|
http://www.hackerschool.org/HS_Boards/zboard.php?AllArticle=true&no=34802 [º¹»ç]
½ºÅ͵ð ¹æ½Ä
- ´ÜÅå + Ä«ÆäÈ°µ¿ Çü½ÄÀ¸·Î ¿Â¶óÀÎÀ¸·Î ÁøÇàÇÕ´Ï´Ù.
- °¢ÀÚ ÀÚ½ÅÀÌ °øºÎÇÏ´Â ÆÄÆ®¸¦ Àâ°í °øºÎÇÏ´Â Çü½ÄÀ¸·Î ÁøÇ࿹Á¤ÀÔ´Ï´Ù.
Çö ¸â¹ö 7¸íÀÌ°í¿ä. Áß±Þ¿¡¼ °í±Þ ÆÄÆ® °øºÎÇÏ½Ç 2~3ºÐ Á¤µµ¸¸ ´õ ±¸Çغ¸°Ú½À´Ï´Ù.
½ºÅ͵ð´Â À̹øÁÖºÎÅÍ ÁøÇàµÉ ¿¹Á¤ÀÔ´Ï´Ù.
- ÃʱÞ
1. ¾î¼Àºí¸®¾î
2. ¾î¼Àºí¸®¾î -> C¾ð¾î
3. µð¹ö°Å ´Ù·ç±â
4. CrackMe Ç®ÀÌ
- Áß±Þ
1. PE File Format
¦± PE Viewer Á¦ÀÛÇغ¸±â
2. Packing & UnPacking
¦±°£´ÜÇÑ Packer ±¸Çö
3. DLL Injection & Ejection
¦±¿©·¯°¡Áö ¹æ½ÄÀÇ ÀÎÁ§ÅÍ Á¦ÀÛ(LoadLibraryA, LdrLoadDll, Manual Map)
4. Code Injection
5. Hooking
¦± ¿©·¯°¡Áö ¹æ½ÄÀ¸·Î ÈÄÅ· Çغ¸±â
- °í±Þ
1. Anti Debugging
¦± ¾ÈƼ µð¹ö±ë°ú ¿ìȸ
2. ¹ÙÀÌ·¯½º »ùÇà ºÐ¼®
¦± ÇØ´ç ¹ÙÀÌ·¯½º Àü¿ë¹é½Å °³¹ß
3. °ÔÀÓÇØÅ·
¦± ¿ÀǼҽº °ÔÀÓ ÇØÅ· ¹× º¸¾ÈÇÁ·Î±×·¥ ±¸Çö
½Åû ÁÖ¼Ò : https://docs.google.com/forms/d/e/1FAIpQLSeJNPuRLv-q6QF8eq_w7R9a8AQ4fRUk9APnRtwmz_4K6Ckl7w/viewform?usp=sf_link |
Hit : 8458 Date : 2017/03/27 01:43
|
22018, 
1/1101 
