{"id":477000,"date":"2023-08-09T09:06:01","date_gmt":"2023-08-09T09:06:01","guid":{"rendered":""},"modified":"2023-09-05T11:13:48","modified_gmt":"2023-09-05T11:13:48","slug":"drive-by-download","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/tr\/wiki\/drive-by-download\/","title":{"rendered":"Arabayla indirme"},"content":{"rendered":"

Drive-by indirme, siber su\u00e7lular taraf\u0131ndan ma\u011fdurun cihaz\u0131na bilgisi veya r\u0131zas\u0131 olmadan k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da\u011f\u0131tmak i\u00e7in kullan\u0131lan k\u00f6t\u00fc ama\u00e7l\u0131 bir tekniktir. Bir kullan\u0131c\u0131 g\u00fcvenli\u011fi ihlal edilmi\u015f bir web sitesini ziyaret etti\u011finde k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n otomatik olarak indirilmesini ba\u015flatmak i\u00e7in web taray\u0131c\u0131lar\u0131ndaki, eklentilerdeki veya i\u015fletim sistemlerindeki g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanmay\u0131 i\u00e7erir. Bu y\u00f6ntem, kullan\u0131c\u0131dan herhangi bir etkile\u015fim gerektirmedi\u011fi i\u00e7in olduk\u00e7a etkilidir, bu da tespit edilmesini ve \u00f6nlenmesini zorla\u015ft\u0131r\u0131r.<\/p>\n

Drive-by indirmenin k\u00f6keninin tarihi ve bundan ilk s\u00f6z.<\/h2>\n

Drive-by download kavram\u0131, siber sald\u0131rganlar\u0131n k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da\u011f\u0131tmak i\u00e7in daha karma\u015f\u0131k yollar arad\u0131\u011f\u0131 2000'li y\u0131llar\u0131n ba\u015f\u0131nda ortaya \u00e7\u0131kt\u0131. Drive-by indirme \u00f6zelli\u011finden ilk kez g\u00fcvenlik forumlar\u0131nda ve tart\u0131\u015fmalarda bahsedildi; burada uzmanlar, kullan\u0131c\u0131lar internette gezinirken sessizce ger\u00e7ekle\u015fen k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m bula\u015fmalar\u0131nda \u00f6nemli bir art\u0131\u015f oldu\u011funu fark etti.<\/p>\n

Web teknolojileri geli\u015ftik\u00e7e sald\u0131rganlar taray\u0131c\u0131lardaki ve taray\u0131c\u0131 eklentilerindeki g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanmak i\u00e7in yeni f\u0131rsatlar buldu. Bu g\u00fcvenlik a\u00e7\u0131klar\u0131, me\u015fru web sitelerine k\u00f6t\u00fc ama\u00e7l\u0131 kod yerle\u015ftirmelerine ve bunlar\u0131 k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da\u011f\u0131t\u0131m mekanizmas\u0131na d\u00f6n\u00fc\u015ft\u00fcrmelerine olanak tan\u0131d\u0131. Sonu\u00e7 olarak, Drive-by indirme i\u015flemleri hem internet kullan\u0131c\u0131lar\u0131 hem de siber g\u00fcvenlik uzmanlar\u0131 i\u00e7in b\u00fcy\u00fck bir endi\u015fe kayna\u011f\u0131 haline geldi.<\/p>\n

Drive-by indirme hakk\u0131nda ayr\u0131nt\u0131l\u0131 bilgi. Drive-by indirme konusunu geni\u015fletiyoruz.<\/h2>\n

Drive-by indirmeler gizlidir ve kullan\u0131c\u0131n\u0131n izni veya bilgisi olmadan ger\u00e7ekle\u015ftirilir. S\u00fcre\u00e7 genellikle birka\u00e7 a\u015famadan olu\u015fur:<\/p>\n

    \n
  1. \n

    Enfeksiyon Vekt\u00f6r\u00fc:<\/strong> Siber sald\u0131rganlar, indirmeyi ba\u015flatmak i\u00e7in web taray\u0131c\u0131lar\u0131ndaki, eklentilerdeki veya i\u015fletim sistemlerindeki g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlan\u0131r. Bu g\u00fcvenlik a\u00e7\u0131klar\u0131, g\u00fcncel olmayan yaz\u0131l\u0131mlarda veya geli\u015ftiriciler taraf\u0131ndan hen\u00fcz yama yap\u0131lmam\u0131\u015f s\u0131f\u0131r g\u00fcn a\u00e7\u0131klar\u0131ndan yararlanmalarda bulunabilir.<\/p>\n<\/li>\n

  2. \n

    K\u00f6t\u00fc Ama\u00e7l\u0131 Y\u00fck:<\/strong> G\u00fcvenlik a\u00e7\u0131\u011f\u0131 tespit edildikten sonra sald\u0131rgan, k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m y\u00fck\u00fcn\u00fc kurban\u0131n cihaz\u0131na iletir. Veri y\u00fck\u00fc, fidye yaz\u0131l\u0131m\u0131, casus yaz\u0131l\u0131m, reklam yaz\u0131l\u0131m\u0131 veya di\u011fer k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar dahil olmak \u00fczere de\u011fi\u015fiklik g\u00f6sterebilir.<\/p>\n<\/li>\n

  3. \n

    S\u00f6m\u00fcr\u00fc:<\/strong> Kullan\u0131c\u0131, k\u00f6t\u00fc ama\u00e7l\u0131 kodun enjekte edildi\u011fi, g\u00fcvenli\u011fi ihlal edilmi\u015f bir web sitesini ziyaret eder. Kod, kullan\u0131c\u0131n\u0131n etkile\u015fimi olmadan otomatik olarak \u00e7al\u0131\u015f\u0131r ve k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n indirilmesini ve \u00e7al\u0131\u015ft\u0131r\u0131lmas\u0131n\u0131 tetikler.<\/p>\n<\/li>\n

  4. \n

    Sessiz Enfeksiyon:<\/strong> K\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m, kullan\u0131c\u0131ya herhangi bir g\u00f6r\u00fcn\u00fcr i\u015faret vermeden kendisini y\u00fckler, bu da tespit edilmesini ve kald\u0131r\u0131lmas\u0131n\u0131 zorla\u015ft\u0131r\u0131r.<\/p>\n<\/li>\n<\/ol>\n

    Drive-by indirme i\u015fleminin i\u00e7 yap\u0131s\u0131. Drive-by indirme i\u015flemi nas\u0131l \u00e7al\u0131\u015f\u0131r?<\/h2>\n

    Drive-by indirme i\u015flemi, ba\u015far\u0131l\u0131 bir enfeksiyona ula\u015fmak i\u00e7in teknik unsurlar\u0131n bir kombinasyonunu i\u00e7erir:<\/p>\n

      \n
    1. \n

      Yararlanma Kitleri:<\/strong> Siber su\u00e7lular genellikle belirli g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 hedef alan \u00f6nceden paketlenmi\u015f a\u00e7\u0131klardan olu\u015fan yararlanma kitleri kullan\u0131r. Bu kitler, kurban\u0131n sistemini savunmas\u0131z yaz\u0131l\u0131mlara kar\u015f\u0131 otomatik olarak ara\u015ft\u0131r\u0131r ve zay\u0131fl\u0131ktan yararlanmak i\u00e7in uygun istismar\u0131 sa\u011flar.<\/p>\n<\/li>\n

    2. \n

      K\u00f6t\u00fc Ama\u00e7l\u0131 Y\u00f6nlendirme:<\/strong> Sald\u0131rganlar, kullan\u0131c\u0131lar\u0131 bilgileri olmadan me\u015fru web sitelerinden k\u00f6t\u00fc ama\u00e7l\u0131 web sitelerine y\u00f6nlendirmek i\u00e7in k\u00f6t\u00fc ama\u00e7l\u0131 y\u00f6nlendirme tekniklerini kullanabilir. Bu teknik, daha fazla say\u0131da cihaza bula\u015fma olas\u0131l\u0131\u011f\u0131n\u0131 art\u0131r\u0131r.<\/p>\n<\/li>\n

    3. \n

      Steganografi:<\/strong> K\u00f6t\u00fc ama\u00e7l\u0131 kod, steganografi kullan\u0131larak g\u00f6rsellerin veya di\u011fer medya dosyalar\u0131n\u0131n i\u00e7ine gizlenebilir ve bu da g\u00fcvenlik ara\u00e7lar\u0131n\u0131n gizli veriyi tespit etmesini zorla\u015ft\u0131r\u0131r.<\/p>\n<\/li>\n

    4. \n

      Poliglot Dosyalar\u0131:<\/strong> Siber sald\u0131rganlar, me\u015fru yaz\u0131l\u0131mlara zarars\u0131z g\u00f6r\u00fcnen ancak k\u00f6t\u00fc ama\u00e7l\u0131 kod i\u00e7eren, \u00f6zel olarak haz\u0131rlanm\u0131\u015f dosyalar olan \u00e7ok dilli dosyalar\u0131 kullanabilir. Bu dosyalar farkl\u0131 yaz\u0131l\u0131m uygulamalar\u0131ndaki birden fazla g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan yararlanabilir.<\/p>\n<\/li>\n<\/ol>\n

      Drive-by indirmenin temel \u00f6zelliklerinin analizi.<\/h2>\n

      Drive-by indirmenin temel \u00f6zellikleri \u015funlar\u0131 i\u00e7erir:<\/p>\n

        \n
      1. \n

        Gizlilik:<\/strong> Arabadan indirmeler arka planda sessizce \u00e7al\u0131\u015farak kullan\u0131c\u0131lar\u0131n enfeksiyonu tespit etmesini zorla\u015ft\u0131r\u0131r.<\/p>\n<\/li>\n

      2. \n

        H\u0131zl\u0131 Enfeksiyon:<\/strong> \u0130\u015flem h\u0131zl\u0131d\u0131r ve minimum d\u00fczeyde kullan\u0131c\u0131 etkile\u015fimi gerektirir, bu da sald\u0131rganlar\u0131n k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar\u0131 h\u0131zl\u0131 bir \u015fekilde da\u011f\u0131tmas\u0131na olanak tan\u0131r.<\/p>\n<\/li>\n

      3. \n

        Exploit tabanl\u0131:<\/strong> Arabadan indirmeler, indirmeyi ba\u015flatmak i\u00e7in yaz\u0131l\u0131mdaki g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanmaya dayan\u0131r.<\/p>\n<\/li>\n

      4. \n

        Geni\u015f Eri\u015fim:<\/strong> Sald\u0131rganlar, pop\u00fcler web sitelerini ele ge\u00e7irerek veya k\u00f6t\u00fc ama\u00e7l\u0131 reklam a\u011flar\u0131n\u0131 kullanarak \u00e7ok \u00e7e\u015fitli potansiyel kurbanlar\u0131 hedefleyebilir.<\/p>\n<\/li>\n<\/ol>\n

        Drive-by indirme t\u00fcrleri ve \u00f6zellikleri.<\/h2>\n\n\n\n\n\n\n\n\n
        Tip<\/th>\n\u00d6zellikler<\/th>\n<\/tr>\n<\/thead>\n
        Standart Arabaya Ge\u00e7i\u015f<\/strong><\/td>\nBir kullan\u0131c\u0131n\u0131n cihaz\u0131na yaln\u0131zca g\u00fcvenli\u011fi ihlal edilmi\u015f bir web sitesini ziyaret ederek vir\u00fcs bula\u015ft\u0131\u011f\u0131 klasik Drive-by indirme bi\u00e7imi.<\/td>\n<\/tr>\n
        K\u00f6t\u00fc ama\u00e7l\u0131 reklamc\u0131l\u0131k<\/strong><\/td>\nK\u00f6t\u00fc ama\u00e7l\u0131 reklamlar me\u015fru web sitelerine yerle\u015ftirilerek kullan\u0131c\u0131lar\u0131 yararlanma kitleri bar\u0131nd\u0131ran veya do\u011frudan reklam arac\u0131l\u0131\u011f\u0131yla k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da\u011f\u0131tan sitelere y\u00f6nlendirir.<\/td>\n<\/tr>\n
        Sulama Deli\u011fi Sald\u0131r\u0131s\u0131<\/strong><\/td>\nSald\u0131rganlar, kurban\u0131n kurulu\u015fu taraf\u0131ndan s\u0131kl\u0131kla ziyaret edilen web sitelerini hedef al\u0131r ve siteye bula\u015farak kurulu\u015fun \u00e7al\u0131\u015fanlar\u0131na k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da\u011f\u0131t\u0131r.<\/td>\n<\/tr>\n
        Dosya Tabanl\u0131 Drive-by<\/strong><\/td>\nK\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m, y\u00fck\u00fc y\u00fcr\u00fctmek i\u00e7in ilgili yaz\u0131l\u0131mdaki g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanan PDF'ler veya Word belgeleri gibi vir\u00fcsl\u00fc dosyalar arac\u0131l\u0131\u011f\u0131yla iletilir.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

        Drive-by indirmeyi kullanma yollar\u0131, sorunlar ve kullan\u0131mla ilgili \u00e7\u00f6z\u00fcmler.<\/h2>\n

        Drive-by indirmeyi kullanma yollar\u0131:<\/h3>\n