{"title":"\u30c1\u30e3\u30f3\u30af\u7d42\u7aef\u304c\u6210\u529f\u306e\u5206\u304b\u308c\u76ee\u306b\u306a\u308b\u7406\u7531 \u2014 `0` \u306e\u3042\u3068\u306b\u6539\u884c\u304c\u306a\u3044\u3068 TE/CL \u306e\u691c\u8a3c\u304c\u5931\u6557\u3059\u308b\u8a71","author_name":"ThisIsOne","provider_name":"Hatena Blog","version":"1.0","width":"100%","blog_url":"https://cysec148.hatenablog.com/","type":"rich","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fcysec148.hatenablog.com%2Fentry%2F2025%2F09%2F16%2F181644\" title=\"\u30c1\u30e3\u30f3\u30af\u7d42\u7aef\u304c\u6210\u529f\u306e\u5206\u304b\u308c\u76ee\u306b\u306a\u308b\u7406\u7531 \u2014 `0` \u306e\u3042\u3068\u306b\u6539\u884c\u304c\u306a\u3044\u3068 TE/CL \u306e\u691c\u8a3c\u304c\u5931\u6557\u3059\u308b\u8a71 - Shikata Ga Nai\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","blog_title":"Shikata Ga Nai","categories":["Web Security Academy","Smuggling"],"url":"https://cysec148.hatenablog.com/entry/2025/09/16/181644","provider_url":"https://hatena.blog","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","image_url":null,"height":"190","description":"Hello there, ('\u03c9')\u30ce \u6982\u8981 HTTP/1.1 \u306e chunked \u8ee2\u9001 \u3092\u4f7f\u3063\u305f\u6319\u52d5\u3067\u3001\u672b\u5c3e\u306e 0\uff08\u30bc\u30ed\u30c1\u30e3\u30f3\u30af\uff09\u306e\u5f8c\u306b\u6b63\u3057\u3044\u6539\u884c\uff08CRLF\uff09\u304c\u3042\u308b\u304b\u3069\u3046\u304b\u3067\u6319\u52d5\u304c\u5927\u304d\u304f\u5909\u308f\u308a\u307e\u3059\u3002\u5b9f\u969b\u306b\u300c\u6700\u5f8c\u306e 0 \u306e\u3042\u3068\u306b\u6539\u884c\u304c\u306a\u3044\u3068 smuggling \u304c\u6210\u7acb\u3057\u306a\u3044\u300d\u7406\u7531\u306f\u3001\u30c1\u30e3\u30f3\u30af\u7d42\u7aef\u306e\u691c\u51fa\u304c CRLF \u306b\u53b3\u5bc6\u306b\u4f9d\u5b58\u3057\u3066\u3044\u308b\u305f\u3081\u3067\u3059\u3002\u672c\u8a18\u4e8b\u3067\u306f\u975e\u30a8\u30f3\u30b8\u30cb\u30a2\u306b\u3082\u5206\u304b\u308b\u3088\u3046\u306b\u3001\u4ed5\u69d8\u4e0a\u306e\u8981\u70b9\u3068\u5b9f\u52d9\u3067\u306e\u78ba\u8a8d\u65b9\u6cd5\u3092\u308f\u304b\u308a\u3084\u3059\u304f\u89e3\u8aac\u3057\u307e\u3059\u3002 \u306a\u305c 0 \u306e\u5f8c\u306e\u6539\u884c\u304c\u91cd\u8981\u306a\u306e\u304b\uff08\u76f4\u611f\uff09 HTTP/1.1 \u306e\u30c1\u30e3\u30f3\u30af\u8ee2\u9001\u306f\u300c\u30b5\u30a4\u30ba\u884c \u2192 \u30c7\u30fc\u30bf \u2192 CRLF\u300d\u3092\u7e70\u308a\u8fd4\u3057\u3001\u6700\u5f8c\u306b 0\uff08\u30bc\u30ed\u30b5\u30a4\u30ba\u306e\u30c1\u30e3\u30f3\u2026","published":"2025-09-16 18:16:44"}