I know it’s been a lot of time since the last paper but this one gave me some headaches.
Linux exploit development part 3 (rev 2) – Real app demo ret2libc
April 23rd, 2011As you have probably expected this is the real application demo + video demo of my part 3 of the Linux exploit development series.
Linux Exploit Development Pt 2 (rev 2) – Real App Demo (part 2)
April 12th, 2011Question:
In short why another part 2 if we already have one?
Linux exploit development part 3 – ret2libc
April 8th, 2011I’m not going to repeat myself from the paper, this will just be a short description of what the paper contains.
Linux Exploit Writing Tutorial Pt 2 – Stack Overflow ASLR bypass Using ret2reg
March 26th, 2011As expected the part 2 of my tutorial series, I’m not going to repeat myself again, so without any other introductions here it is:
Linux exploit development part 1 – Stack overflow.
March 19th, 2011I’ve started to write a series of tutorials about exploit development on Linux, this is the first part which contains a Stack overflow, with hardcoded ESP address (I know it’s unreliable, that’s why it’s part 1).
Anyways here is the PDF: Linux exploit development part 1 – Stack overflow
Installing and Tweaking SPIKE and sickfuzz v0.3
March 13th, 2011Not sure how many tried out this “fuzzer”, but the v0.3 is out with more pwnsauce.
sickfuzz – HTTP fuzzer.
March 3rd, 2011Before we get started let’s start with some basic knowledge which you might or might not know:
Exploit writing made easy with !pvefindaddr.
February 6th, 2011This is a quick paper I wrote containing a tutorial on how to use !pvefindaddr made by corelanc0d3r, it does not cover the creating of an exploit only how this tool helps you in writing an exploit.
ROP retn+offset and impact on stack setup.
January 30th, 2011Ok so in short, I was playing with ROP chained exploits, in particular I was making an exploit for WM Downloader.