https://995facee.rickylin.pages.dev/zh-tw/categories/security/Recent content in Security on RickyHugo -- gohugo.iozh-twWed, 10 Jun 2026 10:59:53 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2026/20260610-articles/Wed, 10 Jun 2026 10:59:53 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2026/20260610-articles/<ul> <li><a href="https://pokeemerald.com/" target="_blank" rel="noopener">Pokemon Emerald in WebAssembly(https://github.com/tripplyons/pokeemerald-wasm)</a></li> <li><strong>Github</strong> <ul> <li><a href="https://github.com/wxt-dev/wxt" target="_blank" rel="noopener">wxt: Next-gen Web Extension Framework</a></li> <li><a href="https://github.com/anthropics/defending-code-reference-harness" target="_blank" rel="noopener">Skills for threat modeling, scanning, triage, patching, plus an autonomous scanning harness you can <code>/customize</code></a></li> <li><a href="https://github.com/ad-si/awesome-3d-printing" target="_blank" rel="noopener">A curated list of awesome 3D printing resources</a></li> <li><a href="https://github.com/NousResearch/hermes-agent" target="_blank" rel="noopener">hermes-agent: It&rsquo;s the only agent with a built-in learning loop - it creates skills from experience, improves them during use, nudges itself to persist knowledge, searches its own past conversations, and builds a deepening model of who you are across sessions. Run it on a $5 VPS, a GPU cluster, or serverless infrastructure that costs nearly nothing when idle. It&rsquo;s not tied to your laptop - talk to it from Telegram while it works on a cloud VM.</a></li> <li><a href="https://github.com/mysk-research/loupe" target="_blank" rel="noopener">loupe: A privacy-focused iOS app that raises awareness about what native apps can see(https://apps.apple.com/cn/app/loupe-app%E8%83%BD%E7%9C%8B%E5%88%B0%E4%BB%80%E4%B9%88/id6766152470)</a></li> <li><a href="https://github.com/RoversX/LaunchNext" target="_blank" rel="noopener">LaunchNext: Bring your Launchpad back in MacOS26+ ,highly customizable, powerful, free.</a></li> <li><a href="https://github.com/skeeto/endlessh" target="_blank" rel="noopener">endlessh: SSH tarpit that slowly sends an endless banner</a></li> <li><a href="https://github.com/akerouanton/iptables-tracer" target="_blank" rel="noopener">iptables-tracer: Trace packets as they go through iptables chains</a></li> <li><a href="https://github.com/serverless-dns/serverless-dns" target="_blank" rel="noopener">serverless-dns: The RethinkDNS resolver that deploys to Cloudflare Workers, Deno Deploy, Fastly, and Fly.io</a></li> <li><a href="https://github.com/ouch-org/ouch" target="_blank" rel="noopener">ouch: stands for Obvious Unified Compression Helper. It&rsquo;s a CLI tool for compressing and decompressing various formats.(https://github.com/ouch-org/ouch#supported-formats)</a></li> <li><a href="https://github.com/shell-pool/shpool" target="_blank" rel="noopener">shpool: shpool is a service that enables session persistence by allowing the creation of named shell sessions owned by shpool so that the session is not lost if the connection drops. shpool can be thought of as a lighter weight alternative to tmux or GNU screen. While tmux and screen take over the whole terminal and provide window splitting and tiling features, shpool only provides persistent sessions. The biggest advantage of this approach is that shpool does not break native scrollback or copy-paste.</a></li> <li><a href="https://github.com/google/capslock" target="_blank" rel="noopener">capslock: is a capability analysis CLI for Go packages that informs users of which privileged operations a given package can access. This works by classifying the capabilities of Go packages by following transitive calls to privileged standard library operations.</a></li> <li><a href="https://github.com/psviderski/unregistry" target="_blank" rel="noopener">unregistry: Push docker images directly to remote servers without an external registry</a></li> <li><a href="https://github.com/Ranchero-Software/NetNewsWire" target="_blank" rel="noopener">NetNewsWire is a free and open-source feed reader for macOS and iOS. It supports RSS, Atom, JSON Feed, and RSS-in-JSON formats.</a></li> <li><a href="https://github.com/k4yt3x/sysctl" target="_blank" rel="noopener">K4YT3X&rsquo;s Hardened &amp; Optimized Linux Kernel Parameters</a></li> <li><a href="https://github.com/tursodatabase/turso" target="_blank" rel="noopener">Turso is an in-process SQL database, compatible with SQLite.</a></li> <li><a href="https://github.com/zizmorcore/zizmor" target="_blank" rel="noopener">zizmor is a static analysis tool for GitHub Actions.</a></li> <li><a href="https://github.com/rustfs/rustfs" target="_blank" rel="noopener">RustFS is a high-performance, distributed object storage system built in Rust.</a></li> <li><a href="https://github.com/jdx/usage" target="_blank" rel="noopener">Usage: is a spec and CLI for defining CLI tools. Arguments, flags, environment variables, and config files can all be defined in a Usage spec. It can be thought of like OpenAPI (swagger) for CLIs.</a></li> <li><a href="https://github.com/MODSetter/SurfSense" target="_blank" rel="noopener">SurfSense: An open source, privacy focused alternative to NotebookLM for teams with no data limits.</a></li> <li><a href="https://github.com/icann/icann-rdap" target="_blank" rel="noopener">ICANN implementation of the Registry Data Access Protocol (RDAP)</a></li> <li><a href="https://github.com/openrdap/rdap" target="_blank" rel="noopener">OpenRDAP is a command line RDAP client implementation in Go.</a></li> </ul> </li> <li><strong>Article</strong> <ul> <li><a href="https://blog.ammaraskar.com/github-token-stealing/" target="_blank" rel="noopener">1-Click GitHub Token Stealing via a VSCode Bug</a></li> <li><a href="https://www.zhihu.com/question/590661860" target="_blank" rel="noopener">Linux 系统误将 chmod 权限改成 了 000，如何恢复?</a></li> <li><a href="https://ahelwer.ca/post/2026-05-08-builtin-u2f/" target="_blank" rel="noopener">Laptops all have built-in security tokens these days</a></li> <li><a href="https://tailscale.com/blog/tailscale-rustdesk-remote-desktop-access" target="_blank" rel="noopener">Tailscale and RustDesk: Secure remote access to all your desktops</a></li> <li><a href="https://blog.trailofbits.com/2025/06/17/unexpected-security-footguns-in-gos-parsers/" target="_blank" rel="noopener">Unexpected security footguns in Go&rsquo;s parsers</a></li> <li><a href="https://marvin.yabi.me/misc/junzishendoo.htm" target="_blank" rel="noopener">君子慎讀</a></li> <li><a href="https://marvin.yabi.me/misc/wenbai.htm" target="_blank" rel="noopener">辭典中標注的「讀音」和「語音」是什麼？</a></li> <li><a href="https://marvin.yabi.me/misc/AND.htm" target="_blank" rel="noopener">拜託別再「我汗你」了！</a></li> </ul> </li> </ul> <hr> <h2 id="linux-系统误将-chmod-权限改成-了-000如何恢复">Linux 系统误将 chmod 权限改成 了 000，如何恢复?</h2> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-c" data-lang="c"><span style="display:flex;"><span><span style="color:#75715e">#include</span> <span style="color:#75715e">&lt;sys/stat.h&gt;</span><span style="color:#75715e"> </span></span></span><span style="display:flex;"><span><span style="color:#75715e"></span> </span></span><span style="display:flex;"><span><span style="color:#66d9ef">int</span> <span style="color:#a6e22e">main</span>() { </span></span><span style="display:flex;"><span> <span style="color:#a6e22e">chmod</span>(<span style="color:#e6db74">&#34;/usr/bin/chmod&#34;</span>, <span style="color:#ae81ff">0755</span>); </span></span><span style="display:flex;"><span> <span style="color:#66d9ef">return</span> <span style="color:#ae81ff">0</span>; </span></span><span style="display:flex;"><span>} </span></span></code></pre></div><div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-shell" data-lang="shell"><span style="display:flex;"><span>ubuntu@ubuntu:~$ which chmod </span></span><span style="display:flex;"><span>/usr/bin/chmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ ls -lh /usr/bin/chmod </span></span><span style="display:flex;"><span>lrwxrwxrwx <span style="color:#ae81ff">1</span> root root <span style="color:#ae81ff">8</span> Sep <span style="color:#ae81ff">27</span> <span style="color:#ae81ff">2025</span> /usr/bin/chmod -&gt; gnuchmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ ls -lh /usr/bin/gnuchmod </span></span><span style="display:flex;"><span>-rwxr-xr-x <span style="color:#ae81ff">1</span> root root 67K Jan <span style="color:#ae81ff">23</span> 21:34 /usr/bin/gnuchmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ sudo chmod <span style="color:#ae81ff">000</span> /usr/bin/chmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ ls -lh /usr/bin/chmod </span></span><span style="display:flex;"><span>lrwxrwxrwx <span style="color:#ae81ff">1</span> root root <span style="color:#ae81ff">8</span> Sep <span style="color:#ae81ff">27</span> <span style="color:#ae81ff">2025</span> /usr/bin/chmod -&gt; gnuchmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ ls -lh /usr/bin/gnuchmod </span></span><span style="display:flex;"><span>---------- <span style="color:#ae81ff">1</span> root root 67K Jan <span style="color:#ae81ff">23</span> 21:34 /usr/bin/gnuchmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ cat main.c </span></span><span style="display:flex;"><span><span style="color:#75715e">#include &lt;sys/stat.h&gt;</span> </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>int main<span style="color:#f92672">()</span> <span style="color:#f92672">{</span> </span></span><span style="display:flex;"><span> chmod<span style="color:#f92672">(</span><span style="color:#e6db74">&#34;/usr/bin/chmod&#34;</span>, 0755<span style="color:#f92672">)</span>; </span></span><span style="display:flex;"><span> <span style="color:#66d9ef">return</span> 0; </span></span><span style="display:flex;"><span><span style="color:#f92672">}</span> </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ gcc ./main.c </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ sudo ./a.out </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ ls -lh /usr/bin/chmod </span></span><span style="display:flex;"><span>lrwxrwxrwx <span style="color:#ae81ff">1</span> root root <span style="color:#ae81ff">8</span> Sep <span style="color:#ae81ff">27</span> <span style="color:#ae81ff">2025</span> /usr/bin/chmod -&gt; gnuchmod </span></span><span style="display:flex;"><span>ubuntu@ubuntu:~$ ls -lh /usr/bin/gnuchmod </span></span><span style="display:flex;"><span>-rwxr-xr-x <span style="color:#ae81ff">1</span> root root 67K Jan <span style="color:#ae81ff">23</span> 21:34 /usr/bin/gnuchmod </span></span></code></pre></div><hr> <h2 id="laptops-all-have-built-in-security-tokens-these-days">Laptops all have built-in security tokens these days</h2> <h3 id="macos">macOS</h3> <blockquote> <p><a href="https://github.com/yubico/libfido2" target="_blank" rel="noopener">https://github.com/yubico/libfido2</a></p>https://995facee.rickylin.pages.dev/zh-tw/posts/2025/20250503-zipbomb-protection/Sat, 03 May 2025 11:24:00 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2025/20250503-zipbomb-protection/<ul> <li> <p><a href="https://idiallo.com/blog/zipbomb-protection" target="_blank" rel="noopener">我用 Zip Bomb 來保護我的伺服器</a></p> </li> <li> <p>發生的情況是：對方收到檔案後，讀取標頭得知這是壓縮檔，因此嘗試解壓那個 1MB 的檔案來找他們要的內容。但檔案會不斷膨脹，直到耗盡記憶體、伺服器崩潰。1MB 的檔案會解壓成 1GB，這已足以讓多數機器人失敗。不過對於那些死纏爛打的腳本，我就給它 10MB 的檔案，解壓後會變成 10GB，立刻把腳本搞掛。</p> </li> <li> <p><code>dd if=/dev/zero bs=1G count=10 | gzip -c &gt; 10GB.gz</code></p> <ul> <li><code>dd</code>：用於複製或轉換資料的指令。</li> <li><code>if</code>：輸入檔案，這裡指定 <code>/dev/zero</code>，它會產生無限的零位元組串流。</li> <li><code>bs</code>：區塊大小，設為 1GB（1G），代表 dd 會以 1GB 為單位讀寫。</li> <li><code>count=10</code>：代表處理 10 個區塊、每個 1GB，因此會產生 10GB 的零資料。</li> </ul> </li> <li> <p>middleware</p> </li> </ul> <pre tabindex="0"><code>if (ipIsBlackListed() || isMalicious()) { header(&#34;Content-Encoding: gzip&#34;); header(&#34;Content-Length: &#34;. filesize(ZIP_BOMB_FILE_10G)); // 10 MB readfile(ZIP_BOMB_FILE_10G); exit; } </code></pre>https://995facee.rickylin.pages.dev/zh-tw/posts/2024/20241113-objective-see/Wed, 13 Nov 2024 09:44:00 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2024/20241113-objective-see/<ul> <li><a href="https://t.me/misakatech/1349" target="_blank" rel="noopener">Objective-See：一個關於 Apple 裝置隱私與安全的開源專案組織</a></li> </ul> <p>今天在找小工具時發現他們做了一堆 macOS 上的開源軟體，基本都是和隱私與安全相關。</p> <ul> <li> <p><a href="https://objective-see.org/products/knockknock.html" target="_blank" rel="noopener">KnockKnock</a>：查看你的 Mac 上有哪些背景行程、守護行程、啟動項、核心擴充、登入項、瀏覽器外掛等等。能看到的比「Login Items」詳細得多（有的軟體會用其他方式自啟）。</p> </li> <li> <p><a href="https://objective-see.org/products/lulu.html" target="_blank" rel="noopener">LuLu</a>：一個開源的 macOS 網路防火牆，可以讓你詳細控制每個軟體的網路連線（類似 Hands Off!）。</p> </li> <li> <p><a href="https://objective-see.org/products/taskexplorer.html" target="_blank" rel="noopener">TaskExplorer</a>：增強版的工作管理員，可以看到應用的簽名、開啟的檔案、網路連線等等，還可以根據 sha256 自動幫你搜尋 VirusTotal 的結果。</p> </li> <li> <p><a href="https://objective-see.org/products/dnd.html" target="_blank" rel="noopener">Do Not Disturb</a>：可以阻止你的 Mac 被打擾（沒錯），當你的 Mac 被別人打開上蓋時可以發送警告、執行腳本、偵測裝置變化之類的。</p> </li> <li> <p><a href="https://objective-see.org/products/blockblock.html" target="_blank" rel="noopener">BlockBlock</a>：可以阻止背景的持久化安裝，RansomWhere 可以偵測檔案被加密的行為，還有一些雜七雜八的獨立工具。</p> </li> </ul> <p><a href="https://objective-see.org" target="_blank" rel="noopener">https://objective-see.org</a></p>https://995facee.rickylin.pages.dev/zh-tw/posts/2024/20240913-golang/Fri, 13 Sep 2024 09:41:00 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2024/20240913-golang/<ul> <li><a href="https://v2ex.com/t/1072079" target="_blank" rel="noopener">提高警惕，供應鏈攻擊就在你我身邊</a></li> </ul> <ul> <li><code>github.com/siruspen/logrus</code> 假</li> <li><code>github.com/sirupsen/logrus</code> 真</li> </ul>https://995facee.rickylin.pages.dev/zh-tw/posts/2023/20231004-container/Wed, 04 Oct 2023 09:06:00 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2023/20231004-container/<ul> <li><a href="https://securitylabs.datadoghq.com/articles/container-security-fundamentals-part-1/" target="_blank" rel="noopener">Container security fundamentals: Exploring containers as processes</a></li> <li><a href="https://securitylabs.datadoghq.com/articles/container-security-fundamentals-part-2/" target="_blank" rel="noopener">Container security fundamentals part 2: Isolation &amp; namespaces</a></li> <li><a href="https://securitylabs.datadoghq.com/articles/container-security-fundamentals-part-3/" target="_blank" rel="noopener">Container security fundamentals part 3: Capabilities</a></li> <li><a href="https://securitylabs.datadoghq.com/articles/container-security-fundamentals-part-4/" target="_blank" rel="noopener">Container security fundamentals part 4: Cgroups</a></li> <li><a href="https://securitylabs.datadoghq.com/articles/container-security-fundamentals-part-5/" target="_blank" rel="noopener">Container security fundamentals part 5: AppArmor and SELinux</a></li> <li><a href="https://securitylabs.datadoghq.com/articles/container-security-fundamentals-part-6/" target="_blank" rel="noopener">Container security fundamentals part 6: seccomp </a></li> </ul>https://995facee.rickylin.pages.dev/zh-tw/posts/2020/20201208-2536/Tue, 08 Dec 2020 21:50:47 +0800https://995facee.rickylin.pages.dev/zh-tw/posts/2020/20201208-2536/<ul> <li><a href="https://ithelp.ithome.com.tw/users/20114110/ironman/2536" target="_blank" rel="noopener">冰山一角的駭客工具介紹</a> <ul> <li><a href="https://ithelp.ithome.com.tw/articles/10214839" target="_blank" rel="noopener">[駭客工具 Day10] web 安全測試 - Burp Suite</a></li> <li><a href="https://ithelp.ithome.com.tw/articles/10215002" target="_blank" rel="noopener">[駭客工具 Day11] 網站路徑遍歷 - DirBuster</a></li> <li><a href="https://ithelp.ithome.com.tw/articles/10215072" target="_blank" rel="noopener">[駭客工具 Day12] 密碼暴力破解 - Hydra</a></li> <li><a href="https://ithelp.ithome.com.tw/articles/10215234" target="_blank" rel="noopener">[駭客工具 Day13] 密碼字典檔生成工具 - crunch</a></li> <li><a href="https://ithelp.ithome.com.tw/articles/10216722" target="_blank" rel="noopener">[駭客工具 Day16] 滲透神器 - Metasploit</a></li> <li><a href="https://ithelp.ithome.com.tw/articles/10217688" target="_blank" rel="noopener">[駭客工具 Day18] windows 密碼獲取神器 - mimikatz</a></li> <li><a href="https://ithelp.ithome.com.tw/articles/10221189" target="_blank" rel="noopener">[駭客工具 Day25] CTF Exploit 的 Python library - pwntools</a></li> </ul> </li> </ul>