Cyber Security Blog - page 4

24 Jul

Complementary Method : The Byte at the End of the Universe Stack

Very good, this post is dedicated to a couple of, I think “techniques” might call, which can be interesting. The first is really important. This is the integer overflow. Methods 0x9c90928f939a929a918b9e8d96908c First let’s take a look at how the n...

14:47 / Exploiting / Yago Gutierrez

0

21 Jul

Starting (from) the base: Attacks to base/frame pointer (EBP)

Good afternoon, evening, or whatever it may be. Finally comes the awaited (?) Episode on attack base / frame pointer (EBP). Without further ado, let’s start function, even with two-way XDD (this is not in itself another preamble also???). So far, we have stud...

19:59 / Exploiting / Yago Gutierrez

0

9 Jul

ROP: In exploiting and love anything goes

Today’s post is almost a continuation of a previous post. Because today we will bring the widespread ret2libc. Before starting, give a brief explanation of what is ASLR (Address Space Layout Randomization). It is a simple protection method that randomizes the...

11:39 / Exploiting / Yago Gutierrez

0

5 Jul

ret2libc: Firing with its own gun

Since 2000, operating systems began to support the NX bit and emulators of it. The PaX patch for Linux (who also includes ASLR), ExecShield (RedHat), W^X (OpenBSD and macOS) and DEP appear (from Windows to WinXP SP2). This protection is to distinguish memory pages ...

14:33 / Exploiting / Yago Gutierrez

0

3 Jul

My name is overflow, buffer overflow

In principle it is already clear how we get control program flow leveraging a script out of bounds. Let’s see how the stack is for a function like yesterday

16:38 / Exploiting / Yago Gutierrez

0

Complementary Method : The Byte at the End of the Universe Stack

Starting (from) the base: Attacks to base/frame pointer (EBP)

ROP: In exploiting and love anything goes

ret2libc: Firing with its own gun

My name is overflow, buffer overflow

SERVICES

Contact us