{"id":41019,"date":"2021-07-26T12:56:08","date_gmt":"2021-07-26T05:56:08","guid":{"rendered":"http:\/\/httl.com.vn\/wiki\/pwnable-la-gi\/"},"modified":"2021-07-26T12:56:08","modified_gmt":"2021-07-26T05:56:08","slug":"pwnable-la-gi","status":"publish","type":"post","link":"https:\/\/httl.com.vn\/wiki\/pwnable-la-gi\/","title":{"rendered":"Pwnable l\u00e0 g\u00ec"},"content":{"rendered":"<\/p>\n
\n
<\/div>\n

Gi\u1edbi thi\u1ec7u v\u1ec1 Pwnable <\/h2>\n

Pwnable hay vi\u1ebft t\u1eaft l\u00e0 pwn, l\u00e0 m\u1ed9t h\u00ecnh th\u1ee9c thi d\u1ea1ng tr\u1ea3 l\u1eddi theo t\u1eebng ch\u1ee7 \u0111\u1ec1 (Jeopardy) trong cu\u1ed9c thi CTF (Capture the flag). <\/p>\n

Pwn t\u1eadp trung v\u00e0o c\u00e1c k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng v\u00e0o h\u1ec7 th\u1ed1ng, ph\u00e1t hi\u1ec7n v\u00e0 khai th\u00e1c c\u00e1c l\u1ed7 h\u1ed5ng tr\u00ean c\u00e1c n\u1ec1n t\u1ea3ng h\u1ec7 \u0111i\u1ec1u h\u00e0nh Linux & Windows. Trong kho\u1ea3ng th\u1eddi gian g\u1ea7n \u0111\u00e2y, c\u00e1c cu\u1ed9c thi CTF l\u1edbn nh\u01b0 DEFCON, HITCON, .. ph\u00e1t tri\u1ec3n h\u00ecnh th\u1ee9c thi pwn k\u1ebft h\u1ee3p v\u1edbi c\u00e1c ch\u1ee7 \u0111\u1ec1 kh\u00e1c nh\u01b0 RE (Reverse engineering), Web, Crytography, Forensic, .. \u0111\u1ec3 l\u00e0m \u0111a d\u1ea1ng h\u00f3a \u0111\u1ec1 thi \u0111\u1ed3ng th\u1eddi t\u0103ng t\u00ednh th\u1ef1c t\u1ebf cho \u0111\u1ec1 thi.<\/p>\n

Pwn kh\u00f3 hay d\u1ec5 <\/h2>\n

Theo m\u00ecnh th\u00ec n\u1ebfu hi\u1ec3u r\u00f5 v\u1ec1 c\u00e1c ki\u1ebfn th\u1ee9c c\u01a1 b\u1ea3n nh\u01b0 m\u00ecnh \u0111\u00e3 n\u00eau \u1edf ph\u1ea7n gi\u1edbi thi\u1ec7u th\u00ec s\u1ebd kh\u00f4ng kh\u00f3 \u0111\u1ec3 h\u1ecdc pwn. Kh\u00f3 \u1edf \u0111\u00e2y l\u00e0 kinh nghi\u1ec7m, \u0111\u1ed1i v\u1edbi nh\u1eefng ng\u01b0\u1eddi \u0111\u00e3 ch\u01a1i m\u1ed9t th\u1eddi gian d\u00e0i v\u1edbi pwn th\u00ec h\u1ecd s\u1ebd t\u1ef1 nghi\u1ec7m ra nh\u1eefng d\u1ea1ng \u0111\u1ec1, nh\u1eefng trick \u0111\u1ec3 ph\u00e2n t\u00edch nhanh d\u1ea1ng \u0111\u1ec1 \u0111\u00f3. Ngo\u00e0i ra c\u00f2n ph\u1ea3i d\u1ef1a v\u00e0o ng\u01b0\u1eddi ra \u0111\u1ec1, n\u1ebfu m\u1ed9t ng\u01b0\u1eddi ra \u0111\u1ec1 hay th\u00ec ng\u01b0\u1eddi \u0111\u00f3 s\u1ebd d\u1eabn d\u1eaft m\u00ecnh \u0111i \u0111\u00fang h\u01b0\u1edbng \u0111\u1ebfn flag m\u00e0 h\u1ecd mu\u1ed1n, c\u00f2n nh\u1eefng ng\u01b0\u1eddi ra \u0111\u1ec1 d\u1edf th\u00ec ng\u01b0\u1ee3c l\u1ea1i, khi\u1ebfn m\u00ecnh r\u1ed1i r\u1eafm trong qu\u00e1 tr\u00ecnh l\u00e0m c\u0169ng nh\u01b0 kh\u00f4ng hi\u1ec3u \u0111\u1ec1 n\u00e0y \u0111ang mu\u1ed1n n\u00f3i v\u1ec1 v\u1ea5n \u0111\u1ec1 g\u00ec >”<\/p>\n

\u1ee8ng d\u1ee5ng th\u1ef1c t\u1ebf <\/h2>\n

M\u00ecnh ch\u01b0a \u0111i l\u00e0m, c\u0169ng nh\u01b0 ch\u01b0a s\u1eed d\u1ee5ng pwn trong \u1ee9ng d\u1ee5ng th\u1ef1c t\u1ebf g\u00ec nhi\u1ec1u n\u00ean nh\u1eefng g\u00ec m\u00ecnh n\u00f3i s\u1eafp t\u1edbi c\u0169ng ch\u1ec9 l\u00e0 ph\u1ecfng \u0111o\u00e1n, c\u1ed9ng th\u00eam th\u1ea5y nhi\u1ec1u ti\u1ec1n b\u1ed1i \u0111i tr\u01b0\u1edbc c\u0169ng t\u1eeb pwn m\u00e0 ph\u00e1t tri\u1ec3n l\u00ean b\u01b0\u1edbc ti\u1ebfn xa h\u01a1n. <\/p>\n

Pwn l\u00e0 nghi\u00ean c\u1ee9u c\u00e1c k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng, ph\u00e1t hi\u1ec7n v\u00e0 khai th\u00e1c c\u00e1c l\u1ed7 h\u1ed5ng tr\u00ean nhi\u1ec1u n\u1ec1n t\u1ea3ng th\u00ec tr\u01b0\u1edbc ti\u00ean, h\u1ecdc pwn th\u00ec c\u00e1c b\u1ea1n c\u00f3 th\u1ec3 b\u01b0\u1edbc \u0111i xa h\u01a1n nh\u01b0 l\u00e0 t\u00ecm ki\u1ebfm c\u00e1c l\u1ed7 h\u1ed5ng CVE, c\u00e1c l\u1ed7 h\u1ed5ng 0day, ..<\/p>\n

B\u1ea1n \u0111ang xem: Pwnable l\u00e0 g\u00ec<\/a><\/p>\n

Xem th\u00eam: C\u00e1c M\u1eabu C\u1ea7u Thang G\u1ed7 \u0110\u1eb9p Cho Nh\u00e0 \u1ed0ng \u0110\u1eb9p Hi\u1ec7n \u0110\u1ea1i T\u1ea1i H\u00e0 N\u1ed9i<\/a><\/p>\n

Xem th\u00eam: V\u1ebd Tranh Phong C\u1ea3nh \u0110\u1eb9p \u0110\u01a1n Gi\u1ea3n D\u1ec5 V\u1ebd, Pin On V\u1ebd Tranh Qu\u00ea H\u01b0\u01a1ng<\/a><\/p>\n

C\u00e1i n\u00e0y th\u00ec m\u00ecnh th\u1ea5y c\u00f3 1 ti\u1ec1n b\u1ed1i \u0111i tr\u01b0\u1edbc theo Pwn + Web v\u00e0 t\u00ecm ra c\u00e1c l\u1ed7 h\u1ed5ng CVE tr\u00ean n\u1ec1n PHP 7. <\/p>\n

Ngo\u00e0i ra, c\u0169ng c\u00f3 th\u1ec3 theo pentest, tham gia v\u00e0o pentest c\u00e1c h\u1ec7 th\u1ed1ng server, c\u00e1c h\u1ec7 th\u1ed1ng m\u00e1y t\u00ednh, .. cho c\u00e1c c\u00f4ng ty t\u1ed5 ch\u1ee9c. Vi\u1ebft ra c\u00e1c c\u00f4ng c\u1ee5 fuzzing d\u1ef1a tr\u00ean nh\u1eefng l\u1ed7 h\u1ed5ng \u0111\u00e3 bi\u1ebft.<\/p>\n

C\u0169ng c\u00f3 th\u1ec3 c\u00f3 nhi\u1ec1u v\u1ea5n \u0111\u1ec1 s\u00e2u h\u01a1n kh\u00e1c nh\u01b0ng m\u00e0 m\u00ecnh ch\u01b0a bi\u1ebft, c\u00e1c b\u1ea1n c\u0169ng c\u00f3 th\u1ec3 g\u00f3p \u00fd th\u00eam \u1edf b\u00ean d\u01b0\u1edbi comment <\/p>\n

\"*\"<\/div>\n

. <\/p>\n

T\u00f3m t\u1eaft <\/h2>\n

T\u00f3m g\u1ecdn l\u1ea1i l\u00e0 khi h\u1ecdc pwn n\u00f3i ri\u00eang hay ch\u01a1i CTF n\u00f3i chung, c\u00e1c b\u1ea1n s\u1ebd th\u1ea5y m\u1ed9t ph\u1ea7n th\u00fa v\u1ecb v\u00ec ph\u1ea3i th\u1ee9c ng\u00e0y th\u1ee9c \u0111\u00eam \u0111\u1ec3 t\u00ecm ra \u0111\u01b0\u1ee3c l\u1ed7 h\u1ed5ng hay l\u00e0 ng\u1ed3i \u0111\u1ee3i 1 team n\u00e0o \u0111\u00f3 vi\u1ebft write-up v\u00e0 nghi\u1ec7m ra “Tr\u1eddi \u01a1i, t\u1ea1i sao kh\u00f4ng ngh\u0129 ra c\u00e1ch n\u00e0y”, hay ph\u1ea3i t\u00ecm ra 1 ch\u1ed7 n\u00e0o \u0111\u00f3 \u0111\u1ec3 c\u00f3 th\u1ec3 ch\u00e8n \u0111\u01b0\u1ee3c shellcode, chi\u00eam nghi\u1ec7m \u0111\u1ee7 th\u1ee9 tr\u00ean \u0111\u1eddi v\u1ec1 h\u1ec7 th\u1ed1ng m\u00e1y t\u00ednh. <\/p>\n

2 ph\u1ea7n \u0111\u1ea7u n\u00e0y th\u00ec ch\u00e9m gi\u00f3 c\u0169ng kh\u00e1 nhi\u1ec1u r\u1ed3i, n\u00ean ph\u1ea7n sau c\u00f3 l\u1ebd c\u0169ng n\u00ean \u0111i th\u1eb3ng v\u00e0o cho \u0111\u1ee1 ch\u00e1n nh\u1ec9 . Ph\u1ea7n sau th\u00ec m\u00ecnh s\u1ebd gi\u1edbi thi\u1ec7u v\u1ec1 c\u00e1c c\u00f4ng c\u1ee5 m\u00e0 m\u00ecnh s\u1eed d\u1ee5ng \u0111\u1ec3 h\u1ed7 tr\u1ee3 trong su\u1ed1t qu\u00e1 tr\u00ecnh vi\u1ebft series, s\u1ebd c\u00f3 nh\u1eefng c\u00f4ng c\u1ee5 m\u00e0 ng\u01b0\u1eddi kh\u00e1c nh\u00ecn v\u00e0o m\u00e1y b\u1ea1n c\u00f3 c\u1ea3m gi\u00e1c “like a hacker” nh\u00ecn kh\u00e1 ng\u1ea7u . <\/p>\n

Chuy\u00ean m\u1ee5c: C\u00f4ng Ngh\u1ec7<\/a><\/div>\n","protected":false},"excerpt":{"rendered":"

Gi\u1edbi thi\u1ec7u v\u1ec1 Pwnable Pwnable hay vi\u1ebft t\u1eaft l\u00e0 pwn, l\u00e0 m\u1ed9t h\u00ecnh th\u1ee9c thi d\u1ea1ng tr\u1ea3 l\u1eddi theo t\u1eebng ch\u1ee7 \u0111\u1ec1 (Jeopardy) trong cu\u1ed9c thi CTF (Capture the flag). Pwn t\u1eadp trung v\u00e0o c\u00e1c k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng v\u00e0o h\u1ec7 th\u1ed1ng, ph\u00e1t hi\u1ec7n v\u00e0 khai th\u00e1c c\u00e1c l\u1ed7 h\u1ed5ng tr\u00ean c\u00e1c n\u1ec1n t\u1ea3ng h\u1ec7…<\/p>\n","protected":false},"author":2,"featured_media":41020,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[46],"tags":[],"_links":{"self":[{"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/posts\/41019"}],"collection":[{"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/comments?post=41019"}],"version-history":[{"count":0,"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/posts\/41019\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/media\/41020"}],"wp:attachment":[{"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/media?parent=41019"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/categories?post=41019"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/httl.com.vn\/wiki\/wp-json\/wp\/v2\/tags?post=41019"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}