SlideShare a Scribd company logo

Shellshock 威脅案例

Shaolin Hsu
Shaolin Hsu

This document provides a case study on Shellshock and discusses various ways it can be exploited including through CGI scripts, SSH servers, and email servers. It analyzes the vulnerability in different operating systems and recommends patching systems and monitoring networks to prevent attacks.

Internet
1 of 44
Download to read offline
)*5$0/ⶳయფ⫨Ⲣਫ਼ 4IFMMTIPDLઅ⓮ᑂΩ $BTF4UVEZPG4IFMMTIPDL CZTIBPMJO
2 TIBPMJO ௢Ꮛ TIBPMJO!EFWDPSF
3 4IFMM4IPDLମ▕֞ᴎ⾓Ք⿏⎛⭉⑸
4 #BTI㙪ᮭ4IFMMTIPDLᦡᡂ㦎֞ᴎۃዾ⎛↫Ўᐎࣞ㏱ۗᙜ
HFOEB 4IFMMTIPDLأྤᇓ⯁ ᓪђⲄ፧ ዗ኄчᷗ$(*ỉ⎛㔄Ўᐎࣞ ๲⑸ྻ࿞%)$1Ўᐎࣞ࿪ᒜ⿏⎸чᷗ⓱ ␟⿧(JU4VCWFSTJPOЎᐎࣞỉTIFMM㏗ؕ ዗ኄ.BJMЎᐎࣞ ऱၥ΍⿬ ಉ⍓ 5
6 أྤᇓ⯁
ᶁ਴ⴳዾٛͧ₵ધ఍Ϳ() { :;}; ᛦ㘵CBTIⱜᶁ਴ⴳዾ᫗ጫ᠎ిݥ क़₵ધ఍Ϳ໏ᆵϪ࿞ᅅϝಁᐆ⬦ৎ⫤ () { :;}; echo vulnerable 7 ௠⫀␢ 4IFMMTIPDLᔘ๭ ༓༶ႝ̴
8 ਦͺⲎ࿬ሯᇜ ๏⬜ӷӜ⊉㡯 㘓ా࿅⽽᠎㦑 ტؐय़ጫ౲֜ᶁ਴ⴳዾ ტؐय़ጫރܛCBTI
9 ᓪђⲄ፧
10 ᑂΩ⯟኿ ߑα⌍⍮⇜ܮ዗ኄᔜϨ 㘓ాܟϞ༢㣉؍ᷗ
11 ᓪђ͡ ዗ኄчᷗ$(*ỉ⎛㔄Ўᐎࣞ
12 Ξᴰ$(*᳚ঋˤͥ፦࠵ ᔜϨ͡㦑ᶁ਴ⴳዾ )551)FBEFS֝౎ᐆఎ֜ᶁ਴ⴳዾ ᔜϨΧ㦑ৎ⫤CBTI ᐊαᆵܔᐥ⻳፽CBTITIFMMTDSJQU႙፽֦ఇ ℨรᐊރܛؐCBTI
13 -BOHVBHF 7VMOFSBCMF'VODUJPO 1FSM FYFD EBUFEFWOVMM PQFO 4)--4)0$, ]EBUFEFWOVMM TZTUFN EBUFEFWOVMM QSJOUAEBUFEFWOVMMA 1)1 FYFD EBUF TZTUFN EBUF NC@TFOE@NBJM 1ZUIPO PTTZTUFN EBUF TVCQSPDFTTDBMM EBUF TIFMM5SVF TVCQSPDFTT1PQFO EBUF TIFMM5SVF 3VCZ AEBUFA FYFDEBUF TZTUFNEBUF
14 DVSM ^FDIPCJODBUFUDQBTTXEIUUQUBSHFU ዗ኄḅ㒘Ⴆॎ
16 㔃கਦͺդᴰ ࡬ね Ŏ ܋໔⌍⍮ኆЪᛈ㏗ য໏㍫ Ŏ ↦܋ࠎᖱⶳጓɗᐆ߉ⶳጓ Ŏ #PUOFU $$TFSWFS #PU Ŏ ⹠ᑡ Ŏ ዗ኄ֝⎛ ŏ
17 㔃கਦͺդᴰ Ŏ %FOJBMPG4FSWJDF Ŏ Ŏ ㍱᳐⇌ FKFDU CFFQ Ŏ Ŏ ᎣᣳὈ᷒ ฆ༄ᏼጥ Ŏ ^CJOTMFFQ]TCJOTMFFQ]VTSCJOTMFFQ ^CJOFKFDU ^FDIPF=B ^ZVNZVQEBUFCBTIBQUHFUZVQEBUFCBTISFCPPU
خ㌆㡯 } ⋴⶷⮇ў㎄഻஥ዄ⪁๲ᵛ ⼡഻୥ࢯኅ⋴⶷⮇ў˒ 18 $(*ළͣⱽ㐩 Ŏ Ἅأ⿶↸዗ኄỉગష Ŏ 㘓ాώक़ಅტᦡᡂͻ Ŏ 71/ Ŏ 8FCDDFMFSBUPS Ŏ /4 Ŏ .BJMTFSWFS FUDŏ
Ṫ㟏 Ϯᖱ᫗☱භЎᐎࣞɗධЪ↫ɗҠς㑒 ●ᏼጥCBTI㦎۟໅໅༚ḂΤ⎛⹜ⰬԆ ⋴⶷⮇ўṦպ̥ዕ㖉خ㌆⏻
20 ∺ђ㦑⎛⹜ⰬԆ܌ؐ 4IFMMTIPDL຺㔂
2/1Ӷٷ٣஠ቖᇨ ⍮Ⱅⶳጓ ֞ܠ2/1чᷗ⓱ QPSUPOMZ ֤ᐊܠ/4 ܠώक़㕚㐖ͻ ܌౉ᝒ᲻㦑 21 ഀፄቭϘส ጚ㍛㐷㋳˅
ͅᔉ㑊㌆ ⾾⿧⎛⹜ⰬԆỉᦡᡂ؍ᷗ㦎 㘓ా⸬Ϟᦉ⾾Ϯᖱ֝ざ⎛⹜ ㌷ʾֲ㍙㡽ˎ㎄ဌ።⋴⶷⮇ў⿂።QBUDIٶʾ
23 ᓪђΧ ๲⑸ྻ࿞%)$1Ўᐎࣞ࿪ᒜ⿏⎸чᷗ⓱
24 %)$1கဆℑ ᔜϨ͡㦑ᶁ਴ⴳዾ %)$1ЎᐎࣞԖ֜΍܃ዾ EEJUJPOBM0QUJPO ᐆ⬦౲ؐᶁ਴ⴳዾͻ ᔜϨΧ㦑ৎ⫤CBTI ᒙα%)$1ాႮ↸ᐆԖᅅϝ⍤CBTIৎ⫤
26 各作業系統 DHCP 連線受影響之概況ᐄ໏᣼ⱒᎇ㍹㦑 04 7FSTJPO 7VMOFSBCMF $FOU04 :4 %FCJBO :4 'FEPSB :4 6CVOUV -54 :4 6CVOUV -54 :4 OESPJE /0 QQMFJ04 /0 'SFF#4% /0 (FOUPP /0 මҎ໢ -JOVY.JOU ʼn2JBOBŊ$JOOBNPO /0 -JOVY.JOU %FCJBO$JOOBNPO /0 .BD049 /0 PQFO464 /0 4ZOPMPHZ VQEBUF /0 මҎ໢
27 㔃கਦͺդᴰ Ŏ ᦉ⾾֝⎛ क़⬦዗㏱ỉᙜࣞͧ๲⑸ྻ࿞%)$1 Ўᐎࣞ ể⾵ᛦ㘵Ⱆ⥣ⴸ֝⎛Ⴔᐊᙜࣞጩ⎸ ֝⎛ᙜࣞㄒጥⲚឡ*1㗣ͧͻᄪ ᦉ⾾ગㄔ֝⎛ᙜࣞ ⿆෤፽ᐄ㚙ᛈ㏗
28 ᓪђͦ ␟⿧(JU4VCWFSTJPOЎᐎࣞỉTIFMM㏗ؕ
29 (JU4VCWFSTJPO4FSWFSPWFS44) Ŏ ܌ؐ㏗ؕ㦎ᬔ᠎ӛગざ׷ᅅϝ ᷗ'PSDF$PNNBOE㏗ؕчᷗ⓱
30 44)ͥ፦࠵ ᔜϨ͡㦑ᶁ਴ⴳዾ TTINZTTITFSWFSDPNNBOE ! 44)⿏⎸ᎇDPNNBOE܃ዾᐆ⬦ఎ႔ᶁ਴ⴳ ዾ44)@03*(*/-@$0../% ᔜϨΧ㦑ৎ⫤CBTI ⌍⍮㔑ⰬTIFMM᫗CBTIᎇ㦎⿏⎸໏☱ٳࠝٳ CBTI
31 ዗ኄḅ㒘Ⴆॎ
32 㔃கਦͺդᴰ Ŏ ␟⿧44)Ўᐎࣞ㏗ؕ Ŏ ܋໔⌍⍮ኆЪᛈ㏗ য໏㍫ Ŏ ↦܋ɗ#PUOFU ܲأ
33 ᓪђभ ዗ኄ.BJMЎᐎࣞ RNBJM
34 RNBJMͥ፦࠵ ᔜϨ͡㦑ᶁ਴ⴳዾ ౔Ҋᎇઑ㔈ዾӇఎ႔ᶁ਴ⴳዾ㦎ђ૏౔Ϩ⓱ ᔜϨΧ㦑ৎ⫤CBTI ૏ᑷЎᐎࣞⰬ఺क़౔Ϩᎇчᷗ঍ॣҊ⿧ᩕ⼌ 㚕ɗぢϨ؃⫵∫ᴑ⼌㚕⇳ᷗؐCBTIỉℨ๿㦎 ಙܟϞ؍ᷗ
影⽚片網址 http://youtu.be/fxJBmruP0wQ
36 㔃கਦͺդᴰ Ŏ ܋໔⌍⍮ኆЪᛈ㏗ য໏㍫ Ŏ ↦܋ႴᐊぢϨⶳጓ Ŏ #PUOFUɗ዗ኄ֝⎛ŏ ܲأ
௠ቒᱪ ዗ኄчᷗ$(*ỉ⎛㔄Ўᐎࣞ ๲⑸ྻ࿞%)$1Ўᐎࣞ࿪ᒜ⿏⎸чᷗ⓱ ␟⿧(JU4VCWFSTJPOЎᐎࣞỉTIFMM㏗ؕ ዗ኄ.BJMЎᐎࣞ RNBJM 37
38 ऱၥ΍⿬
39 ᏼጥ⌍⍮CBTI☶ᐄጥᯕ㦎ͷ㎬᠝፽݇ ᐊ໏⑂ᏼጥ㦊4IFMMTIPDLႪ᪪ώक़๮⑂㦋 ⿧ᩕю᥃㦊*15BCMFT *%4 8'㦋㦎㏄ ∺⿶↸዗ኄ ⌍⍮ຘڠ㦎㏈ኅྻ࿞ᅅϝৎ⫤㦎ђ૏ч ᷗ4-JOVY
40 4-JOVY㏈ኅчᷗྻ࿞ᅅϝ
41 ಉ⍓
42 㘓ా؍ᷗ4IFMMTIPDLᦡᡂ܋໔⌍⍮ኆЪᛈ㏗ɘ ⾾⿧$(*ɗ%)$1ɗ44)⇳⿁໑࿪ᒜɘ Ἅأ㘓ాώक़ಅტ֦ϒ؍ᷗ㣟㦎4IFMMTIPDL ମ▕ᓪђ〔ᐆᏼઑɘ ͡α⎛⹜ⰬԆ૏/4෤⬦чᷗ⓱༚Ḃ㦎፽㚙 ۗ㐖⒢㦎ⲚϮᖱٛຘᚇᒩɘ ๲ⴢႴᐊVOYᶁ਴ᷔ޹↧ۙᏼጥCBTIɘ 㔑Ⱅᐆᐊᏼઑ㘓ాჶ֜CBTI۱ଁ⁃ᚇ⯏ɘ
5IBOLT
2㦈ͨہ✝
Shellshock 威脅案例

Recommended

Python + Hive on AWS EMR で貧者のログサマリ
Python + Hive on AWS EMR で貧者のログサマリPython + Hive on AWS EMR で貧者のログサマリ
Python + Hive on AWS EMR で貧者のログサマリ
Akira Chiku
 
G2 bsc commissioning manual release b7.2
G2 bsc commissioning manual release b7.2G2 bsc commissioning manual release b7.2
G2 bsc commissioning manual release b7.2
chungminh1108
 
Calea spre Parteneriat - Programul Introducing Broker
Calea spre Parteneriat - Programul Introducing BrokerCalea spre Parteneriat - Programul Introducing Broker
Calea spre Parteneriat - Programul Introducing BrokerSSIF Romcapital SA
 
Gpc 488 depresion_ap_paciente-1
Gpc 488 depresion_ap_paciente-1Gpc 488 depresion_ap_paciente-1
Gpc 488 depresion_ap_paciente-1
juan luis delgadoestévez
 
Morning walker-infra-chi-walker
Morning walker-infra-chi-walkerMorning walker-infra-chi-walker
Morning walker-infra-chi-walkerhealthshopfor
 
Mecanismos de falla
Mecanismos de fallaMecanismos de falla
Mecanismos de falla
Edy Huanca
 
SEO - Optimizacion en buscadores
SEO - Optimizacion en buscadoresSEO - Optimizacion en buscadores
SEO - Optimizacion en buscadoresKanvasMedia
 
Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011
Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011
Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011
John Ford
 

Recommended

Python + Hive on AWS EMR で貧者のログサマリ
Python + Hive on AWS EMR で貧者のログサマリPython + Hive on AWS EMR で貧者のログサマリ
Python + Hive on AWS EMR で貧者のログサマリ
Akira Chiku
 
G2 bsc commissioning manual release b7.2
G2 bsc commissioning manual release b7.2G2 bsc commissioning manual release b7.2
G2 bsc commissioning manual release b7.2
chungminh1108
 
Calea spre Parteneriat - Programul Introducing Broker
Calea spre Parteneriat - Programul Introducing BrokerCalea spre Parteneriat - Programul Introducing Broker
Calea spre Parteneriat - Programul Introducing BrokerSSIF Romcapital SA
 
Gpc 488 depresion_ap_paciente-1
Gpc 488 depresion_ap_paciente-1Gpc 488 depresion_ap_paciente-1
Gpc 488 depresion_ap_paciente-1
juan luis delgadoestévez
 
Morning walker-infra-chi-walker
Morning walker-infra-chi-walkerMorning walker-infra-chi-walker
Morning walker-infra-chi-walkerhealthshopfor
 
Mecanismos de falla
Mecanismos de fallaMecanismos de falla
Mecanismos de falla
Edy Huanca
 
SEO - Optimizacion en buscadores
SEO - Optimizacion en buscadoresSEO - Optimizacion en buscadores
SEO - Optimizacion en buscadoresKanvasMedia
 
Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011
Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011
Security: The Great WordPress Lockdown - WordCamp Melbourne - February 2011
John Ford
 
HITCON TALK ATM 金融攻擊事件解析
HITCON TALK ATM 金融攻擊事件解析HITCON TALK ATM 金融攻擊事件解析
HITCON TALK ATM 金融攻擊事件解析
Hacks in Taiwan (HITCON)
 
HITCON TALK 技術解析 SWIFT Network 攻擊
HITCON TALK 技術解析 SWIFT Network 攻擊 HITCON TALK 技術解析 SWIFT Network 攻擊
HITCON TALK 技術解析 SWIFT Network 攻擊
Hacks in Taiwan (HITCON)
 
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
Shang Wei Li
 
Android Hook - Xposed Framework (Elven Liu)
Android Hook - Xposed Framework (Elven Liu)Android Hook - Xposed Framework (Elven Liu)
Android Hook - Xposed Framework (Elven Liu)
HITCON GIRLS
 
被遺忘的資訊洩漏 / Information Leakage in Taiwan
被遺忘的資訊洩漏 / Information Leakage in Taiwan被遺忘的資訊洩漏 / Information Leakage in Taiwan
被遺忘的資訊洩漏 / Information Leakage in Taiwan
Shaolin Hsu
 
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS
 
HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS: CTF 介紹 (小魚&念奇)HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS
 
HITCON GIRLS Malware Analysis
HITCON GIRLS Malware AnalysisHITCON GIRLS Malware Analysis
HITCON GIRLS Malware Analysis
Hacks in Taiwan (HITCON)
 
HITCON CTF 2016導覽
HITCON CTF 2016導覽HITCON CTF 2016導覽
HITCON CTF 2016導覽
HITCON GIRLS
 
CTF 經驗分享
CTF 經驗分享CTF 經驗分享
CTF 經驗分享
Hacks in Taiwan (HITCON)
 
HITCON TALK 台灣駭客協會年度活動簡介
HITCON TALK 台灣駭客協會年度活動簡介HITCON TALK 台灣駭客協會年度活動簡介
HITCON TALK 台灣駭客協會年度活動簡介
Hacks in Taiwan (HITCON)
 
HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS 成大講座 密碼學(阿毛)HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS
 
HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS 成大講座 惡意程式分析(Turkey)HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS
 
HITCON TALK 產業視野下的 InfoSec
HITCON TALK 產業視野下的 InfoSecHITCON TALK 產業視野下的 InfoSec
HITCON TALK 產業視野下的 InfoSec
Hacks in Taiwan (HITCON)
 
HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS 成大講座 基礎知識(蜘子珣)HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS
 
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Yuki Koyama
 
Biw learning in the new normal
Biw learning in the new normalBiw learning in the new normal
Biw learning in the new normal
JohnMoor5
 
GraphView のすゝめ / Introduction of GraphView
GraphView のすゝめ / Introduction of GraphViewGraphView のすゝめ / Introduction of GraphView
GraphView のすゝめ / Introduction of GraphView
Mori Tetsuya
 
Coding Guidelines
Coding GuidelinesCoding Guidelines
Coding GuidelinesRichard van Delft
 
Go for web
Go for webGo for web
Go for web
Weng Wei
 
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
mayank272369
 
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
ikeyat
 

More Related Content

Viewers also liked

HITCON TALK ATM 金融攻擊事件解析
HITCON TALK ATM 金融攻擊事件解析HITCON TALK ATM 金融攻擊事件解析
HITCON TALK ATM 金融攻擊事件解析
Hacks in Taiwan (HITCON)
 
HITCON TALK 技術解析 SWIFT Network 攻擊
HITCON TALK 技術解析 SWIFT Network 攻擊 HITCON TALK 技術解析 SWIFT Network 攻擊
HITCON TALK 技術解析 SWIFT Network 攻擊
Hacks in Taiwan (HITCON)
 
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
Shang Wei Li
 
Android Hook - Xposed Framework (Elven Liu)
Android Hook - Xposed Framework (Elven Liu)Android Hook - Xposed Framework (Elven Liu)
Android Hook - Xposed Framework (Elven Liu)
HITCON GIRLS
 
被遺忘的資訊洩漏 / Information Leakage in Taiwan
被遺忘的資訊洩漏 / Information Leakage in Taiwan被遺忘的資訊洩漏 / Information Leakage in Taiwan
被遺忘的資訊洩漏 / Information Leakage in Taiwan
Shaolin Hsu
 
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS
 
HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS: CTF 介紹 (小魚&念奇)HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS
 
HITCON GIRLS Malware Analysis
HITCON GIRLS Malware AnalysisHITCON GIRLS Malware Analysis
HITCON GIRLS Malware Analysis
Hacks in Taiwan (HITCON)
 
HITCON CTF 2016導覽
HITCON CTF 2016導覽HITCON CTF 2016導覽
HITCON CTF 2016導覽
HITCON GIRLS
 
CTF 經驗分享
CTF 經驗分享CTF 經驗分享
CTF 經驗分享
Hacks in Taiwan (HITCON)
 
HITCON TALK 台灣駭客協會年度活動簡介
HITCON TALK 台灣駭客協會年度活動簡介HITCON TALK 台灣駭客協會年度活動簡介
HITCON TALK 台灣駭客協會年度活動簡介
Hacks in Taiwan (HITCON)
 
HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS 成大講座 密碼學(阿毛)HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS
 
HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS 成大講座 惡意程式分析(Turkey)HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS
 
HITCON TALK 產業視野下的 InfoSec
HITCON TALK 產業視野下的 InfoSecHITCON TALK 產業視野下的 InfoSec
HITCON TALK 產業視野下的 InfoSec
Hacks in Taiwan (HITCON)
 
HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS 成大講座 基礎知識(蜘子珣)HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS
 

Viewers also liked (15)

HITCON TALK ATM 金融攻擊事件解析
HITCON TALK ATM 金融攻擊事件解析HITCON TALK ATM 金融攻擊事件解析
HITCON TALK ATM 金融攻擊事件解析
 
HITCON TALK 技術解析 SWIFT Network 攻擊
HITCON TALK 技術解析 SWIFT Network 攻擊 HITCON TALK 技術解析 SWIFT Network 攻擊
HITCON TALK 技術解析 SWIFT Network 攻擊
 
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
HITCON GIRLS_惡意程式分析介紹_in 成功大學_by Turkey_2016.04.28
 
Android Hook - Xposed Framework (Elven Liu)
Android Hook - Xposed Framework (Elven Liu)Android Hook - Xposed Framework (Elven Liu)
Android Hook - Xposed Framework (Elven Liu)
 
被遺忘的資訊洩漏 / Information Leakage in Taiwan
被遺忘的資訊洩漏 / Information Leakage in Taiwan被遺忘的資訊洩漏 / Information Leakage in Taiwan
被遺忘的資訊洩漏 / Information Leakage in Taiwan
 
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
HITCON GIRLS: Android 滲透測試介紹 (Elven Liu)
 
HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS: CTF 介紹 (小魚&念奇)HITCON GIRLS: CTF 介紹 (小魚&念奇)
HITCON GIRLS: CTF 介紹 (小魚&念奇)
 
HITCON GIRLS Malware Analysis
HITCON GIRLS Malware AnalysisHITCON GIRLS Malware Analysis
HITCON GIRLS Malware Analysis
 
HITCON CTF 2016導覽
HITCON CTF 2016導覽HITCON CTF 2016導覽
HITCON CTF 2016導覽
 
CTF 經驗分享
CTF 經驗分享CTF 經驗分享
CTF 經驗分享
 
HITCON TALK 台灣駭客協會年度活動簡介
HITCON TALK 台灣駭客協會年度活動簡介HITCON TALK 台灣駭客協會年度活動簡介
HITCON TALK 台灣駭客協會年度活動簡介
 
HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS 成大講座 密碼學(阿毛)HITCON GIRLS 成大講座 密碼學(阿毛)
HITCON GIRLS 成大講座 密碼學(阿毛)
 
HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS 成大講座 惡意程式分析(Turkey)HITCON GIRLS 成大講座 惡意程式分析(Turkey)
HITCON GIRLS 成大講座 惡意程式分析(Turkey)
 
HITCON TALK 產業視野下的 InfoSec
HITCON TALK 產業視野下的 InfoSecHITCON TALK 產業視野下的 InfoSec
HITCON TALK 產業視野下的 InfoSec
 
HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS 成大講座 基礎知識(蜘子珣)HITCON GIRLS 成大講座 基礎知識(蜘子珣)
HITCON GIRLS 成大講座 基礎知識(蜘子珣)
 

Similar to Shellshock 威脅案例

Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Yuki Koyama
 
Biw learning in the new normal
Biw learning in the new normalBiw learning in the new normal
Biw learning in the new normal
JohnMoor5
 
GraphView のすゝめ / Introduction of GraphView
GraphView のすゝめ / Introduction of GraphViewGraphView のすゝめ / Introduction of GraphView
GraphView のすゝめ / Introduction of GraphView
Mori Tetsuya
 
Go for web
Go for webGo for web
Go for web
Weng Wei
 
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
mayank272369
 
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
ikeyat
 
Koşuyolu Koru Evleri - Eng.pdf
Koşuyolu Koru Evleri - Eng.pdfKoşuyolu Koru Evleri - Eng.pdf
Koşuyolu Koru Evleri - Eng.pdf
Listing Turkey
 
モダンAngularJS @ GDG中国2014.12.6
モダンAngularJS @ GDG中国2014.12.6モダンAngularJS @ GDG中国2014.12.6
モダンAngularJS @ GDG中国2014.12.6
Okuno Kentaro
 
Better ties better sales
Better ties better salesBetter ties better sales
Better ties better sales
JohnMoor5
 
Ttake Mandrini 01
Ttake Mandrini 01Ttake Mandrini 01
Ttake Mandrini 01
Angelo Belgeri
 
表現学習時代の生成語彙論ことはじめ
表現学習時代の生成語彙論ことはじめ表現学習時代の生成語彙論ことはじめ
表現学習時代の生成語彙論ことはじめ
Yuya Unno
 
ASSEMBLEA GENERALE ANDIL 2014
ASSEMBLEA GENERALE ANDIL 2014ASSEMBLEA GENERALE ANDIL 2014
ASSEMBLEA GENERALE ANDIL 2014
ANDIL_laterizi
 
What's New in Spring Boot 2.5
What's New in Spring Boot 2.5What's New in Spring Boot 2.5
What's New in Spring Boot 2.5
ikeyat
 
Dennis John Paul of NZ Struc
Dennis John Paul of NZ StrucDennis John Paul of NZ Struc
Dennis John Paul of NZ Struc
FingerPointer
 
GPME - Administração e análise de custos
GPME - Administração e análise de custosGPME - Administração e análise de custos
GPME - Administração e análise de custosRicardo Barboza da Silva
 
Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016Guido Pezzin
 
Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016Roberto Mircoli
 

Similar to Shellshock 威脅案例 (20)

Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
Crowd-Powered Parameter Analysis for Visual Design Exploration (UIST 2014)
 
Biw learning in the new normal
Biw learning in the new normalBiw learning in the new normal
Biw learning in the new normal
 
GraphView のすゝめ / Introduction of GraphView
GraphView のすゝめ / Introduction of GraphViewGraphView のすゝめ / Introduction of GraphView
GraphView のすゝめ / Introduction of GraphView
 
Coding Guidelines
Coding GuidelinesCoding Guidelines
Coding Guidelines
 
Go for web
Go for webGo for web
Go for web
 
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
&DPO $SPTT 4FDUJPO.VMUJQMF 3FHSFTTJPO1SPG +BTPO .docx
 
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
[JSUG SpringOne 2021 報告会]見えてきたSpring 6.0の方向性
 
Koşuyolu Koru Evleri - Eng.pdf
Koşuyolu Koru Evleri - Eng.pdfKoşuyolu Koru Evleri - Eng.pdf
Koşuyolu Koru Evleri - Eng.pdf
 
モダンAngularJS @ GDG中国2014.12.6
モダンAngularJS @ GDG中国2014.12.6モダンAngularJS @ GDG中国2014.12.6
モダンAngularJS @ GDG中国2014.12.6
 
Better ties better sales
Better ties better salesBetter ties better sales
Better ties better sales
 
Ttake Mandrini 01
Ttake Mandrini 01Ttake Mandrini 01
Ttake Mandrini 01
 
表現学習時代の生成語彙論ことはじめ
表現学習時代の生成語彙論ことはじめ表現学習時代の生成語彙論ことはじめ
表現学習時代の生成語彙論ことはじめ
 
ASSEMBLEA GENERALE ANDIL 2014
ASSEMBLEA GENERALE ANDIL 2014ASSEMBLEA GENERALE ANDIL 2014
ASSEMBLEA GENERALE ANDIL 2014
 
What's New in Spring Boot 2.5
What's New in Spring Boot 2.5What's New in Spring Boot 2.5
What's New in Spring Boot 2.5
 
Dennis John Paul of NZ Struc
Dennis John Paul of NZ StrucDennis John Paul of NZ Struc
Dennis John Paul of NZ Struc
 
Thesis
ThesisThesis
Thesis
 
US-40
US-40US-40
US-40
 
GPME - Administração e análise de custos
GPME - Administração e análise de custosGPME - Administração e análise de custos
GPME - Administração e análise de custos
 
Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016
 
Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016Affari e finanza pag 39 del 28 novembre 2016
Affari e finanza pag 39 del 28 novembre 2016
 

Recently uploaded

guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...
Rogerio Filho
 
Comptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guideComptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guide
GTProductions1
 
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
3ipehhoa
 
Italy Agriculture Equipment Market Outlook to 2027
Italy Agriculture Equipment Market Outlook to 2027Italy Agriculture Equipment Market Outlook to 2027
Italy Agriculture Equipment Market Outlook to 2027
harveenkaur52
 
test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...
Arif0071
 
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdfJAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
Javier Lasa
 
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdf
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdfMeet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdf
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdf
Florence Consulting
 
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
ufdana
 
How to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptxHow to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptx
Gal Baras
 
Bài tập unit 1 English in the world.docx
Bài tập unit 1 English in the world.docxBài tập unit 1 English in the world.docx
Bài tập unit 1 English in the world.docx
nhiyenphan2005
 
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptxBridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Brad Spiegel Macon GA
 
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC
 
This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!
nirahealhty
 
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
3ipehhoa
 
1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...
JeyaPerumal1
 
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shopHistory+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
laozhuseo02
 
Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...
Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...
Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...
CIOWomenMagazine
 
The+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptxThe+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptx
laozhuseo02
 
Latest trends in computer networking.pptx
Latest trends in computer networking.pptxLatest trends in computer networking.pptx
Latest trends in computer networking.pptx
JungkooksNonexistent
 
一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理
一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理
一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理
keoku
 

Recently uploaded (20)

guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...
 
Comptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guideComptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guide
 
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
 
Italy Agriculture Equipment Market Outlook to 2027
Italy Agriculture Equipment Market Outlook to 2027Italy Agriculture Equipment Market Outlook to 2027
Italy Agriculture Equipment Market Outlook to 2027
 
test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...
 
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdfJAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
 
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdf
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdfMeet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdf
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdf
 
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
 
How to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptxHow to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptx
 
Bài tập unit 1 English in the world.docx
Bài tập unit 1 English in the world.docxBài tập unit 1 English in the world.docx
Bài tập unit 1 English in the world.docx
 
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptxBridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
 
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
 
This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!
 
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
 
1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...
 
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shopHistory+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
 
Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...
Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...
Internet of Things in Manufacturing: Revolutionizing Efficiency & Quality | C...
 
The+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptxThe+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptx
 
Latest trends in computer networking.pptx
Latest trends in computer networking.pptxLatest trends in computer networking.pptx
Latest trends in computer networking.pptx
 
一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理
一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理
一比一原版(SLU毕业证)圣路易斯大学毕业证成绩单专业办理
 

Shellshock 威脅案例