[B! security] teddy-gã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

teddy-g id:teddy-g

securityã«é–¢ã™ã‚‹teddy-gã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (40)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

ãƒ‘ã‚¹ã‚ãƒ¼èªè¨¼ - Google æ¤œç´¢
ãƒ‘ã‚¹ã‚ãƒ¼ã¯ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã«ä»£ã‚ã‚‹ã‹ã‚“ãŸã‚“å®‰å…¨ãªèªè¨¼æ–¹æ³•ã§ã™ã€‚ç”Ÿä½“èªè¨¼ã‚„ãƒ‘ã‚¿ãƒ¼ãƒ³ã‚’ä½¿ã£ã¦ãƒã‚°ã‚¤ãƒ³ãŒã§ãã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã™ã€‚
teddy-g 2024/11/04
ãƒ‘ã‚¹ã‚ãƒ¼èªè¨¼ã«ã¤ã„ã¦ã®10åˆ†è§£èª¬å‹•ç”»ã€‚ã‚ã‹ã‚Šã‚„ã™ããƒã‚¤ãƒ³ãƒˆãŒçºã‚ã¦ã‚ã‚‹ã€‚å€é€Ÿã§è¦‹ãŸã‚‰5åˆ†ã§è¦‹çµ‚ã‚ã‚‹ã€‚ä¸€å›žFIDOã¨ãƒ‘ã‚¹ã‚ãƒ¼ã®è§£èª¬èªã‚“ã§ã‹ã‚‰è¦‹ãŸæ–¹ãŒãƒã‚¤ãƒ³ãƒˆãŒé ã«å…¥ã‚‹ã€‚

cybersecurity

security

phishing

encryption
ãƒªãƒ³ã‚¯
MEP Centers Aid Manufacturers on Cybersecurity
teddy-g 2020/04/05
NIST CSFã‚’è£½é€ æ¥ã«å½“ã¦ã¯ã‚ã‚‹ã¨ã“ã†ãªã‚Šã¾ã™ã‚ˆã¨ã„ã†è©±ã€‚å‚è€ƒã«ãªã‚‹ã€‚

biz

cyberattacks

cybersecurity

soc

security

securityoperation

SecOps
ãƒªãƒ³ã‚¯
5 ways to Banner Grabbing
teddy-g 2018/10/18
Banner Grabbingã®æ–¹æ³•è‰²ã€…ã€‚åŸºæœ¬çš„ã«ã¯ã‚¹ã‚ãƒ£ãƒ³ã—ã¦è¿”ã£ã¦ããŸãƒ¬ã‚¹ãƒãƒ³ã‚¹ã‹ã‚‰å¿…è¦ãªæƒ…å ±ã‚’å¼•ã£ã“æŠœãã€‚ShodanãŒä½¿ã£ã¦ã‚‹æ‰‹æ³•ã€‚

security

cybersecurity

cyberattacks

spider

crawler

scanner

searchengine

server

tips

hacks
ãƒªãƒ³ã‚¯
Building Threat Hunting Strategies with the Diamond Model - Active Response
teddy-g 2018/09/03
Threat Huntingã®ãƒ•ãƒ¬ãƒ¼ãƒ ãƒ¯ãƒ¼ã‚¯ã®ä¸€ã¤ã€ãƒ€ã‚¤ãƒ¤ãƒ¢ãƒ³ãƒ‰ãƒ¢ãƒ‡ãƒ«ã€‚Victimã€Infrastructureã€Capabilityã€Adversaryã®4ã¤ã®è¦³ç‚¹ã‹ã‚‰ã‚¢ãƒ—ãƒãƒ¼ãƒã€‚

cybersecurity

security

threathunting

hunt

malware
ãƒªãƒ³ã‚¯
THREAT HUNTING WITH BRO - Cybersecurity Insiders
teddy-g 2018/07/03
ã‚ªãƒ¼ãƒ—ãƒ³ã‚½ãƒ¼ã‚¹ã®BROã‚’ä½¿ã£ã¦ã©ã†Huntã™ã‚‹ã‹ã®Sqrrlã®è¨˜äº‹ï¼ˆè»¢è¼‰ï¼‰ã€‚å…·ä½“çš„ã«ã¯UAã®ç‰¹å¾´ã‚’ã©ã†ç™ºè¦‹ã™ã‚‹ã‹ãŒæ›¸ã„ã¦ã‚ã‚‹ã€‚

cybersecurity

security

hunt

cyberattacks
ãƒªãƒ³ã‚¯
Deep Learning Security Papers
teddy-g 2018/07/03
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ç³»ã®Deep Learningã„ã‚ã„ã‚ã€‚

deeplearning

security

cybersecurity
ãƒªãƒ³ã‚¯
Here are the 61 passwords that powered the Mirai IoT botnet
teddy-g 2018/06/16
MIRAIã«ä»•è¾¼ã¾ã‚Œã¦ã„ã‚‹66å€‹ã®IDãƒ‘ã‚¹ã®çµ„åˆã›ã€‚

security

cyberattacks

cybersecurity

IoT
ãƒªãƒ³ã‚¯
ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³•ã§ç§˜å¯†ã®ãƒ‡ãƒ¼ã‚¿ã‚’åˆ†å‰²ç®¡ç†ã™ã‚‹ - Kim's Tech Blog
ã¤ã„æœ€è¿‘PollyPassHashã¨ã„ã†æ–°ã—ã„ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ç®¡ç†æ‰‹æ³•ã‚’çŸ¥ã‚Šã¾ã—ãŸã€‚ PolyPassHashingã«ã¤ã„ã¦ã¯æ™‚é–“ãŒã‚ã‚Œã°åˆ¥ã®ãƒã‚¹ãƒˆã§æ›¸ãã¾ã™ãŒã€è¦ç´„ã™ã‚‹ã¨ã€ã‚ã‚‹ä¸€å®šæ•°ã®ç®¡ç†è€…ã®æ£ã—ã„ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ãŒå…¥åŠ›ã•ã‚Œãªã„ã¨æš—å·åŒ–ã•ã‚ŒãŸãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹ã‚’å¾©å·åŒ–ã§ããªã„ã‚ˆã†ã«ã™ã‚‹ãŸã‚ã®ä»•çµ„ã¿ã§ã™ã€‚ ã“ã®ãƒã‚¹ãƒˆã§ã¯PolyPassHashingã®ä¸æ ¸ã®æš—å·æŠ€è¡“ã§ã‚ã‚‹ ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³• ã®ç´¹ä»‹ã¨ãã‚Œã‚’å®Ÿç¾ã™ã‚‹æ•°å¦çš„ãªä»•çµ„ã¿ã‚’è§£èª¬ã—ãŸã„ã¨æ€ã„ã¾ã™ã€‚ ã“ã®è¨˜äº‹ã®å†…å®¹ ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³•ã¨ã¯ãªã«ã‹ ç”¨èªž å®Ÿéš›ã«ã‚„ã£ã¦ã¿ã‚‹: Rubyã§ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£ ä»•çµ„ã¿ ã‚·ã‚§ã‚¢ã®è¨ˆç®— ã‚·ãƒ¼ã‚¯ãƒ¬ãƒƒãƒˆã®å¾©å…ƒ ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³•ã¨ã¯ãªã«ã‹ åå‰ã‹ã‚‰ã‚ã‹ã‚‹ã¨ãŠã‚Šã€ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³•ã¯RSAã®ã‚¢ãƒ«ã‚´ãƒªã‚ºãƒ ã«ã‚‚è²¢çŒ®ã—ãŸæœ‰åãªã‚¤ã‚¹ãƒ©ã‚¨ãƒ«äººã®æš—å·ç ”ç©¶è€…ã‚¢ãƒ‡ã‚£ãƒ»ã‚·ãƒ£ãƒŸã‚¢ã«ã‚ˆã£ã¦ä½œã‚‰ã‚Œã¾ã—ãŸã€‚ ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³•ã¯ç§˜
teddy-g 2018/05/20
ã‚·ãƒ£ãƒŸã‚¢ã®ç§˜å¯†åˆ†æ•£æ³•ã®Rubyã§ã®å®Ÿè£…ä¾‹ã€‚

security

cyberattacks

algorithm
ãƒªãƒ³ã‚¯
The 10 biggest security incidents of 2016 | WeLiveSecurity
In 2016, companies have had their security solutions tested by increasingly sophisticated cybercriminals. We look at the yearâ€™s biggest security incidents. 2016 has been a challenging year for politics, public sanity and celebrity longevity, but also, for individuals and companies, a testing time in terms of online security. Pitted against increasingly sophisticated and targeted cybercriminals, it
teddy-g 2018/03/29
2016å¹´ã®10å¤§ã‚¤ãƒ³ã‚·ãƒ‡ãƒ³ãƒˆã®ã†ã¡3ã¤ãŒIoTãƒœãƒƒãƒˆãƒãƒƒãƒˆã£ã¦ã©ã†ã‚ˆã€‚

cyberattacks

cybersecurity

threats

security

malware

botnet
ãƒªãƒ³ã‚¯
ãƒ•ã‚©ãƒ¼ãƒ†ã‚£ãƒãƒƒãƒˆã‚¸ãƒ£ãƒ‘ãƒ³ - Multi-threat Security Systems For Real Time Network Protection, Network Virus Protection, VPN, Intrusion Detection & Prevention
ã‚»ã‚ãƒ¥ã‚¢ã‚µãƒ¼ãƒ“ã‚¹ã‚¨ãƒƒã‚¸ï¼ˆSSEï¼‰ ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ã‚¨ãƒƒã‚¸ã‹ã‚‰ãƒªãƒ¢ãƒ¼ãƒˆãƒ¦ãƒ¼ã‚¶ãƒ¼ã¾ã§ã€ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ã¨ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ã‚³ãƒ³ãƒãƒ¼ã‚¸ã‚§ãƒ³ã‚¹ã‚’æ‹¡å¼µã—ã¾ã™ã€‚
teddy-g 2018/03/29
CoinHiveã¨ãã®ãŠå‹é”ã€‚æŠ€è¡“ã¨ã—ã¦ã¯ã‚„ã¯ã‚Šé¢ç™½ã„ã€‚

cyberattacks

cybersecurity

security

cryptocurrency
ãƒªãƒ³ã‚¯
è©±é¡Œã®ã€ŒCoinhiveã€ã¨ã¯ï¼Ÿã€€ä»®æƒ³é€šè²¨ã®æ–°ãŸãªå¯èƒ½æ€§ã‹ã€è¿·æƒ‘ãªãƒžãƒ«ã‚¦ã‚§ã‚¢ã‹
Coinhiveã¯çŸç¸®URLã‚µãƒ¼ãƒ“ã‚¹ã‚‚æä¾›ã—ã¦ã„ã‚‹ã€‚é–²è¦§è€…ãŒä¸€å®šé‡ã®ä»®æƒ³é€šè²¨ã‚’æŽ¡æŽ˜ã™ã‚‹ã¨ã€ãƒªãƒ³ã‚¯å…ˆã«è‡ªå‹•çš„ã«ã‚¸ãƒ£ãƒ³ãƒ—ã™ã‚‹ä»•çµ„ã¿ã§ã€ä¾‹ãˆã°ã€é›»åæ›¸ç±ã®ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã‚µãƒ¼ãƒ“ã‚¹é‹å–¶è€…ãŒã€ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰URLã‚’çŸç¸®ã—ã€ã‚³ã‚¤ãƒ³ã‚’æŽ¡æŽ˜ã—ãŸäººã ã‘ã«æä¾›ã™ã‚‹â€•â€•ã¨ã„ã£ãŸä½¿ã„æ–¹ãŒå¯èƒ½ã ã€‚ ã€ŒCaptchaã®ä»£æ›¿ã«ãªã‚‹ã€ã‚µãƒ¼ãƒ“ã‚¹ã‚‚ã‚ã‚‹ã€‚ãƒ¦ãƒ¼ã‚¶ãƒ¼ç™»éŒ²æ™‚ãªã©ã«ã€èªã¿ã¥ã‚‰ã„æ–‡å—ã‚’è§£èªã—ã¦å…¥åŠ›ã•ã›ã‚‹ã€ŒCaptchaã€ã®ä»£ã‚ã‚Šã«ã€ä¸€å®šé‡ã®æŽ¡æŽ˜ã‚’è¡Œã‚ã›ã‚‹ã¨ã„ã†ã‚‚ã®ã€‚Captchaã¨é•ã£ã¦ç›¸æ‰‹ãŒã€Œäººé–“ã§ã‚ã‚‹ã“ã¨ã€ã¯è¨¼æ˜Žã§ããªã„ãŒã€ç™»éŒ²ã«ã¯CPUãƒ‘ãƒ¯ãƒ¼ã¨ã„ã†ã‚³ã‚¹ãƒˆã‚’æ”¯æ‰•ã†å¿…è¦ãŒã‚ã‚‹ãŸã‚ã€ã€Œå¤å…¸çš„ãªCaptchaã«åŒ¹æ•µã™ã‚‹ã‚¹ãƒ‘ãƒ é˜²æ¢ã«ãªã‚‹ã€ã¨ã‚¢ãƒ”ãƒ¼ãƒ«ã—ã¦ã„ã‚‹ã€‚ ã‚µãƒ¼ãƒ“ã‚¹ã«è‡ªç”±ã«çµ„ã¿è¾¼ã‚ã‚‹APIã‚‚æä¾›ã€‚ã€Œå‹•ç”»ã‚’ã‚¹ãƒˆãƒªãƒ¼ãƒŸãƒ³ã‚°å†ç”Ÿã—ã¦ã„ã‚‹é–“ã€ä»®æƒ³é€šè²¨ã®æŽ¡æŽ˜ã‚’è¦æ±‚ã™ã‚‹ã€ã€Œã‚²ãƒ¼ãƒ ã‚’ãƒ—ãƒ¬ã‚¤ã—ã¦ã„ã‚‹é–“ã«æŽ¡æŽ˜ã™ã‚‹ã€ã¨ã„ã£ãŸã“ã¨ã‚‚å¯èƒ½ã«ãªã‚‹ã¨ã„ã†
teddy-g 2018/03/29
çµå±€ã¯ãƒžãƒ«ã‚¦ã‚§ã‚¢ãªã‚“ã ã‘ã©ç™ºæƒ³è‡ªä½“ã¯å¥½ãã€‚

cyberattacks

cybersecurity

security

cryptocurrency
ãƒªãƒ³ã‚¯
ä»®æƒ³é€šè²¨ã®ä¸æ£ãƒžã‚¤ãƒ‹ãƒ³ã‚°ã¯éŽåŽ»æœ€é«˜ã€IoTãƒ‡ãƒã‚¤ã‚¹ã®ä¹—ã£å–ã‚Šã€ãƒ“ã‚¸ãƒã‚¹ãƒ¡ãƒ¼ãƒ«è©æ¬ºã‚‚æœ¬æ ¼åŒ–ï¼ˆæœ¨æ‘æ£äººï¼‰ - ã‚¨ã‚ã‚¹ãƒ‘ãƒ¼ãƒˆ - Yahoo!ãƒ‹ãƒ¥ãƒ¼ã‚¹
ï¼»ãƒãƒ³ãƒ‰ãƒ³ç™ºï¼½ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¼ä¼šç¤¾ãƒˆãƒ¬ãƒ³ãƒ‰ãƒžã‚¤ã‚¯ãƒãŒæ˜¨å¹´1å¹´é–“ã®ã‚µã‚¤ãƒãƒ¼çŠ¯ç½ªã‚’åˆ†æžã—ãŸã¨ã“ã‚ã€åˆ©ç”¨è€…ã®ãƒ‘ã‚½ã‚³ãƒ³ã‚’ä¸æ£ã«ä¹—ã£å–ã£ã¦ä»®æƒ³é€šè²¨ã®ç™ºæŽ˜ï¼ˆãƒžã‚¤ãƒ‹ãƒ³ã‚°ï¼‰ã‚’è¡Œã†ã€Œã‚³ã‚¤ãƒ³ãƒžã‚¤ãƒŠãƒ¼ã€ã®è¢«å®³ãŒéŽåŽ»æœ€é«˜ã‚’è¨˜éŒ²ã—ã¾ã—ãŸã€‚203å„„å°ã«é”ã—ãŸã€Œãƒ¢ãƒŽã®ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆï¼ˆIoTï¼‰ã€ã®ãƒ‡ãƒã‚¤ã‚¹ã‚‚ã‚µã‚¤ãƒãƒ¼çŠ¯ç½ªè€…ã«ç‹™ã‚ã‚Œã¦ã„ã‚‹ãã†ã§ã™ã€‚ ãƒˆãƒ¬ãƒ³ãƒ‰ãƒžã‚¤ã‚¯ãƒç¤¾ã®å ±å‘Šæ›¸ã‚’è¦‹ã¦ã¿ã¾ã—ã‚‡ã†ã€‚ ã‚µã‚¤ãƒãƒ¼éŠ€è¡Œå¼·ç›—2017å¹´ã¯å¾ŒåŠã‹ã‚‰ã€æ—¥æœ¬ã®äº¤æ›æ‰€ã‚³ã‚¤ãƒ³ãƒã‚§ãƒƒã‚¯ã‹ã‚‰26ä¸‡äººã®é¡§å®¢ãŒé ã‘ã¦ã„ãŸ580å„„å††ç›¸å½“ã®ä»®æƒ³é€šè²¨NEMã®ä¸æ£é€é‡‘äº‹ä»¶ã«è±¡å¾´ã•ã‚Œã‚‹ã‚ˆã†ã«ä»®æƒ³é€šè²¨ã‚’ç‹™ã†ã‚µã‚¤ãƒãƒ¼æ”»æ’ƒãŒæ¿€å¢—ã—ã¾ã—ãŸã€‚ è„†å¼±æ€§æ”»æ’ƒãƒ„ãƒ¼ãƒ«ï¼ˆã‚¨ã‚¯ã‚¹ãƒ—ãƒã‚¤ãƒˆã‚ãƒƒãƒˆã€EKï¼‰ã‚’ä½¿ç”¨ã™ã‚‹ã€ŒEKã‚µã‚¤ãƒˆã€ã¯ã“ã‚Œã¾ã§ãƒ©ãƒ³ã‚µãƒ ã‚¦ã‚§ã‚¢ï¼ˆãƒ‘ã‚½ã‚³ãƒ³ã‚’ä¹—ã£å–ã£ã¦èº«ä»£é‡‘ã‚’è¦æ±‚ã™ã‚‹ãƒžãƒ«ã‚¦ã‚§ã‚¢ï¼‰ã‚„ã‚ªãƒ³ãƒ©ã‚¤ãƒ³éŠ€è¡Œè©æ¬ºãƒ„ãƒ¼ãƒ«ã‚’ã¾ãæ•£ã‚‰ã—ã¦ã„ã¾ã—ãŸã€‚ ä»®æƒ³é€šè²¨ãŒé«˜é¨°ã—ãŸ5æœˆä»¥é™ã€EKã‚µã‚¤
teddy-g 2018/03/29
ãƒˆãƒ¬ãƒ³ãƒ‰ãƒžã‚¤ã‚¯ãƒã®å ±å‘Šã®å†…å®¹ã‚µãƒžãƒªãƒ¼ã€‚ãƒžã‚¤ãƒ‹ãƒ³ã‚°ã€IoTãƒœãƒƒãƒˆãƒãƒƒãƒˆç‰ã€…ã€‚

cyberattacks

cybersecurity

security
ãƒªãƒ³ã‚¯
2017 å¹´ã¯ã€Œã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®å¸¸è˜ã‚’è¦†ã™ã‚µã‚¤ãƒãƒ¼çŠ¯ç½ªã®è»¢æ›æœŸã€ã€2017 å¹´ã®è„…å¨å‹•å‘ã‚’åˆ†æž |
ãƒˆãƒ¬ãƒ³ãƒ‰ãƒžã‚¤ã‚¯ãƒã§ã¯ 2017 å¹´ 1 å¹´é–“ã«ãŠã‘ã‚‹å›½å†…å¤–ã®è„…å¨å‹•å‘ã«ã¤ã„ã¦åˆ†æžã‚’è¡Œã„ã¾ã—ãŸã€‚çµæžœã€2017 å¹´ã¯æ§˜ã€…ãªã‚µã‚¤ãƒãƒ¼çŠ¯ç½ªã«ãŠã„ã¦ç‰¹ç†ã™ã¹ãå¤‰åŒ–ãŒèµ·ã“ã£ãŸã€Œè»¢æ›æœŸã€ã«ä½ç½®ã¥ã‘ã‚‰ã‚Œã‚‹å¹´ã§ã‚ã£ãŸã¨è¨€ãˆã¾ã™ã€‚ 2016 å¹´ã«éŽåŽ»æœ€å¤§è¦æ¨¡ã®è¢«å®³ã‚’ç™ºç”Ÿã•ã›ãŸã€Œãƒ©ãƒ³ã‚µãƒ ã‚¦ã‚§ã‚¢ã€ã®æ”»æ’ƒç·æ•°ã¯ã€2016 å¹´ã®ãŠã‚ˆã 10 å„„ä»¶ã‹ã‚‰ 2017 å¹´ã¯ãŠã‚ˆã6å„„ä»¶ã¸ã¨æ¸›å°‘ã—ã¾ã—ãŸã€‚ã—ã‹ã—ã€ãƒ©ãƒ³ã‚µãƒ ã‚¦ã‚§ã‚¢è‡ªä½“ã¯ã‚µã‚¤ãƒãƒ¼çŠ¯ç½ªè€…ã«ã¨ã£ã¦ã®ã€Œãƒ“ã‚¸ãƒã‚¹ã€ã¨ã—ã¦å®Œå…¨ã«å®šç€ã™ã‚‹ã¨å…±ã«ã€ã‚ˆã‚ŠåŠ¹æžœçš„ãªæ”»æ’ƒã‚’å®Ÿç¾ã•ã›ã‚‹ãŸã‚ã®æ”»æ’ƒæ‰‹æ³•ã®å¤šæ§˜åŒ–ãŒè¦‹ã‚‰ã‚Œã¾ã—ãŸã€‚2017 å¹´æ–°ãŸã«ç™»å ´ã—ãŸã€ŒWannaCryã€ã¯ 5 æœˆã«è„†å¼±æ€§ã‚’åˆ©ç”¨ã—ãŸãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ãƒ¯ãƒ¼ãƒ æ´»å‹•ã‚’å–ã‚Šã„ã‚Œã€6 æœˆä»¥é™ã‚‚ç¶™ç¶šã—ã¦æ‹¡æ•£ã‚’æ‹¡å¤§ã—ã¦ã„ã¾ã™ã€‚ã¾ãŸã€æ—¢å˜ã®ã€ŒLOCKYã€ã‚„ã€ŒCERBERã€ã®ã‚ˆã†ãªæ—¢å˜ã®ãƒ©ãƒ³ã‚µãƒ ã‚¦ã‚§ã‚¢ã¯åº¦é‡ãªã‚‹æ”¹å¤‰ã«ã‚ˆã‚‹å¤šæ©Ÿèƒ½åŒ–ãªã©ã‹ã‚‰ã€ã‚ˆã‚Šæ”»æ’ƒã—
teddy-g 2018/03/29
ãƒ©ãƒ³ã‚µãƒ ã‚¦ã‚§ã‚¢ã‹ã‚‰ãƒžã‚¤ãƒ‹ãƒ³ã‚°ã¸æµè¡ŒãŒç§»è¡Œä¸ã€‚åˆ†æ•£ã—ã¾ãã£ã¦ãŸã‚‰è¦‹ã¤ã‹ã‚‰ãªã„ã‚“ã˜ã‚ƒãªã„ã‹ã—ã‚‰ã€‚

cyberattacks

cybersecurity

security
ãƒªãƒ³ã‚¯
Community Services | Team Cymru
15 years of service to network defenders, internet operators and cybercrime investigators worldwide.
teddy-g 2018/02/25
Team Cymruã‚’ç”¨ã„ãŸWhoisæƒ…å ±ãƒã‚§ãƒƒã‚¯ã«ã¤ã„ã¦ã€‚ã„ã‚ã„ã‚ä½¿ãˆã¦ä¾¿åˆ©ãã†ã€‚

web

api

dns

whois

security

cybersecurity
ãƒªãƒ³ã‚¯
æ·±åˆ»ãªã€Œãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã€ã®è„…å¨
æ·±åˆ»ãªã€Œãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã€ã®è„…å¨ï¼šOWASP AppSec USA 2013 ãƒ¬ãƒãƒ¼ãƒˆï¼ˆå‰ç·¨ï¼‰ï¼ˆ2/2 ãƒšãƒ¼ã‚¸ï¼‰ æ¼ã‚Œã¦ã„ãªã„ã‚ˆã†ã§æ¼ã‚Œã¦ã„ã‚‹!? ãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã®è„…å¨ ã“ã“ã‹ã‚‰ã¯ã€ç†è€…ã‚‰ãŒå—è¬›ã—ãŸãƒˆãƒ¬ãƒ¼ãƒ‹ãƒ³ã‚°ã®å†…å®¹ã‚’ç´¹ä»‹ã—ã¾ã™ã€‚ 1ã¤ç›®ã¯ã€ã€ŒThe Art Of Exploiting Injection Flawsã€ã§ã™ã€‚SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã«ä»£è¡¨ã•ã‚Œã‚‹ã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³æ”»æ’ƒã«ã¤ã„ã¦ã€è¬›å¸«ãŒç”¨æ„ã—ãŸã‚µãƒ¼ãƒãƒ¼ã¸ã®ç–‘ä¼¼æ”»æ’ƒã‚’é€šã˜ã€ãã®æ”»æ’ƒæ‰‹æ³•ã‚’ç†è§£ã™ã‚‹ã®ãŒç›®çš„ã§ã™ã€‚ è¬›å¸«ã¯ã€ã€ŒSQL Injection, attacks and defenseã€ã®å…±è‘—è€…ã§ã€ãƒŽãƒƒãƒˆã‚½ãƒ¼ã‚»ã‚ãƒ¥ã‚¢ï¼ˆNotSoSecureï¼‰å‰µç«‹è€…ã®ã‚¹ãƒ¼ãƒŸãƒƒãƒˆãƒ»ã‚·ãƒƒãƒ€ãƒ¼ãƒ«ã‚¿ï¼ˆSumit Siddharthï¼‰æ°ã§ã™ã€‚ ãƒˆãƒ¬ãƒ¼ãƒ‹ãƒ³ã‚°ã§ã¯ã€åŸºæœ¬çš„ãªSQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã®æ‰‹æ³•ã‹ã‚‰ã€ãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§
teddy-g 2018/02/18
ã‚‚ã†ã¡ã‚‡ã£ã¨ä¸å¯§ã«Blind SQLiã®èª¬æ˜Ž

cybersecurity

security

cyberattacks

sql

sqli
ãƒªãƒ³ã‚¯
ã€Œãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã¨ã¯ä½•ã§ã™ã‹ï¼Ÿã€ã¸ã®å›žç”
ä»¥ä¸‹ã¯ã€Yahoo!çŸ¥æµè¢‹ã§ã®ä¸‹è¨˜è³ªå•ã«å¯¾ã™ã‚‹å›žç”ã§ã™ã€‚ ãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã¨ã¯ä½•ã§ã™ã‹ï¼Ÿ ã§ãã‚‹ã ã‘è©³ç´°ã«æ•™ãˆã¦ä¸‹ã•ã„ å›žç”ã—ãŸå¾Œã«ã€è³ªå•ãŒå–ã‚Šæ¶ˆã•ã‚Œã¦ã—ã¾ã„ã¾ã—ãŸã€‚Yahoo!çŸ¥æµè¢‹ã®ä»•æ§˜ã¨ã—ã¦ã€å–ã‚Šæ¶ˆã—ã•ã‚ŒãŸè³ªå•ã¯2é€±é–“ã§å‰Šé™¤ã•ã‚Œã‚‹ãŸã‚ã€å‚™å¿˜ã®ãŸã‚è»¢è¼‰ã—ã¾ã™ã€‚ ãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã¨ã„ã†ã®ã¯ã€SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³æ”»æ’ƒã®ä¸€ç¨®ã§ã™ã€‚ é€šå¸¸ã®SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³æ”»æ’ƒã§ã¯ã€æ¤œç´¢çµæžœã®æ–‡å—åˆ—ãŒè¡¨ç¤ºã•ã‚ŒãŸã‚Šã€SQLã®ã‚¨ãƒ©ãƒ¼ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ãŒè¡¨ç¤ºã•ã‚Œã‚‹ç®‡æ‰€ãŒã‚ã‚Šã€ãã‚Œã‚‰è¡¨ç¤ºã®ä¸€éƒ¨ã«ã€æœ¬æ¥ã¨ã¯åˆ¥ã®SQLæ–‡ã®æ¤œç´¢çµæžœã‚’è¡¨ç¤ºã•ã›ã‚‹ã“ã¨ã§ã€éš ã‚ŒãŸæƒ…å ±ã‚’è¡¨ç¤ºã—ã¾ã™ã€‚ ã—ã‹ã—ã€SQLã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³è„†å¼±æ€§ã¯ã‚ã‚‹ãŒã€è¡¨ç¤ºã¨ã—ã¦æ¤œç´¢çµæžœã®è¡¨ç¤ºã‚‚ãªãã€ã‚¨ãƒ©ãƒ¼ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ã«ã‚‚SQLã®ã‚¨ãƒ©ãƒ¼ãŒè¡¨ç¤ºã•ã‚Œãªã„å ´åˆãŒã‚ã‚Šã¾ã™ã€‚ä¾‹ãˆã°ã€ä»¥ä¸‹ã«ç´¹ä»‹ã™ã‚‹ä¾‹ã§ã¯ã€æŒ‡å®šã—ãŸãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ãŒç™»éŒ²æ¸ˆã¿ã‹ã©ã†ã‹ã®ã¿ã‚’è¿”
teddy-g 2018/02/18
åœ°å‘³ãªæ–¹æ³•ã§å°‘ã—ãšã¤DBã®ä»•çµ„ã¿ã‚’ã²ã‚‚ã¨ãã€ãã‚ŒãŒãƒ–ãƒ©ã‚¤ãƒ³ãƒ‰SQLi

cybersecurity

cyberattacks

security

sql

sqli
ãƒªãƒ³ã‚¯
Securing the Internet of Things (IoT) with Blockchain
teddy-g 2018/02/11
IoTã®ãƒœãƒˆãƒ«ãƒãƒƒã‚¯ã¯ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚µãƒ¼ãƒåž‹ã§ã‚ã‚‹ã“ã¨ã§ã‚ã‚ŠdecentralizeãŒé‡è¦ã€‚ãƒ–ãƒãƒƒã‚¯ãƒã‚§ãƒ¼ãƒ³ã¯ãƒˆãƒ©ãƒ³ã‚¶ã‚¯ã‚·ãƒ§ãƒ³ç®¡ç†ï¼†èªè¨¼ã«åŠ ãˆdecentralizeã«è²¢çŒ®ã™ã‚‹ã€‚System of systemsã£ã¦Intelã‚‚è¨€ã£ã¦ãŸã€‚

IoT

security

cybersecurity

blockchain
ãƒªãƒ³ã‚¯
RFC 8744: Issues and Requirements for Server Name Identification (SNI) Encryption in TLS
teddy-g 2018/02/10
TLS1.3ã®è©±ã®ä¸ã§ã€SNIã‚’æš—å·åŒ–ã™ã‚‹ã¨ã„ã†è©±ã€‚ã“ã‚Œã‚ˆã‚Šå‰ã«DPRIVEã‚’å®Ÿç¾ã—ãªã„ã¨ã„ã‘ãªã„ã—ã€SNIæš—å·åŒ–ã§DDoSã¨ã‹Gatewayã‚’ä¹—ã£å–ã‚‰ã‚Œã‚‹å¯èƒ½æ€§ãŒå¢—ãˆã‚‹ã¨ã„ã†è©±ã‚‚ã‚ã‚‹ã€‚

TLS

encryption

security

cybersecurity

ieee
ãƒªãƒ³ã‚¯
DNS PRIVate Exchange (dprive)
Charter for Working Group The DNS PRIVate Exchange (DPRIVE) Working Group develops mechanisms to provide confidentiality to DNS transactions in order to address concerns surrounding pervasive monitoring (RFC 7258). The set of DNS requests that an individual makes can provide an attacker with a large amount of information about that individual. DPRIVE aims to deprive the attacker of this informatio
teddy-g 2018/02/10
TLS1.3ã®ãƒ‡ã‚£ã‚¹ã‚«ãƒƒã‚·ãƒ§ãƒ³ã®ä¸ã§ã€DNSã‚¯ã‚¨ãƒªã¨ãƒ¬ã‚¹ãƒãƒ³ã‚¹ã‚’æš—å·åŒ–ã™ã‚‹ã¨ã„ã†è©±ã€‚ DPRIVEã¨ç§°ã•ã‚Œã¦ã‚‹ã€‚

TLS

encryption

security

cybersecurity

ieee
ãƒªãƒ³ã‚¯
TLS Fingerprinting - a method for identifying a TLS client without decrypting | DevCentral
teddy-g 2018/02/10
TLS Fingerprintingã‚’ç”¨ã„ã¦UAã‚’æŽ¨æ¸¬ã§ãã‚‹ã¨ã„ã†è©±ã€‚Masaryk Universityã®ç ”ç©¶ã«è¿‘ã„ã‹ã€‚

TLS

encryption

machine learning

machinelearning

security

cybersecurity

threats
ãƒªãƒ³ã‚¯
1 2 æ¬¡ã®ãƒšãƒ¼ã‚¸