{"id":479751,"date":"2023-08-09T10:44:16","date_gmt":"2023-08-09T10:44:16","guid":{"rendered":""},"modified":"2023-09-05T11:19:30","modified_gmt":"2023-09-05T11:19:30","slug":"zero-day-2","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/tr\/wiki\/zero-day-2\/","title":{"rendered":"S\u0131f\u0131r g\u00fcn"},"content":{"rendered":"

S\u0131f\u0131r G\u00fcne Giri\u015f<\/h2>\n

Siber g\u00fcvenlik alan\u0131nda \u201cS\u0131f\u0131r g\u00fcn\u201d terimi g\u00fc\u00e7l\u00fc ve esrarengiz bir kavram\u0131 ifade ediyor. Bu terim, yaz\u0131l\u0131m sat\u0131c\u0131s\u0131n\u0131n bilmedi\u011fi bir t\u00fcr yaz\u0131l\u0131m g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 temsil eder ve bu da onu siber sald\u0131rganlar i\u00e7in potansiyel bir alt\u0131n madeni haline getirir. "S\u0131f\u0131r g\u00fcn" terimi, g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n sald\u0131rganlar taraf\u0131ndan ke\u015ffedildi\u011fi andan itibaren, istismar\u0131n ger\u00e7ek bir tehdit haline gelmesinden \u00f6nce sat\u0131c\u0131n\u0131n bunu d\u00fczeltmesi i\u00e7in s\u0131f\u0131r g\u00fcn kald\u0131\u011f\u0131 anlam\u0131na gelir.<\/p>\n

S\u0131f\u0131r G\u00fcn\u00fcn K\u00f6kenleri ve \u0130lk Bahsedilenleri<\/h2>\n

S\u0131f\u0131r\u0131nc\u0131 g\u00fcn\u00fcn ge\u00e7mi\u015fi, bilgisayar korsanl\u0131\u011f\u0131n\u0131n ve bilgisayar korsanl\u0131\u011f\u0131n\u0131n ilk g\u00fcnlerine kadar uzanabilir. "S\u0131f\u0131r g\u00fcn" teriminin ilk kaydedilen s\u00f6z\u00fc, bilgisayar korsanlar\u0131n\u0131n ke\u015ffedildikleri g\u00fcn yaz\u0131l\u0131mdaki g\u00fcvenlik kusurlar\u0131ndan yararland\u0131klar\u0131 1990'lar\u0131n ortalar\u0131na kadar uzan\u0131yor. Bu uygulama tehdidin aciliyetini ve yak\u0131nl\u0131\u011f\u0131n\u0131 vurgulad\u0131. Zamanla yaz\u0131l\u0131m\u0131n karma\u015f\u0131kl\u0131\u011f\u0131 artt\u0131k\u00e7a yeni g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n ke\u015ffedilme potansiyeli de artt\u0131.<\/p>\n

S\u0131f\u0131r G\u00fcn'e giri\u015f<\/h2>\n

S\u0131f\u0131r g\u00fcn g\u00fcvenlik a\u00e7\u0131klar\u0131, i\u015fletim sistemlerinden uygulamalara ve hatta donan\u0131m bile\u015fenlerine kadar \u00e7ok \u00e7e\u015fitli yaz\u0131l\u0131mlarda mevcut olabilir. Bu g\u00fcvenlik a\u00e7\u0131klar\u0131, siber su\u00e7lular taraf\u0131ndan yetkisiz eri\u015fim elde etmek, k\u00f6t\u00fc ama\u00e7l\u0131 kod y\u00fcr\u00fctmek veya verileri tehlikeye atmak i\u00e7in kullan\u0131labilir. S\u0131f\u0131r g\u00fcn sald\u0131r\u0131lar\u0131n\u0131n benzersiz \u00f6zelli\u011fi, gizlilik ve s\u00fcrprizlerinde yatmaktad\u0131r; sald\u0131rganlar, geli\u015ftiricilerin g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 d\u00fczeltme \u015fans\u0131na sahip olmadan sald\u0131r\u0131r.<\/p>\n

S\u0131f\u0131r G\u00fcn\u00fcn \u0130\u00e7 \u00c7al\u0131\u015fmalar\u0131<\/h2>\n

S\u0131f\u0131r g\u00fcn istismar\u0131n\u0131n i\u00e7 yap\u0131s\u0131n\u0131 anlamak, g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n kendi i\u00e7g\u00f6r\u00fcs\u00fcn\u00fc gerektirir. Bu g\u00fcvenlik a\u00e7\u0131klar\u0131 kodlama hatalar\u0131, tasar\u0131m kusurlar\u0131 veya yaz\u0131l\u0131m bile\u015fenleri aras\u0131ndaki beklenmeyen etkile\u015fimler nedeniyle ortaya \u00e7\u0131kabilir. Sald\u0131rganlar bu zay\u0131fl\u0131klar\u0131 ke\u015ffetmek i\u00e7in yaz\u0131l\u0131m\u0131 titizlikle inceler ve bulduktan sonra bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 hedef alan bir yararlanma kodu olu\u015ftururlar.<\/p>\n

S\u0131f\u0131r G\u00fcn \u0130stismarlar\u0131n\u0131n Temel \u00d6zellikleri<\/h2>\n

S\u0131f\u0131r\u0131nc\u0131 g\u00fcn sald\u0131r\u0131lar\u0131n\u0131 di\u011fer siber tehdit t\u00fcrlerinden ay\u0131ran birka\u00e7 temel \u00f6zellik vard\u0131r:<\/p>\n