Part 3 | Stack-based Buffer Overflow exploitation to shell by example

This is continuation of my guide on binary exploitation, in this part we are going to cover return-to-libc attack which was invented to defeat DEP/Non executable stack. As you can remember, we have used the fact that stack is executable in the previous part of this guide. 5. DEP/NX Today all of the...

Read More

Part 2 | Stack-based Buffer Overflow exploitation to shell by example

In part 1 we've covered basic mechanisms of exploitation, but there is one caveat about example from part 1, that is we are not executing our code, but only changing the code path to run function that is already inside the binary. This sometimes can be enough, but most of the times, we would like to...

Read More

Part 1 | Stack-based Buffer Overflow exploitation to shell by example

There are a lot of tutorials out there about exploitation of memory corruption bugs, but I struggled to find step-by-step ones, that would start with simplest examples possible. So I figured that while learning more advanced techniques of exploitation I can dump my knowledge about those which I already...

Read More

Magic behind python WAT moments

So once upon a time you find that thing in your programming language that behaves not really how you would expect it to. This post will be about those moments when you are programming in python. 1. 'is' on small ints This is one of the most popular one, let's say you write something along those lines (which you probably never should actually, I will explain why in a sec): >>> a = 5 >>>...

Read More