInnerHTML는 얼마나 위험할까?)

SSTI, Server Side Template Injection

• 웹 템플릿 엔진 기반의 SSTI 취약점 분석
• [Research & Technique] SSTI & Atlassian Confluence RCE Vulnerability (CVE-2023-22527)
• Thymeleaf 환경의 SSTI 공격사례 및 대응 방안: Template fragment와 CVE-2023-38286기반의 SSTI

LFI, Local File Inclusion

• [취약점] File Inclusion 취약점: LFI (Local File Inclusion)

RFI, Remote File Inclusion

RCE, Remote Code Execution

WebShell

EL(Expression Language) Injection at Java Spring

• EL Injection
• Expression Language Injection
• EL inejection in Spring framework
• Stefano Di Paola 등의 Expression Language Injection 보고서

Black box testings

• Black box testing basics
• Black Box Testing
• What is Black Box Testing? Techniques, Types and Examples

CVE 관련

Search Tools

• Metasploit
• SearchSploit
  • [칼리리눅스 모의 해킹] 13. 취약점 평가 - Searchsploit 활용 컴퓨터 취약점 찾기(nmap 연계)
• OWASP Depndency-Check
  • dependency-check.sh --project "MyWebApp" --scan .

in Python

• Arbitrary Code Execution in Pillow / CVE-2023-50447
  • AhnLab - python pillow 패키지 보안 업데이트 권고 (CVE-2023-50447, CVE-2022-22817)

in Java Spring

• Spring 제품 보안 업데이트 권고(CVE-2024-38816)
  • NIST - CVE-2024-38816
  • Spring - CVE-2024-38816: Path traversal vulnerability in functional web frameworks

Tools

• ZAP
  • OWASP-ZAP 도구
• sqlmap
  • sqlmap: SQL 인젝션 테스트 자동화 툴
• nmap
  • [Network/Tools] NMAP 정의 및 설치/사용법